Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/KH3O9yHGfW9Pi3PAF7na_MdYssY.roa
File: KH3O9yHGfW9Pi3PAF7na_MdYssY.roa (raw, json)
Hash identifier: /Bp4kGOXUv7fmKDXtldCQUSOZpuKcNuyX4JhnoiCsjE=
Subject key identifier: 28:7D:CE:F7:21:C6:7D:6F:4F:8B:73:C0:17:B9:DA:FC:C7:58:B2:C6
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09B8
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/KH3O9yHGfW9Pi3PAF7na_MdYssY.roa
Signing time: Tue 29 Sep 2020 10:09:28 +0000
ROA not before: Tue 29 Sep 2020 10:09:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 2404:d740:9999::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2488 (0x9b8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=287DCEF721C67D6F4F8B73C017B9DAFCC758B2C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:f1:42:a7:fa:bf:33:18:49:f5:d5:32:25:03:
c5:93:c9:2b:a3:c6:65:18:14:99:96:95:ea:91:8c:
e1:93:2d:5b:21:47:7e:e3:17:29:5c:1c:19:67:3b:
23:cf:27:ac:8b:e5:a9:1f:89:0b:3b:74:8f:ef:23:
2b:86:7c:94:cb:18:01:7b:26:ac:e6:fc:89:71:5f:
13:d6:21:5d:40:80:20:33:11:5c:aa:1d:09:68:bc:
a6:d5:d6:09:1d:85:0e:13:7a:27:f0:a3:95:d8:5c:
e9:dc:90:13:5b:37:95:22:00:26:48:dc:24:8c:88:
fc:e1:ef:b7:e2:61:3e:69:93:3e:9e:af:98:54:fe:
ba:3e:82:d4:41:1e:1c:a2:76:e2:e3:5e:2f:e2:3b:
ad:88:a9:42:05:3a:f0:f3:86:b9:97:e1:03:c8:9d:
17:c7:22:67:53:1f:67:ef:2e:47:ed:fe:69:97:79:
b3:20:7c:88:1e:2c:21:f5:b2:29:60:34:24:01:b6:
a9:e2:3c:a7:f0:be:00:01:0f:c4:05:52:c5:9b:b8:
a1:f2:e1:1f:83:6d:2f:da:de:84:76:18:a4:95:f5:
8b:65:e4:09:a1:34:e6:7b:18:b3:da:61:88:cd:7e:
08:32:36:34:60:35:c4:f2:27:1c:41:7f:03:cf:c2:
a1:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:7D:CE:F7:21:C6:7D:6F:4F:8B:73:C0:17:B9:DA:FC:C7:58:B2:C6
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/KH3O9yHGfW9Pi3PAF7na_MdYssY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:d740:9999::/48
Signature Algorithm: sha256WithRSAEncryption
5b:60:16:40:e1:0e:c5:d7:e2:e7:84:29:ad:30:0b:f6:54:c9:
55:d4:f9:b2:c8:f9:0f:1e:2e:fd:49:71:27:9b:f5:bf:a0:37:
3a:06:b8:39:e7:0d:25:bf:87:34:2b:e8:3c:3f:17:0c:05:b4:
dd:cb:51:04:2e:92:82:0d:d9:a6:7c:eb:2a:2b:9c:52:9d:ff:
62:58:9c:ac:61:2b:83:36:d3:69:80:d8:b7:2a:bf:44:18:a1:
b8:3d:fa:82:24:44:54:c0:0f:f1:86:cb:a4:23:33:d4:89:df:
dd:01:44:97:da:32:f5:d3:25:ba:8a:8e:1a:b7:1c:20:6d:c3:
d3:b0:54:66:59:76:5d:a8:5b:f7:23:26:f8:92:06:6e:32:aa:
84:28:b1:42:97:44:59:29:5c:3d:16:1d:f8:13:ee:e8:0d:e8:
a5:70:64:5d:96:c0:93:53:72:57:8f:78:0b:21:42:ef:d5:cd:
41:55:cc:68:3a:55:b9:2d:07:a3:ce:1c:13:6b:15:c8:43:28:
9e:32:a2:9f:eb:a2:24:94:a8:08:43:d6:63:a4:ae:ec:8a:cf:
72:fe:5d:0b:d3:c4:fc:2c:f4:99:e0:01:e4:b7:ed:f1:99:cb:
f3:c2:84:46:2b:df:8c:ce:d5:5c:db:91:42:09:83:16:f6:78:
03:47:4d:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:55:24 2025 by rpki-client