Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/LOsiys6WpWvXW0k59tgF8plzi4M.roa
File: LOsiys6WpWvXW0k59tgF8plzi4M.roa (raw, json)
Hash identifier: 8LAuvOTWx9SsxA4VSFPokhFZK5ZG2yW/yvQS+zW+Dbc=
Subject key identifier: 2C:EB:22:CA:CE:96:A5:6B:D7:5B:49:39:F6:D8:05:F2:99:73:8B:83
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09BF
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/LOsiys6WpWvXW0k59tgF8plzi4M.roa
Signing time: Tue 29 Sep 2020 10:09:30 +0000
ROA not before: Tue 29 Sep 2020 10:09:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 2404:d740:202::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2495 (0x9bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=2CEB22CACE96A56BD75B4939F6D805F299738B83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:a0:73:c1:0c:d2:07:a0:fd:81:15:70:03:2a:
a7:63:3e:22:91:9b:c4:31:37:d7:86:73:cb:63:cc:
d2:89:ed:62:20:ae:14:a4:55:32:3c:bf:3b:8a:d9:
67:23:9a:39:c8:52:9e:33:f3:69:d2:b1:9c:d3:55:
8a:ba:97:77:c4:e9:83:22:57:46:0c:74:dc:39:89:
2a:f7:36:e1:50:f0:8a:91:6d:3c:17:c5:f0:98:63:
e3:e6:f9:1d:bc:39:56:b1:64:bc:92:35:36:dc:09:
99:10:35:4f:7b:dd:e6:8d:fc:3b:df:6d:6b:62:57:
8e:09:d1:1c:ea:db:63:91:7d:93:e7:0e:47:4f:ba:
78:e5:41:bb:18:29:e6:4f:2b:8a:d4:78:37:f7:84:
25:27:ee:73:ea:db:22:7b:f3:ad:b7:39:26:9f:ec:
1f:0e:52:9e:9f:bd:54:50:5a:ec:6a:d8:96:3a:0a:
2b:c0:f9:2f:2f:6a:d0:c4:fc:ed:56:fa:57:9a:de:
c1:d2:9a:b4:40:9e:46:41:2b:58:1e:51:6b:fb:cb:
3d:2b:5b:ce:f9:8e:ff:58:5d:83:ab:9c:f8:61:7e:
62:6e:1d:f1:5e:35:32:ed:94:d1:14:66:b7:d5:e6:
93:e6:5a:7d:ba:c8:74:ee:d1:1a:64:47:db:52:36:
01:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:EB:22:CA:CE:96:A5:6B:D7:5B:49:39:F6:D8:05:F2:99:73:8B:83
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/LOsiys6WpWvXW0k59tgF8plzi4M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:d740:202::/48
Signature Algorithm: sha256WithRSAEncryption
0c:cd:98:e6:96:56:0b:06:91:0d:5e:8b:58:bf:3d:1e:d2:21:
41:66:c9:e1:f5:53:68:dc:b2:5b:d4:f4:ca:7e:b4:1a:14:7f:
d8:c0:23:00:fc:1e:1f:50:83:f5:e0:fe:5c:8b:1b:73:c0:6b:
12:09:c7:89:0c:bf:ba:09:60:95:88:87:b5:a5:1f:92:68:3b:
ac:5b:f3:b5:7d:86:59:56:69:41:6d:fb:1e:8b:fe:85:09:bf:
cf:0a:3c:f1:5d:3f:b9:37:29:b0:d0:1b:0a:4b:45:b2:b7:0f:
da:76:74:ec:f7:48:55:86:6b:83:09:98:62:67:a1:9e:b6:ce:
f3:17:a0:16:fa:c5:36:84:d1:50:24:c2:03:98:27:83:f4:17:
1a:3a:1d:25:ae:04:a7:57:cf:67:df:0b:b6:d7:60:6f:46:3c:
44:8b:66:81:e1:4e:fd:7f:de:14:ac:bd:d1:73:cf:93:87:cf:
c6:b7:ec:fa:a1:17:9c:ae:82:a9:16:ab:ec:aa:62:88:13:a6:
30:76:1d:6b:42:5f:e4:57:c0:f3:2e:47:b4:83:25:0d:13:95:
44:88:3c:cb:20:5f:4d:bb:b0:14:03:61:83:ff:3e:e2:d4:4e:
21:26:9a:28:0e:1d:a8:f6:18:66:4a:e2:d1:ea:85:eb:27:e0:
36:33:fb:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:55 2023 by rpki-client on console-fra.rpki-client.org