Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/UgLGCjjOx2rbkSkelz_rAdCpp8Q.roa
File: UgLGCjjOx2rbkSkelz_rAdCpp8Q.roa (raw, json)
Hash identifier: z27FPW3ioods5y8mibZWFGInTEjeX0wC+MdmEIJni64=
Subject key identifier: 52:02:C6:0A:38:CE:C7:6A:DB:91:29:1E:97:3F:EB:01:D0:A9:A7:C4
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09BB
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/UgLGCjjOx2rbkSkelz_rAdCpp8Q.roa
Signing time: Tue 29 Sep 2020 10:09:29 +0000
ROA not before: Tue 29 Sep 2020 10:09:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 103.138.255.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2491 (0x9bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5202C60A38CEC76ADB91291E973FEB01D0A9A7C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b0:e0:b6:c5:e5:bb:44:a2:70:84:41:6b:2f:
fc:ff:ab:24:5a:d7:bd:d6:bb:0f:a1:b1:97:bc:ba:
22:67:19:e1:0c:db:73:3f:a2:94:87:df:22:27:b1:
ce:77:ef:0f:a2:52:f3:30:27:f2:94:c8:5e:ad:12:
ba:46:82:86:35:4a:43:e7:ab:3b:7b:aa:2f:3a:d9:
3c:68:5f:34:c8:b6:47:b5:b7:7f:c9:31:03:18:ce:
76:b2:cb:12:54:73:61:66:c9:66:bd:a8:d1:88:a7:
0b:e0:e0:ac:13:8b:76:cf:79:48:af:3e:90:6e:9c:
13:43:a2:49:3d:c9:13:29:03:cf:5d:84:4b:0d:37:
25:82:3b:ef:79:2a:5e:a6:68:d3:8f:12:2d:c3:67:
15:44:25:16:35:22:ea:60:db:0b:cf:68:a7:63:c7:
91:be:59:5a:c4:a3:4d:c2:60:e7:12:5e:5f:38:d7:
ce:ba:d5:68:bc:ca:1b:fa:8a:3c:1d:e3:fa:54:3e:
a6:f7:c3:0d:a5:05:69:1e:8d:ff:1f:56:53:97:38:
45:90:f9:13:bf:4a:62:89:d5:cf:1d:ff:c4:c6:1b:
23:49:5f:40:d7:9c:42:2a:50:36:ed:7f:41:f7:a0:
28:bc:3a:b2:a8:47:c1:f7:e2:d9:db:1c:11:5b:7b:
ce:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:02:C6:0A:38:CE:C7:6A:DB:91:29:1E:97:3F:EB:01:D0:A9:A7:C4
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/UgLGCjjOx2rbkSkelz_rAdCpp8Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.138.255.0/24
Signature Algorithm: sha256WithRSAEncryption
48:94:e8:d4:68:6d:b7:e4:d1:9b:c6:52:f4:59:d4:7d:da:ad:
e3:c6:e7:c6:7c:83:30:32:f5:5f:9c:6d:2a:6b:75:ca:3a:c0:
cf:1d:31:6c:08:b4:28:e7:1f:05:e5:41:a0:bf:0b:7f:03:31:
d3:76:e9:40:99:40:2b:3c:ec:14:f4:70:14:37:01:f0:25:64:
a4:f9:d7:72:cd:10:9e:bb:3b:e8:0c:72:c0:34:88:bf:b6:e9:
98:ec:05:36:12:04:c7:14:4b:e6:78:e3:0e:5c:9c:18:d7:f4:
3e:00:ad:bf:ac:dd:75:2b:a5:50:26:c4:bf:74:90:16:c4:fd:
69:1d:76:3f:26:6e:35:a8:f6:aa:2d:d3:d2:57:e3:e9:14:9d:
d3:37:5a:44:f3:7c:3d:1a:6c:af:e1:1e:3e:a0:03:e5:c2:6a:
b2:6f:b6:d2:93:3f:64:ff:9b:33:2c:aa:84:96:18:7b:1b:4e:
51:33:1e:1d:b3:32:cc:45:55:5f:2c:38:e7:a8:ad:af:ff:a9:
60:4c:79:0d:a2:35:24:07:27:d3:f9:93:41:2f:3f:04:ae:20:
22:00:9d:70:bd:1c:85:d2:97:3c:35:f7:f9:7a:a4:0c:1e:e3:
bd:54:e5:7b:47:c4:dd:46:33:db:4c:5f:ff:5c:48:6e:b2:a7:
43:db:77:1f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:52 2024 by rpki-client on console-ams.rpki-client.org