Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XXdJFfLNGk0hlPFZT0BCqqtg_Bo.roa
File: XXdJFfLNGk0hlPFZT0BCqqtg_Bo.roa (raw, json)
Hash identifier: RRsisC3uKlwIJM3S0Kenqmg2vHTEJrFlQnnK5NS1S+c=
Subject key identifier: 5D:77:49:15:F2:CD:1A:4D:21:94:F1:59:4F:40:42:AA:AB:60:FC:1A
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09BD
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XXdJFfLNGk0hlPFZT0BCqqtg_Bo.roa
Signing time: Tue 29 Sep 2020 10:09:29 +0000
ROA not before: Tue 29 Sep 2020 10:09:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 2404:d740:200::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2493 (0x9bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=5D774915F2CD1A4D2194F1594F4042AAAB60FC1A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d1:3d:0e:9c:f1:7b:a1:a2:26:b9:77:8d:4b:
74:0d:a2:ef:1d:58:89:63:b6:78:fd:d4:55:8c:4b:
ff:a1:08:dc:9f:86:04:4f:77:29:73:b6:a1:a7:27:
13:25:57:72:bc:fe:39:4c:27:7d:88:8d:fc:f6:31:
63:15:8c:b5:73:19:dc:2b:ed:8a:ee:74:e3:83:d5:
86:1d:6b:f1:2a:cb:76:a1:a9:56:41:e7:43:eb:b0:
d3:da:0f:a9:c4:66:a7:6d:52:20:85:e8:ba:a3:89:
48:bf:88:01:ea:56:8e:50:46:3c:14:85:a2:e6:3f:
95:22:6e:a2:3c:5c:21:02:7c:e0:2c:6a:a0:a8:0a:
bb:34:ad:07:43:9e:dc:0b:3f:bb:08:7b:ec:7e:df:
30:f4:cb:e6:29:40:1c:b3:1d:3f:39:ad:11:c4:d1:
9f:9c:d4:cd:5a:0a:5c:cf:49:fe:03:ac:5e:e8:9e:
3d:34:22:84:88:37:e8:7d:ee:89:74:91:50:de:d6:
e4:8b:1a:42:85:1a:b7:32:7b:e7:a7:69:4d:00:f2:
d0:39:73:f0:c0:7b:3e:ca:58:d9:7b:3e:e5:6b:52:
33:90:3b:b4:7a:dd:31:0b:e7:ff:7f:e5:41:54:1a:
7e:e3:5d:52:4b:30:56:18:95:e9:ce:48:07:13:b0:
94:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:77:49:15:F2:CD:1A:4D:21:94:F1:59:4F:40:42:AA:AB:60:FC:1A
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XXdJFfLNGk0hlPFZT0BCqqtg_Bo.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:d740:200::/48
Signature Algorithm: sha256WithRSAEncryption
5a:f7:b3:a3:99:c0:07:dd:87:a2:cf:83:ff:80:a4:b3:c2:49:
99:3f:fd:a8:b7:77:fd:72:66:4d:7d:7f:26:1b:cd:fc:69:7b:
3d:96:a0:df:b1:f5:2d:79:60:eb:04:11:87:95:5a:43:1e:68:
ea:40:28:22:f5:72:b1:01:af:75:78:9b:a2:62:35:76:07:d4:
a9:d5:5b:f1:6e:f4:cf:9a:d5:8a:99:e5:26:cd:bd:46:60:a8:
2e:4b:6c:0d:ca:49:c4:85:14:85:03:10:89:0d:a6:a1:15:a3:
ef:1e:32:d0:51:bc:1c:52:bb:fe:60:03:9d:b0:e1:28:f7:31:
5c:fc:79:e3:b4:af:63:50:4a:0a:44:0d:b8:30:54:07:3e:cc:
b9:29:b4:a0:50:9d:c9:ba:31:3f:ba:b8:fb:77:fb:35:41:68:
98:cf:98:f7:c8:09:e0:f4:ed:40:2c:3b:a2:49:6a:65:86:e2:
c7:36:0d:c6:95:83:4d:c0:ce:36:3d:b6:7a:41:a4:6a:eb:d1:
1f:88:67:f9:0a:35:17:2e:56:b5:8d:da:6d:43:74:c0:c5:5c:
36:92:c9:a3:0b:40:90:ca:4e:5c:bf:cb:f6:ca:2d:33:05:bc:
39:db:50:27:95:f5:1b:2a:14:64:91:eb:1a:87:35:9a:4e:1e:
97:8d:1f:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:52 2024 by rpki-client on console-ams.rpki-client.org