Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/hpRhpVf3JS81HPyPVZsoYr6Oc_I.roa
File: hpRhpVf3JS81HPyPVZsoYr6Oc_I.roa (raw, json)
Hash identifier: NoqQu82HjM7x8LSq39gUq9OT+mIbdevlVwrirYrwChU=
Subject key identifier: 86:94:61:A5:57:F7:25:2F:35:1C:FC:8F:55:9B:28:62:BE:8E:73:F2
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09B6
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/hpRhpVf3JS81HPyPVZsoYr6Oc_I.roa
Signing time: Tue 29 Sep 2020 10:09:28 +0000
ROA not before: Tue 29 Sep 2020 10:09:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 2404:d740:9a::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2486 (0x9b6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=869461A557F7252F351CFC8F559B2862BE8E73F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:7e:d5:ad:18:64:49:72:86:3f:61:68:1b:84:
76:b5:5a:97:1c:6c:01:2e:9e:52:db:3f:a0:c4:d0:
9a:6e:c2:09:00:6a:02:12:b5:fe:3c:fb:89:0f:0a:
bf:42:73:79:eb:c5:d4:41:ce:37:a8:41:3f:9b:98:
38:6f:ae:6c:2e:d4:b1:18:a9:ed:58:d5:8d:2b:90:
14:b7:7d:d4:fc:e1:b7:41:9d:9c:b0:6b:ab:34:5a:
97:c5:4e:4f:4a:b4:3b:e0:e3:7d:36:7b:dd:30:8e:
aa:74:c6:7c:6a:54:59:31:a6:82:5f:2b:8e:b1:5e:
40:a8:62:aa:db:ad:ed:3c:72:59:f5:cf:c8:b6:d4:
2a:c8:a0:cf:5f:97:7e:c2:12:93:ac:c1:f6:ab:53:
70:ef:7b:f5:e2:3c:b8:55:f5:47:04:76:04:7f:76:
e4:cd:f6:84:d1:1a:b2:f3:9d:2a:b1:3c:7f:1e:6a:
7c:da:57:7a:18:8e:30:e6:1f:8b:25:02:90:1b:3c:
36:73:5b:87:9a:85:98:00:6e:3e:53:a0:dd:2a:2c:
4e:52:cf:92:38:5e:4e:09:f1:2e:9c:61:e5:0b:c0:
37:b0:16:3d:a4:bd:30:70:06:c2:c2:d0:ef:4f:2e:
45:d4:67:9e:29:12:8b:b3:cb:3e:ea:f7:68:54:6e:
5a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:94:61:A5:57:F7:25:2F:35:1C:FC:8F:55:9B:28:62:BE:8E:73:F2
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/hpRhpVf3JS81HPyPVZsoYr6Oc_I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:d740:9a::/48
Signature Algorithm: sha256WithRSAEncryption
ca:19:4c:49:53:03:eb:e4:0a:fc:c5:36:11:8a:89:46:01:6e:
2a:83:f1:9f:dd:c4:85:49:88:e0:b3:45:cb:cd:29:d5:05:8a:
47:ef:04:c2:7c:b8:14:11:8c:e4:6b:9b:3c:81:79:6e:b9:a5:
35:d7:5c:c2:70:3a:9a:2b:9c:a1:97:64:ee:5f:57:1d:a5:f2:
43:5c:26:2c:4c:e4:6b:58:35:68:f7:28:69:38:f2:e1:da:c4:
52:5c:75:66:d7:67:64:69:8c:6e:de:5b:89:a6:d2:dc:3b:d2:
50:81:38:46:cb:79:91:53:a4:46:4c:2e:0f:71:97:0b:00:21:
a1:05:a6:09:66:e9:ad:2c:6a:4d:58:a3:b9:cb:05:9a:c3:f5:
db:2a:6b:79:a8:09:10:d7:bd:b1:09:78:61:53:2f:06:30:7a:
ac:66:57:a4:03:3e:ee:1b:4c:4e:c3:1c:ee:a2:2d:a3:18:66:
2f:9d:c1:49:9d:ba:07:2e:b8:a2:eb:0c:da:91:d2:a5:24:32:
87:37:40:14:a9:9e:9c:e4:2a:e8:19:72:b6:c1:84:06:81:4b:
9f:1d:ae:e8:da:79:b6:dc:d6:63:e0:f2:6b:60:1a:2a:71:bb:
bd:16:77:18:a8:53:a4:89:ee:63:16:c1:2a:be:ec:2f:b8:6b:
ad:d3:9b:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:47:32 2025 by rpki-client