Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/irTg1_Gu4QeVpPOYIk7ow8ifMm8.roa
File: irTg1_Gu4QeVpPOYIk7ow8ifMm8.roa (raw, json)
Hash identifier: /VrQrpLOCIc7dQJxA1xTtS77OPQbkUPFX1cKuiJhj6Q=
Subject key identifier: 8A:B4:E0:D7:F1:AE:E1:07:95:A4:F3:98:22:4E:E8:C3:C8:9F:32:6F
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09BE
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/irTg1_Gu4QeVpPOYIk7ow8ifMm8.roa
Signing time: Tue 29 Sep 2020 10:09:30 +0000
ROA not before: Tue 29 Sep 2020 10:09:30 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 2404:d740:201::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2494 (0x9be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:30 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=8AB4E0D7F1AEE10795A4F398224EE8C3C89F326F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:2b:5a:bb:1e:72:0b:db:e6:ce:8f:f4:88:72:
9e:b4:9a:a1:52:13:11:79:ad:c6:e2:87:ca:4c:2e:
b4:63:5a:1b:65:fa:41:d8:05:06:98:21:b1:af:71:
96:03:f3:04:41:de:36:52:f1:18:35:f1:12:18:ce:
d8:a3:4b:2a:48:22:f3:82:9b:06:48:8c:91:2b:04:
d9:2e:4a:c4:7b:e9:0a:1c:7c:21:fc:4d:51:95:43:
7e:58:70:4c:62:26:58:10:67:c7:47:c7:84:e1:d7:
c6:03:ae:ee:82:14:3e:9d:90:cc:88:bd:59:08:82:
f6:6b:9a:c5:55:df:f1:04:79:b3:6c:c7:6f:ce:7a:
35:4a:63:5c:88:01:55:64:2f:5c:a0:f7:db:bb:7f:
70:9e:b9:0d:57:d5:4e:f7:96:06:a4:f0:9e:7d:f5:
98:ab:05:a2:76:fe:c9:73:2f:81:65:a7:1b:e6:6f:
a0:70:21:48:24:58:8b:db:97:c1:0d:f3:ac:92:f2:
84:fc:a8:81:7f:d4:cb:18:36:b9:4a:3c:99:4a:e7:
9e:60:69:5a:eb:68:73:c4:a7:2f:36:0b:72:95:e5:
7f:80:22:20:58:46:87:da:0d:95:33:35:63:eb:af:
24:67:1c:ed:42:3c:64:cc:49:83:e2:f1:9a:4b:72:
47:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:B4:E0:D7:F1:AE:E1:07:95:A4:F3:98:22:4E:E8:C3:C8:9F:32:6F
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/irTg1_Gu4QeVpPOYIk7ow8ifMm8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:d740:201::/48
Signature Algorithm: sha256WithRSAEncryption
b5:46:7a:49:d7:18:72:72:9c:a2:8b:db:8e:56:f1:a6:ec:e1:
dc:08:8e:06:15:27:00:e0:6a:9b:b8:97:80:b4:3f:32:de:3d:
05:b1:d8:7f:ff:d0:2f:b9:d0:27:e9:17:dc:35:8e:f4:f1:16:
f1:a1:db:4b:2b:b6:1b:1e:28:1d:69:99:e1:ec:6a:48:73:6d:
41:2a:4a:11:73:28:c0:1a:36:0a:c1:42:38:cd:fe:2a:b7:62:
9d:27:eb:5a:55:9e:10:01:68:28:a7:b3:2e:1d:72:d2:6b:44:
99:ab:53:23:1c:a7:01:58:76:ac:85:67:9a:9b:02:9c:da:3a:
f1:59:58:61:73:4e:7e:af:b5:b8:83:fa:c5:98:aa:63:1b:2b:
e1:37:5f:6e:86:bf:a0:66:10:84:d6:a2:e4:b3:44:0f:b9:02:
f2:a9:f0:a8:b6:3b:61:d5:90:3a:64:30:3a:a9:14:46:c3:98:
de:b6:e2:ae:8c:49:5b:24:dc:5c:b5:87:b1:cf:f8:33:37:ba:
78:80:73:5a:08:20:78:b3:58:7f:d3:85:4a:8a:5c:49:8a:69:
56:55:2c:5e:84:9d:ca:f6:b8:6c:e6:39:84:d6:e6:7b:25:65:
b4:50:49:89:e6:53:95:b1:d7:96:a9:c1:00:d3:f4:be:9c:9d:
ab:f8:9d:63
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgICCb4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUM4
RjQ4NkI2OEU5RUJBNjUxQjE0QkMwMDhGNUE5REQ2ODNFQ0U3NzAeFw0yMDA5Mjkx
MDA5MzBaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDhBQjRFMEQ3RjFBRUUx
MDc5NUE0RjM5ODIyNEVFOEMzQzg5RjMyNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEK1q7HnIL2+bOj/SIcp60mqFSExF5rcbih8pMLrRjWhtl+kHY
BQaYIbGvcZYD8wRB3jZS8Rg18RIYztijSypIIvOCmwZIjJErBNkuSsR76QocfCH8
TVGVQ35YcExiJlgQZ8dHx4Th18YDru6CFD6dkMyIvVkIgvZrmsVV3/EEebNsx2/O
ejVKY1yIAVVkL1yg99u7f3CeuQ1X1U73lgak8J599ZirBaJ2/slzL4Flpxvmb6Bw
IUgkWIvbl8EN86yS8oT8qIF/1MsYNrlKPJlK555gaVrraHPEpy82C3KV5X+AIiBY
RofaDZUzNWPrryRnHO1CPGTMSYPi8ZpLckd1AgMBAAGjggH5MIIB9TAdBgNVHQ4E
FgQUirTg1/Gu4QeVpPOYIk7ow8ifMm8wHwYDVR0jBBgwFoAUXI9Ia2jp66ZRsUvA
CPWp3Wg+zncwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkVORE9O
SU5GTy9YSTlJYTJqcDY2WlJzVXZBQ1BXcDNXZy16bmMuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL1hJOUlhMmpwNjZaUnNVdkFDUFdwM1dnLXpuYy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1pFTkRPTklORk8vaXJUZzFfR3U0
UWVWcFBPWUlrN293OGlmTW04LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQC
AAIwCQMHACQE10ACATANBgkqhkiG9w0BAQsFAAOCAQEAtUZ6SdcYcnKcoovbjlbx
puzh3AiOBhUnAOBqm7iXgLQ/Mt49BbHYf//QL7nQJ+kX3DWO9PEW8aHbSyu2Gx4o
HWmZ4exqSHNtQSpKEXMowBo2CsFCOM3+KrdinSfrWlWeEAFoKKezLh1y0mtEmatT
IxynAVh2rIVnmpsCnNo68VlYYXNOfq+1uIP6xZiqYxsr4Tdfboa/oGYQhNai5LNE
D7kC8qnwqLY7YdWQOmQwOqkURsOY3rbiroxJWyTcXLWHsc/4Mze6eIBzWgggeLNY
f9OFSopcSYppVlUsXoSdyva4bOY5hNbmeyVltFBJieZTlbHXlqnBANP0vpydq/id
Yw==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:38:28 2025 by rpki-client