Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/ldP5SXefodrKXkAFEsHo1MistrQ.roa
File: ldP5SXefodrKXkAFEsHo1MistrQ.roa (raw, json)
Hash identifier: 271PYOtXn2aAVD1ewO4kRDmPq+EcXfoBCTmui6p3CWU=
Subject key identifier: 95:D3:F9:49:77:9F:A1:DA:CA:5E:40:05:12:C1:E8:D4:C8:AC:B6:B4
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09BC
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/ldP5SXefodrKXkAFEsHo1MistrQ.roa
Signing time: Tue 29 Sep 2020 10:09:29 +0000
ROA not before: Tue 29 Sep 2020 10:09:29 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 2404:d740:2233::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2492 (0x9bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:29 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=95D3F949779FA1DACA5E400512C1E8D4C8ACB6B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:4c:56:1c:c9:29:41:ba:f5:f5:4b:de:72:1b:
ec:77:4b:d0:f5:8f:f4:3c:cb:db:6b:bd:a9:ba:a9:
9e:1d:5c:d8:92:9f:dd:d4:75:ad:50:17:5b:01:d6:
fa:3a:16:5a:fd:0f:61:fb:d6:fe:3b:9a:69:d0:dd:
b0:89:78:56:5d:0e:41:df:db:6c:91:05:65:a7:5d:
06:69:58:e4:a9:3a:42:38:d5:6d:9b:4d:c3:33:7e:
1f:12:ae:9b:38:a5:17:07:f9:8d:3a:3d:5b:87:a5:
15:bf:d2:95:cf:79:05:24:ce:1e:6c:f7:a1:22:f4:
c1:35:ef:0b:ba:9f:db:96:6f:f0:47:c6:e5:76:fa:
c3:a9:c2:0b:8a:36:84:e3:22:65:f5:2e:26:dc:a2:
a8:8b:0b:31:f5:d5:da:11:74:29:a1:3e:85:99:35:
0e:ed:7d:30:71:48:91:73:6d:55:fa:87:fa:2a:0f:
88:fc:5f:be:8f:38:29:0a:c6:2c:1f:cc:a9:5b:02:
19:15:b7:2b:73:6b:53:c8:55:94:49:71:cf:57:bd:
f7:1c:2f:a3:91:59:7e:45:d6:5c:71:e3:27:b3:60:
e7:b5:1f:62:3a:d8:31:7c:42:11:5a:24:04:f4:19:
50:54:73:5c:22:0d:f0:7d:e2:96:fe:3a:fd:08:97:
ae:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:D3:F9:49:77:9F:A1:DA:CA:5E:40:05:12:C1:E8:D4:C8:AC:B6:B4
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/ldP5SXefodrKXkAFEsHo1MistrQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:d740:2233::/48
Signature Algorithm: sha256WithRSAEncryption
9e:5d:b1:93:15:6e:78:5c:c2:04:f4:52:53:32:15:db:6e:bb:
e5:38:d7:3c:10:6e:c1:f5:c1:c7:67:24:a6:a6:a2:7e:3d:08:
e3:3d:21:32:a8:45:af:a2:c7:21:27:19:0a:95:99:b3:e3:17:
f2:71:5d:da:c8:2d:ae:53:34:2c:49:7a:58:85:e5:c7:6f:f5:
94:6f:49:ca:aa:a4:67:7c:b7:57:b9:71:de:ce:5f:e8:70:44:
a5:f8:23:63:4b:69:cf:59:19:44:1f:93:ab:cb:5a:58:10:fb:
3b:ba:93:1c:14:b3:6a:e8:b0:73:70:86:17:3a:ff:28:ea:d7:
2d:62:d4:75:56:ff:ed:d5:f4:eb:19:5f:ab:d3:0d:3c:a5:94:
03:55:67:5f:a3:51:65:68:36:8a:db:7c:1f:d0:be:e0:1d:0e:
7a:35:72:65:7d:e9:52:b6:4c:b1:4a:56:9d:a0:8d:39:d4:e0:
9f:8b:3c:84:74:42:06:39:f2:51:d6:1a:0a:e7:93:94:8a:bd:
26:8d:b2:68:b2:36:fb:f1:51:81:6a:51:dd:5f:10:52:a7:c6:
14:58:1f:ff:d0:e6:22:6f:f7:a9:41:5e:08:e1:fe:0a:dc:11:
26:38:8c:64:75:de:2c:7e:85:b0:3a:39:1f:b9:71:b7:d3:6d:
4b:e0:9a:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org