Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/oq9zw86MJt8Rt_9nISVC9Nl227c.roa
File: oq9zw86MJt8Rt_9nISVC9Nl227c.roa (raw, json)
Hash identifier: j8gMDhkiTRf9XOQASmlXZvjHh+fO1DbL/WNPiQ0oxys=
Subject key identifier: A2:AF:73:C3:CE:8C:26:DF:11:B7:FF:67:21:25:42:F4:D9:76:DB:B7
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09C2
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/oq9zw86MJt8Rt_9nISVC9Nl227c.roa
Signing time: Tue 29 Sep 2020 10:09:31 +0000
ROA not before: Tue 29 Sep 2020 10:09:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 2404:d740::/32 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2498 (0x9c2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A2AF73C3CE8C26DF11B7FF67212542F4D976DBB7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:4e:5a:d3:89:62:2d:5f:89:16:94:90:d9:ec:
04:b5:c2:f7:bf:e4:4e:6e:09:8d:bf:0e:1c:da:4e:
13:d5:da:ff:0b:19:10:ae:3e:96:0e:f1:ef:5a:62:
3c:5c:72:84:ab:f4:61:49:3a:6d:e0:e1:d6:32:3b:
44:c9:81:06:3f:17:54:0d:4a:38:3e:60:7e:21:99:
41:e5:53:27:46:d3:f9:c8:af:9a:ca:d5:51:2b:26:
c6:3a:5f:0b:fc:92:f4:87:01:13:a9:21:10:43:bc:
5d:97:7e:71:40:99:ed:6f:67:cc:e6:ac:11:92:71:
ce:28:0d:cd:6a:53:35:cb:12:4c:ab:33:7e:c4:a4:
1d:91:52:0a:95:e6:be:28:f4:da:f4:87:ad:1d:1f:
29:5d:0c:32:35:f1:57:ee:e7:c1:d3:37:73:3e:6e:
af:29:63:74:7e:3b:1a:cf:65:16:93:6f:90:ed:f8:
01:ea:73:7a:2e:23:8c:8c:3c:be:88:b4:23:8f:95:
57:c2:0b:df:1c:ca:80:fc:42:62:6e:97:90:d3:2c:
96:35:c6:ee:f2:a0:84:ae:e8:d1:0a:f5:ff:0e:fa:
cc:cc:cb:a8:5e:cd:68:84:37:9d:be:b6:8e:f2:8b:
a4:09:4a:de:b4:88:b7:8a:63:20:81:1f:f9:ec:4c:
c0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:AF:73:C3:CE:8C:26:DF:11:B7:FF:67:21:25:42:F4:D9:76:DB:B7
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/oq9zw86MJt8Rt_9nISVC9Nl227c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:d740::/32
Signature Algorithm: sha256WithRSAEncryption
47:c3:7d:08:53:ca:77:2e:93:8c:15:b4:ee:eb:ea:ab:07:3d:
86:6b:bd:6e:1e:74:ab:54:5c:f8:24:e6:2f:30:ea:56:1a:e5:
64:33:3c:a0:b4:27:f5:5e:16:67:27:92:76:e1:5f:dd:3b:0e:
ea:7c:55:cb:7d:f8:5d:f0:ec:10:56:a6:65:4f:fa:ca:a9:9b:
a0:65:ac:c7:3f:43:b9:65:12:03:2a:29:68:55:71:ed:59:dd:
85:2c:1b:44:e6:a5:68:d1:2a:9d:7b:e1:6f:b4:d9:dd:92:b5:
13:25:19:b7:8d:39:91:10:58:c2:bc:2e:79:5d:cf:a7:fe:23:
10:86:44:16:ea:45:e2:0a:a5:bc:fc:c7:4e:cf:f4:bc:51:9e:
d4:aa:e6:c0:75:0c:85:af:0f:3c:1c:03:b5:4c:a5:73:df:a3:
0d:2a:e7:c1:82:fe:84:4e:b4:45:df:c4:15:6b:7c:f3:99:d9:
1b:1a:38:7b:5f:f1:61:cc:fa:ba:c0:14:6d:2f:84:5f:2a:75:
cf:bd:b9:32:f1:10:cd:b1:86:42:0d:57:47:7b:af:b1:47:95:
95:5c:0c:26:70:41:bb:35:e4:a2:ee:a6:17:27:6a:31:b8:ba:
35:17:a5:79:39:28:0d:87:27:c4:25:58:9b:96:49:b6:34:d2:
c2:ae:db:bb
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:52 2024 by rpki-client on console-ams.rpki-client.org