Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/p31ouRM29SgE7Yky31YVYxUhYKc.roa
File: p31ouRM29SgE7Yky31YVYxUhYKc.roa (raw, json)
Hash identifier: wCt5hZBYURjCyxLLw/NUELUFpOwLXwqFos8B1A5b+ek=
Subject key identifier: A7:7D:68:B9:13:36:F5:28:04:ED:89:32:DF:56:15:63:15:21:60:A7
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09B9
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/p31ouRM29SgE7Yky31YVYxUhYKc.roa
Signing time: Tue 29 Sep 2020 10:09:28 +0000
ROA not before: Tue 29 Sep 2020 10:09:28 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 2404:d740:3::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2489 (0x9b9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:28 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=A77D68B91336F52804ED8932DF561563152160A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:bb:da:cb:89:c6:a2:96:6f:6e:40:e4:a3:aa:
c5:d9:83:d7:ba:4e:74:61:fe:87:be:d7:fd:ad:47:
15:cd:b5:c9:9f:cc:a3:c2:92:b4:9f:95:17:bd:6f:
e3:f9:0c:52:ae:c9:0f:50:aa:d3:ed:aa:e5:7a:6d:
a3:f6:50:65:b7:a3:c9:11:44:30:30:0c:fd:6d:da:
85:d1:ec:32:ec:c7:95:7c:18:6d:49:2f:57:ae:b5:
ef:71:9f:db:b7:55:13:ba:4f:82:09:ec:fa:79:59:
ad:5b:a5:60:c4:ac:33:94:2c:3a:cb:2b:4a:b1:bb:
65:47:a2:d6:a3:98:be:b7:b5:19:3b:21:41:de:d0:
39:f4:a1:dd:48:ae:f1:a0:6a:71:66:30:07:99:7b:
dd:40:49:ef:b0:de:d1:2c:77:aa:5d:95:0c:68:a3:
0d:03:d4:b3:74:df:07:51:8d:2d:47:25:9d:88:a7:
e7:a7:83:a5:e4:c8:27:2a:89:51:2c:47:01:49:54:
d0:78:60:99:f7:6b:d5:56:87:2c:8e:6b:4c:ce:c9:
37:bb:cf:81:97:c4:28:48:d7:31:43:d0:f1:dc:b0:
6b:d2:c7:d7:75:35:36:0b:2c:91:74:48:85:0b:a4:
a9:92:39:b8:4d:16:d3:b3:b2:d3:4a:d8:57:38:65:
24:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:7D:68:B9:13:36:F5:28:04:ED:89:32:DF:56:15:63:15:21:60:A7
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/p31ouRM29SgE7Yky31YVYxUhYKc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:d740:3::/48
Signature Algorithm: sha256WithRSAEncryption
01:ea:49:f1:cd:0a:73:40:63:3a:c3:05:51:13:a6:69:1c:bd:
c7:3d:ee:85:17:12:f7:69:0f:a2:4f:ac:80:b2:6b:2b:b3:23:
63:ea:9a:82:67:5a:ef:7e:08:37:63:70:08:38:23:03:e1:e9:
b1:c3:b9:fe:c5:8d:aa:db:52:1a:6c:8b:7f:67:c7:59:90:5b:
08:c3:79:7e:18:0d:c6:d9:27:cb:64:76:98:97:eb:ab:2c:76:
af:83:23:f8:27:e1:dd:dd:31:1e:87:23:d9:4a:94:a2:d1:c4:
77:bd:fd:f3:10:c8:bb:c4:5a:70:46:56:0b:18:d1:c7:96:63:
54:3c:60:77:a6:f5:bf:27:ce:6c:c2:57:98:5d:64:44:a7:a8:
60:62:e1:54:e3:6e:53:ae:39:65:70:c7:b9:9f:ee:c9:2c:cf:
29:27:57:77:04:4d:5e:8b:59:e2:77:b6:53:0c:fd:11:5b:8e:
e5:0a:6d:7f:88:1d:07:90:5c:75:39:81:6a:2d:4d:07:96:6e:
e5:6a:30:a1:72:4a:b7:1a:59:33:31:c3:0f:c1:68:1a:ef:68:
ae:71:56:2c:3b:8e:bd:ed:70:b6:6f:2a:01:ce:e4:c5:f1:75:
63:57:d2:13:be:62:ef:6b:7b:64:66:31:87:75:ba:79:c0:46:
62:5e:d7:7b
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgICCbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUM4
RjQ4NkI2OEU5RUJBNjUxQjE0QkMwMDhGNUE5REQ2ODNFQ0U3NzAeFw0yMDA5Mjkx
MDA5MjhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEE3N0Q2OEI5MTMzNkY1
MjgwNEVEODkzMkRGNTYxNTYzMTUyMTYwQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDqu9rLicailm9uQOSjqsXZg9e6TnRh/oe+1/2tRxXNtcmfzKPC
krSflRe9b+P5DFKuyQ9QqtPtquV6baP2UGW3o8kRRDAwDP1t2oXR7DLsx5V8GG1J
L1eute9xn9u3VRO6T4IJ7Pp5Wa1bpWDErDOULDrLK0qxu2VHotajmL63tRk7IUHe
0Dn0od1IrvGganFmMAeZe91ASe+w3tEsd6pdlQxoow0D1LN03wdRjS1HJZ2Ip+en
g6XkyCcqiVEsRwFJVNB4YJn3a9VWhyyOa0zOyTe7z4GXxChI1zFD0PHcsGvSx9d1
NTYLLJF0SIULpKmSObhNFtOzstNK2Fc4ZSSfAgMBAAGjggH5MIIB9TAdBgNVHQ4E
FgQUp31ouRM29SgE7Yky31YVYxUhYKcwHwYDVR0jBBgwFoAUXI9Ia2jp66ZRsUvA
CPWp3Wg+zncwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkVORE9O
SU5GTy9YSTlJYTJqcDY2WlJzVXZBQ1BXcDNXZy16bmMuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL1hJOUlhMmpwNjZaUnNVdkFDUFdwM1dnLXpuYy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1pFTkRPTklORk8vcDMxb3VSTTI5
U2dFN1lreTMxWVZZeFVoWUtjLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQC
AAIwCQMHACQE10AAAzANBgkqhkiG9w0BAQsFAAOCAQEAAepJ8c0Kc0BjOsMFUROm
aRy9xz3uhRcS92kPok+sgLJrK7MjY+qagmda734IN2NwCDgjA+HpscO5/sWNqttS
GmyLf2fHWZBbCMN5fhgNxtkny2R2mJfrqyx2r4Mj+Cfh3d0xHocj2UqUotHEd739
8xDIu8RacEZWCxjRx5ZjVDxgd6b1vyfObMJXmF1kRKeoYGLhVONuU645ZXDHuZ/u
ySzPKSdXdwRNXotZ4ne2Uwz9EVuO5Qptf4gdB5BcdTmBai1NB5Zu5WowoXJKtxpZ
MzHDD8FoGu9ornFWLDuOve1wtm8qAc7kxfF1Y1fSE75i72t7ZGYxh3W6ecBGYl7X
ew==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org