Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/t_i0KkSkG4lVCYLCs6WwFJpLXd0.roa
File: t_i0KkSkG4lVCYLCs6WwFJpLXd0.roa (raw, json)
Hash identifier: zX783mfNXx8Xk+tci+Yq3yWVrQn55lwIz/R9nNdpsiM=
Subject key identifier: B7:F8:B4:2A:44:A4:1B:89:55:09:82:C2:B3:A5:B0:14:9A:4B:5D:DD
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09B4
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/t_i0KkSkG4lVCYLCs6WwFJpLXd0.roa
Signing time: Tue 29 Sep 2020 10:09:27 +0000
ROA not before: Tue 29 Sep 2020 10:09:27 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 2404:d740:306::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2484 (0x9b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:27 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=B7F8B42A44A41B89550982C2B3A5B0149A4B5DDD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:38:81:1e:15:d3:ef:66:a8:0a:ae:20:0d:03:
f7:89:46:e7:87:42:2f:b1:08:1f:5f:af:56:99:32:
e2:ee:0b:fc:2e:4b:13:4c:84:7d:98:1d:bf:54:f7:
8e:6f:39:3c:77:7a:da:95:35:b9:c5:39:6d:8c:4f:
c0:39:d5:a7:8e:66:fc:21:0d:0c:fa:ba:25:0e:3f:
91:1a:aa:a1:c4:b2:e2:80:e8:77:2b:59:83:4e:96:
ef:b2:56:55:fb:c7:bd:1f:ea:97:9f:e1:47:61:9b:
e4:e0:0a:02:65:87:ff:a9:b2:4f:0b:de:e8:03:a0:
f3:3f:9c:d7:ae:e0:99:de:67:95:16:50:d2:31:fe:
01:5a:f1:84:3c:c7:60:da:c8:bd:b5:90:77:e0:ef:
fb:40:2c:4c:5f:d7:86:09:d2:7a:96:6f:42:72:0a:
f1:27:24:f9:7a:c4:9f:ac:5d:52:03:7b:09:d6:aa:
87:c5:6f:48:33:77:86:c9:33:53:7c:d7:e9:23:fd:
f9:55:82:d4:84:f9:09:24:e7:f9:11:8d:f3:9c:b9:
45:0c:35:c5:0e:29:c5:9f:a3:bc:63:f4:2c:b4:55:
b7:88:ef:31:38:43:8a:d0:93:7d:43:b7:0e:df:e1:
39:a2:11:90:d8:18:ac:e1:33:02:51:1e:d5:06:7f:
de:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:F8:B4:2A:44:A4:1B:89:55:09:82:C2:B3:A5:B0:14:9A:4B:5D:DD
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/t_i0KkSkG4lVCYLCs6WwFJpLXd0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:d740:306::/48
Signature Algorithm: sha256WithRSAEncryption
90:e7:d9:af:8f:e5:97:26:a9:76:0a:1f:b4:ce:80:96:65:4c:
e2:fe:3e:72:9f:8b:36:d3:17:0e:df:55:88:11:1e:a0:3d:eb:
54:6d:36:9d:28:c5:4c:bf:1a:68:c5:90:0c:0c:bf:a9:49:a4:
b0:5b:2c:22:00:70:7f:98:ba:32:7b:e2:af:76:38:40:c5:75:
08:53:48:c3:c3:de:a4:49:23:87:9b:75:0b:7e:f6:be:94:d9:
bd:b3:c6:8b:5d:e9:e4:70:90:d7:d8:7e:15:b1:6d:76:28:46:
9c:6f:b5:dc:1a:1c:fc:cd:a9:f5:a5:a6:a1:66:39:51:83:cc:
c3:ad:2c:77:57:d2:e1:b6:2a:a7:8e:e4:7c:97:de:92:ec:b2:
02:21:b0:f5:3e:85:6c:c3:23:11:5e:b8:da:6b:5a:9a:e1:21:
18:d5:f5:c0:12:83:8f:ea:58:01:bf:44:18:9b:5f:66:29:7e:
d5:bb:6c:e9:12:37:aa:41:4d:6e:59:4a:8e:7d:8b:c7:ba:9a:
6f:45:82:0c:08:78:82:63:dd:ba:20:0b:6d:ea:4f:59:2e:47:
c9:3b:6a:62:ea:c8:fb:08:2d:51:7c:13:7a:70:39:ef:8e:c2:
f2:13:71:4e:75:c3:b7:80:29:4c:af:bb:57:70:90:13:44:53:
c8:ae:bc:b1
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgICCbQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUM4
RjQ4NkI2OEU5RUJBNjUxQjE0QkMwMDhGNUE5REQ2ODNFQ0U3NzAeFw0yMDA5Mjkx
MDA5MjdaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEI3RjhCNDJBNDRBNDFC
ODk1NTA5ODJDMkIzQTVCMDE0OUE0QjVEREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDmOIEeFdPvZqgKriANA/eJRueHQi+xCB9fr1aZMuLuC/wuSxNM
hH2YHb9U945vOTx3etqVNbnFOW2MT8A51aeOZvwhDQz6uiUOP5EaqqHEsuKA6Hcr
WYNOlu+yVlX7x70f6pef4Udhm+TgCgJlh/+psk8L3ugDoPM/nNeu4JneZ5UWUNIx
/gFa8YQ8x2DayL21kHfg7/tALExf14YJ0nqWb0JyCvEnJPl6xJ+sXVIDewnWqofF
b0gzd4bJM1N81+kj/flVgtSE+Qkk5/kRjfOcuUUMNcUOKcWfo7xj9Cy0VbeI7zE4
Q4rQk31Dtw7f4TmiEZDYGKzhMwJRHtUGf969AgMBAAGjggH5MIIB9TAdBgNVHQ4E
FgQUt/i0KkSkG4lVCYLCs6WwFJpLXd0wHwYDVR0jBBgwFoAUXI9Ia2jp66ZRsUvA
CPWp3Wg+zncwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg
U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWkVORE9O
SU5GTy9YSTlJYTJqcDY2WlJzVXZBQ1BXcDNXZy16bmMuY3JsMGAGCCsGAQUFBwEB
BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U
V05JQ0NBL1hJOUlhMmpwNjZaUnNVdkFDUFdwM1dnLXpuYy5jZXIwDgYDVR0PAQH/
BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y
cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1pFTkRPTklORk8vdF9pMEtrU2tH
NGxWQ1lMQ3M2V3dGSnBMWGQwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw
LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAiBggrBgEFBQcBBwEB/wQTMBEwDwQC
AAIwCQMHACQE10ADBjANBgkqhkiG9w0BAQsFAAOCAQEAkOfZr4/llyapdgoftM6A
lmVM4v4+cp+LNtMXDt9ViBEeoD3rVG02nSjFTL8aaMWQDAy/qUmksFssIgBwf5i6
Mnvir3Y4QMV1CFNIw8PepEkjh5t1C372vpTZvbPGi13p5HCQ19h+FbFtdihGnG+1
3Boc/M2p9aWmoWY5UYPMw60sd1fS4bYqp47kfJfekuyyAiGw9T6FbMMjEV642mta
muEhGNX1wBKDj+pYAb9EGJtfZil+1bts6RI3qkFNbllKjn2Lx7qab0WCDAh4gmPd
uiALbepPWS5HyTtqYurI+wgtUXwTenA5747C8hNxTnXDt4ApTK+7V3CQE0RTyK68
sQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:52 2024 by rpki-client on console-ams.rpki-client.org