Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/vydxxx2befsxseuwzhY-mFqZ_Ac.roa
File: vydxxx2befsxseuwzhY-mFqZ_Ac.roa (raw, json)
Hash identifier: ygYd+SoiS0uaH548X1J8WQ1/Sv3PBqGY2HFUAxtCtn8=
Subject key identifier: BF:27:71:C7:1D:9B:79:FB:31:B1:EB:B0:CE:16:3E:98:5A:99:FC:07
Certificate issuer: /CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Certificate serial: 09C0
Authority key identifier: 5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/vydxxx2befsxseuwzhY-mFqZ_Ac.roa
Signing time: Tue 29 Sep 2020 10:09:31 +0000
ROA not before: Tue 29 Sep 2020 10:09:31 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 131644
IP address blocks: 2404:d740:2::/48 maxlen: 48
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2496 (0x9c0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5C8F486B68E9EBA651B14BC008F5A9DD683ECE77
Validity
Not Before: Sep 29 10:09:31 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=BF2771C71D9B79FB31B1EBB0CE163E985A99FC07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d6:e4:f4:fb:4b:50:7b:b3:ab:b2:5d:af:d2:
4a:2c:55:55:12:19:86:68:3b:58:99:c4:31:5f:a3:
70:7f:f6:11:71:3d:a4:39:90:52:af:70:8e:94:73:
51:84:9d:f4:75:d9:17:ea:4f:d8:0d:ce:4a:15:60:
2c:5f:9b:cf:a3:68:fe:91:ed:70:c7:a1:bb:41:77:
e0:cf:25:55:73:be:7a:85:aa:dd:62:ad:53:94:90:
3a:de:26:5d:05:a6:92:e8:e1:11:14:13:56:e3:da:
67:9d:5e:32:bc:c6:7c:81:61:19:bc:46:35:76:b2:
0b:ee:6e:d7:7e:d8:81:10:06:02:a1:94:db:8f:1d:
05:98:d8:10:0c:b6:16:e0:34:bc:8d:e1:8a:b4:b4:
b3:6f:ed:46:aa:89:24:21:35:d4:dc:d9:f4:88:da:
50:47:05:db:78:36:1d:34:b8:49:33:0c:91:c3:49:
66:99:79:3b:8a:42:0b:b6:08:d0:4f:1b:a8:96:be:
9d:06:82:b5:7f:b5:87:5a:b2:e7:7c:be:e7:b2:20:
1f:cb:1c:16:f4:20:74:23:f8:15:b3:05:98:bf:43:
04:bb:a1:b9:45:69:92:b0:56:04:20:7b:2a:2c:aa:
45:37:46:da:f0:21:fc:2d:c7:cd:15:ce:fd:ab:f5:
b0:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:27:71:C7:1D:9B:79:FB:31:B1:EB:B0:CE:16:3E:98:5A:99:FC:07
X509v3 Authority Key Identifier:
keyid:5C:8F:48:6B:68:E9:EB:A6:51:B1:4B:C0:08:F5:A9:DD:68:3E:CE:77
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/XI9Ia2jp66ZRsUvACPWp3Wg-znc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XI9Ia2jp66ZRsUvACPWp3Wg-znc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZENDONINFO/vydxxx2befsxseuwzhY-mFqZ_Ac.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:d740:2::/48
Signature Algorithm: sha256WithRSAEncryption
2a:90:2c:f4:93:c9:f7:39:c5:07:6c:e6:fd:54:26:bd:db:3a:
a3:72:ff:b0:41:6e:85:bf:13:31:a0:c7:87:f3:c2:ca:30:8f:
99:56:59:19:42:f3:90:58:d3:57:07:67:4c:bc:7f:15:8f:86:
ad:1a:02:9c:ef:c0:cd:c8:10:3b:57:56:12:22:68:31:30:40:
9f:c1:ee:4d:11:6b:8b:cb:2c:38:c2:24:ed:39:de:21:26:05:
8f:d2:24:49:fd:a3:89:48:2f:83:18:4a:d5:79:30:7b:90:e1:
92:a7:ad:4a:21:c7:70:c1:61:0b:5f:d9:b8:86:a5:e4:14:fb:
97:f8:b8:0d:92:5b:c1:59:d7:2b:95:90:70:72:15:dc:07:51:
ff:7b:7d:ec:ee:28:81:39:a0:45:73:28:ad:f4:9c:b3:71:1c:
d1:18:36:55:d9:ae:08:28:a4:b2:20:f1:0e:17:5c:4f:58:f1:
91:8b:73:1d:5f:01:34:a8:36:93:ef:ac:ec:8f:92:54:a1:48:
07:11:67:79:19:84:7f:c5:63:36:61:91:a9:85:27:69:c9:8b:
73:07:f7:62:c3:c3:c7:25:a2:81:1d:1a:63:42:69:8f:8a:30:
66:c2:4c:a5:dd:5c:a1:0c:31:f9:5b:d9:36:4c:0a:72:18:67:
ea:d2:c3:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:52 2024 by rpki-client on console-ams.rpki-client.org