Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIDC/N5Eha5PpHeZeGGmG-omB0hyA4jg.roa
File: N5Eha5PpHeZeGGmG-omB0hyA4jg.roa (raw, json)
Hash identifier: jwOeFSnGahsWZSMDQBbbv/edVQm36vzfIk26PMJqPzg=
Subject key identifier: 37:91:21:6B:93:E9:1D:E6:5E:18:69:86:FA:89:81:D2:1C:80:E2:38
Certificate issuer: /CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Certificate serial: 0CCF
Authority key identifier: C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/N5Eha5PpHeZeGGmG-omB0hyA4jg.roa
Signing time: Thu 05 Dec 2024 02:26:18 +0000
ROA not before: Thu 05 Dec 2024 02:26:18 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131609
IP address blocks: 103.99.88.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3279 (0xccf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Validity
Not Before: Dec 5 02:26:18 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=3791216B93E91DE65E186986FA8981D21C80E238
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:47:6c:87:ab:d1:94:6b:f0:02:17:e4:35:94:
77:c9:59:af:ef:22:1e:85:e1:f0:df:29:4b:9e:31:
c7:57:bd:19:c3:40:ae:1a:02:88:fa:ff:28:e1:66:
d2:88:42:4f:5b:8a:76:1b:ce:a9:f2:86:ee:3d:59:
3e:98:f4:36:56:56:b4:20:73:c7:e4:a2:83:96:ea:
34:df:3b:b8:78:23:74:6e:79:ea:15:b8:b4:51:21:
48:9f:25:e4:6f:24:99:c1:b8:52:67:d9:58:ec:dc:
6a:fd:62:07:5d:2d:a6:79:26:be:57:64:6d:09:fe:
c7:56:41:84:0a:dc:d5:d7:b4:1f:d6:ab:60:88:2c:
0a:2e:b2:a3:51:b7:90:68:26:5f:ff:48:c1:7a:d0:
05:26:9f:69:47:39:1b:52:85:9f:49:fc:7b:b7:8a:
e7:86:8f:92:2e:8c:0f:1b:8a:8d:03:1a:08:e2:79:
6d:bc:d8:bc:34:9d:f1:82:54:b1:36:6a:5c:7c:38:
dd:17:01:32:f5:a2:38:ab:ca:cf:bd:21:0d:35:8b:
3f:8a:48:03:f9:91:e1:f4:4d:ed:b7:3f:a9:67:8e:
67:e8:16:f9:90:2b:2f:c3:01:9e:f6:82:28:b8:6b:
07:a3:00:ef:11:c3:3c:f1:41:65:ec:83:db:72:f2:
55:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:91:21:6B:93:E9:1D:E6:5E:18:69:86:FA:89:81:D2:1C:80:E2:38
X509v3 Authority Key Identifier:
keyid:C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/wIUVyLn7U_jO1InSE09kQf-toF4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/N5Eha5PpHeZeGGmG-omB0hyA4jg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.88.0/22
Signature Algorithm: sha256WithRSAEncryption
6a:76:24:2f:bc:b7:d9:35:4e:d1:31:8b:42:52:5a:3b:a9:72:
3a:17:2f:8b:c1:73:f3:62:d0:64:17:1a:68:c1:16:58:cb:4e:
ea:22:7a:68:36:92:93:13:8b:8b:83:93:27:d7:e4:85:03:00:
d9:5a:d8:20:cf:e7:db:27:9b:be:4d:64:a0:b7:ab:68:f5:80:
a7:c6:08:c5:f9:33:f6:33:51:e4:45:c0:92:3d:79:0f:e2:3b:
2c:35:50:8b:74:fd:ce:7d:c7:c3:2e:b9:8a:ae:87:f9:d3:f0:
6f:35:9a:30:cb:a4:b3:c2:16:5e:79:59:04:96:01:9c:69:51:
58:d6:eb:03:ae:4c:52:29:e4:21:45:83:8b:4d:42:07:bd:65:
c3:86:fe:f5:a5:af:24:43:93:02:98:69:65:97:9e:db:82:a3:
44:6f:98:38:b4:30:bb:a0:ff:a3:8a:7e:ff:29:ee:73:81:fc:
a8:ae:e9:ca:b7:02:aa:aa:b5:1b:ad:2c:bf:bc:db:dc:9b:9e:
b7:59:0a:fc:4d:b2:0b:89:f4:46:8f:42:89:57:2c:33:ea:ae:
23:7c:80:0b:12:d3:14:ad:fe:b7:7b:39:c7:70:ea:b8:82:d7:
c3:68:da:3b:78:36:0c:83:8e:6d:0d:52:a6:81:94:0e:a3:aa:
bd:66:5e:6b
-----BEGIN CERTIFICATE-----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Generated at Thu Dec 5 05:40:50 2024 by rpki-client on console.sobornost.net