Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIDC/a14XuJGC4Ol_6sfeuhsn4uVBKVI.roa
File: a14XuJGC4Ol_6sfeuhsn4uVBKVI.roa (raw, json)
Hash identifier: soQmS9pwlNw8bp5p5dDrgp3hJJiTEZ3kpXVL7buAcjs=
Subject key identifier: 6B:5E:17:B8:91:82:E0:E9:7F:EA:C7:DE:BA:1B:27:E2:E5:41:29:52
Certificate issuer: /CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Certificate serial: 0C95
Authority key identifier: C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/a14XuJGC4Ol_6sfeuhsn4uVBKVI.roa
Signing time: Wed 04 Dec 2024 11:56:11 +0000
ROA not before: Wed 04 Dec 2024 11:56:11 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 131609
IP address blocks: 103.99.88.0/22 maxlen: 22
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3221 (0xc95)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C08515C8B9FB53F8CED489D2134F6441FFADA05E
Validity
Not Before: Dec 4 11:56:11 2024 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=6B5E17B89182E0E97FEAC7DEBA1B27E2E5412952
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:cb:75:d1:f7:37:15:79:94:84:95:2d:a3:a3:
81:9e:4f:08:9f:1c:94:50:6e:82:74:d0:c7:05:4f:
a4:07:35:06:ef:2f:8b:26:9e:85:34:43:86:c9:29:
43:1d:f5:4b:3a:14:02:df:61:67:38:b6:fc:6f:50:
50:cb:d0:3f:c6:6d:12:08:c2:9c:44:48:3e:42:b1:
15:6d:96:40:32:e4:51:0b:3a:20:df:b4:fe:a9:50:
c4:e9:52:3a:c5:bf:94:dc:c3:ea:35:b1:d1:53:88:
fe:2d:30:9f:06:1a:22:96:24:3c:d0:d4:d3:e1:08:
3b:07:71:3e:22:b1:39:25:cc:84:ea:a2:83:0c:b0:
5a:f0:31:43:d5:65:cc:ee:5a:e9:e6:14:ae:ea:28:
eb:6a:f9:98:36:29:97:34:6c:ea:07:73:e3:08:ac:
95:1a:b0:e9:91:32:80:2b:2c:0c:3f:69:d6:8c:af:
96:95:a4:33:d7:8f:df:e1:8d:04:4b:5a:76:15:ee:
55:c3:5f:46:36:46:2e:88:9a:6c:1c:15:b0:f9:07:
ad:3a:49:d8:db:83:56:a1:0e:93:c2:f5:74:e8:f5:
ab:9d:55:7f:bb:74:28:68:7b:d6:05:79:e9:3e:ed:
e9:d0:f7:65:20:6b:a0:aa:0b:81:65:5c:b7:34:e5:
ac:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:5E:17:B8:91:82:E0:E9:7F:EA:C7:DE:BA:1B:27:E2:E5:41:29:52
X509v3 Authority Key Identifier:
keyid:C0:85:15:C8:B9:FB:53:F8:CE:D4:89:D2:13:4F:64:41:FF:AD:A0:5E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/wIUVyLn7U_jO1InSE09kQf-toF4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wIUVyLn7U_jO1InSE09kQf-toF4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIDC/a14XuJGC4Ol_6sfeuhsn4uVBKVI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.99.88.0/22
Signature Algorithm: sha256WithRSAEncryption
bf:6a:7d:0e:24:b8:a5:48:2b:0b:24:7b:e0:d7:dc:c1:6a:40:
7e:11:9e:4d:24:60:c9:13:ab:ea:f1:66:a5:71:64:30:36:c4:
e0:d6:64:57:2c:ba:e0:09:2e:7e:b7:33:bf:b4:d2:46:71:8e:
b0:64:a3:f4:10:0f:ed:ff:2c:1d:c6:39:b1:a1:5e:94:8c:55:
b0:28:d7:23:bc:18:c4:d6:88:b3:d7:e0:7d:16:c2:c6:76:a8:
fd:ec:1d:db:9e:85:d9:4b:b2:14:da:7e:99:f9:3f:0d:2e:7d:
e6:e6:99:c9:e7:6d:f2:4d:79:56:be:1e:bb:c0:af:e8:0c:4c:
77:d2:c6:68:96:41:45:7d:2a:38:0e:80:32:b0:25:74:41:39:
a6:e4:5c:a1:b2:9e:0e:c3:98:95:8b:6a:31:bb:04:e9:64:71:
92:0d:f4:af:da:91:ee:bb:4b:52:5e:a3:98:0f:e6:46:73:92:
b2:a3:8a:99:0e:a3:2f:ae:7f:e2:9b:83:4a:4b:49:e6:37:34:
67:59:8a:51:e6:98:bd:2d:81:4e:30:80:62:36:dd:08:eb:97:
9a:d5:91:34:f6:88:01:82:13:a7:53:50:8b:95:b6:de:a8:2f:
e2:cb:fa:25:50:00:6a:d3:e3:80:2d:37:eb:40:3a:45:80:89:
83:68:99:42
-----BEGIN CERTIFICATE-----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Generated at Wed Dec 4 15:01:43 2024 by rpki-client on console.sobornost.net