Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCETECH/UGlSqy4GQVBcfcSB-4kg4PCV9yk.roa
File: UGlSqy4GQVBcfcSB-4kg4PCV9yk.roa (raw, json)
Hash identifier: JBbBFG07VTGXfv35U7+CBE//zW8plVPmja6NF8VO3Fw=
Subject key identifier: 50:69:52:AB:2E:06:41:50:5C:7D:C4:81:FB:89:20:E0:F0:95:F7:29
Certificate issuer: /CN=BD8533BC896A55C6C8C3FADEFA5787310C5F340E
Certificate serial: 0569
Authority key identifier: BD:85:33:BC:89:6A:55:C6:C8:C3:FA:DE:FA:57:87:31:0C:5F:34:0E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vYUzvIlqVcbIw_re-leHMQxfNA4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/UGlSqy4GQVBcfcSB-4kg4PCV9yk.roa
Signing time: Fri 22 Aug 2025 08:49:00 +0000
ROA not before: Fri 22 Aug 2025 08:49:00 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 208223
IP address blocks: 2401:af20::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1385 (0x569)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BD8533BC896A55C6C8C3FADEFA5787310C5F340E
Validity
Not Before: Aug 22 08:49:00 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=506952AB2E0641505C7DC481FB8920E0F095F729
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:6d:2d:69:1f:1e:44:7d:02:49:c3:0f:5d:2b:
ea:22:69:13:81:48:8e:08:81:76:39:10:b0:15:9c:
3f:82:54:ca:f5:29:f9:6c:3d:a1:45:cb:dd:12:88:
f2:81:f2:6b:2f:22:81:23:e1:c7:46:31:4b:39:24:
a4:43:51:69:90:f9:35:dc:5e:c9:9a:1d:f5:58:ac:
c8:56:99:28:ac:cc:22:55:26:9e:3f:77:74:7d:22:
65:9e:41:2f:7b:0f:38:d7:1e:27:47:8c:5b:66:2d:
7d:d5:6f:0b:e5:82:71:49:e1:30:da:d3:a2:9f:10:
17:d7:23:3a:3a:0a:ff:7d:ab:53:cb:8a:ff:36:1d:
25:a9:18:6c:5c:0d:f3:53:a4:9f:bd:79:c6:50:af:
b9:13:d8:e1:0e:90:29:f1:a1:2d:04:b4:c1:91:70:
a5:82:85:e2:1b:0c:9b:49:c2:63:33:78:a5:ef:59:
23:2f:ba:bd:b3:07:2d:19:60:ce:60:e2:6a:fc:d9:
c7:29:df:c8:f8:04:f2:b9:44:49:ef:50:c1:73:07:
a8:14:e4:b9:da:53:80:fa:e7:c6:15:b6:45:0f:00:
2d:d5:52:39:b6:00:5c:cb:1c:de:e7:79:0d:c6:ec:
e2:6e:61:23:63:89:e7:77:15:03:25:d1:b9:e1:8b:
44:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:69:52:AB:2E:06:41:50:5C:7D:C4:81:FB:89:20:E0:F0:95:F7:29
X509v3 Authority Key Identifier:
keyid:BD:85:33:BC:89:6A:55:C6:C8:C3:FA:DE:FA:57:87:31:0C:5F:34:0E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/vYUzvIlqVcbIw_re-leHMQxfNA4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vYUzvIlqVcbIw_re-leHMQxfNA4.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCETECH/UGlSqy4GQVBcfcSB-4kg4PCV9yk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:af20::/32
Signature Algorithm: sha256WithRSAEncryption
32:9e:12:b7:09:0f:80:5e:2b:03:15:03:87:4f:37:3f:9c:54:
92:32:95:e1:1c:c3:19:20:65:f9:38:df:f2:92:d5:2a:ae:34:
bb:c1:82:27:47:01:fd:11:ed:9a:14:e3:a9:24:33:be:24:d5:
93:97:95:5c:13:68:82:a7:68:aa:41:53:27:c9:18:7b:ea:ad:
9e:80:22:9b:64:07:ff:99:1e:55:32:fc:45:3d:c0:2c:91:e7:
a0:e3:8d:c3:1e:04:27:b1:12:ac:36:c8:5d:69:ce:c0:c6:97:
69:b9:e8:6c:11:33:c5:6a:c7:87:76:06:e8:7c:c9:06:f2:d6:
b8:bd:bb:63:c3:52:9a:1c:67:31:1d:c5:e0:15:ac:d4:6d:ae:
fb:83:75:15:4a:33:e7:e8:9b:6c:e4:c7:cc:28:3c:39:e2:b5:
7c:c2:92:18:1f:d0:8c:ca:9a:5d:19:78:38:b1:e1:55:98:da:
29:7a:4b:8e:c9:e0:ab:36:83:c4:d6:27:89:93:7b:0d:92:4f:
f7:6a:33:9d:80:b9:5f:ee:08:b1:87:fa:71:cd:ac:8b:5e:da:
b9:f3:6d:09:a1:1c:b1:1a:83:a8:76:45:07:8c:0d:6d:6d:d3:
f1:5d:9f:f1:55:eb:86:08:ff:7b:40:da:90:d0:c4:72:82:0f:
93:53:93:9c
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgICBWkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkQ4
NTMzQkM4OTZBNTVDNkM4QzNGQURFRkE1Nzg3MzEwQzVGMzQwRTAeFw0yNTA4MjIw
ODQ5MDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUwNjk1MkFCMkUwNjQx
NTA1QzdEQzQ4MUZCODkyMEUwRjA5NUY3MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfbS1pHx5EfQJJww9dK+oiaROBSI4IgXY5ELAVnD+CVMr1Kfls
PaFFy90SiPKB8msvIoEj4cdGMUs5JKRDUWmQ+TXcXsmaHfVYrMhWmSiszCJVJp4/
d3R9ImWeQS97DzjXHidHjFtmLX3VbwvlgnFJ4TDa06KfEBfXIzo6Cv99q1PLiv82
HSWpGGxcDfNTpJ+9ecZQr7kT2OEOkCnxoS0EtMGRcKWCheIbDJtJwmMzeKXvWSMv
ur2zBy0ZYM5g4mr82ccp38j4BPK5REnvUMFzB6gU5LnaU4D658YVtkUPAC3VUjm2
AFzLHN7neQ3G7OJuYSNjied3FQMl0bnhi0T3AgMBAAGjggHxMIIB7TAdBgNVHQ4E
FgQUUGlSqy4GQVBcfcSB+4kg4PCV9ykwHwYDVR0jBBgwFoAUvYUzvIlqVcbIw/re
+leHMQxfNA4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0NFVEVD
SC92WVV6dklscVZjYkl3X3JlLWxlSE1ReGZOQTQuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3ZZVXp2SWxxVmNiSXdfcmUtbGVITVF4Zk5BNC5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NDRVRFQ0gvVUdsU3F5NEdRVkJjZmNT
Qi00a2c0UENWOXlrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF
ACQBryAwDQYJKoZIhvcNAQELBQADggEBADKeErcJD4BeKwMVA4dPNz+cVJIyleEc
wxkgZfk43/KS1SquNLvBgidHAf0R7ZoU46kkM74k1ZOXlVwTaIKnaKpBUyfJGHvq
rZ6AIptkB/+ZHlUy/EU9wCyR56DjjcMeBCexEqw2yF1pzsDGl2m56GwRM8Vqx4d2
Buh8yQby1ri9u2PDUpocZzEdxeAVrNRtrvuDdRVKM+fom2zkx8woPDnitXzCkhgf
0IzKml0ZeDix4VWY2il6S47J4Ks2g8TWJ4mTew2ST/dqM52AuV/uCLGH+nHNrIte
2rnzbQmhHLEag6h2RQeMDW1t0/Fdn/FV64YI/3tA2pDQxHKCD5NTk5w=
-----END CERTIFICATE-----
Generated at Sun Aug 24 04:51:13 2025 by rpki-client