Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4L79xSgz9nnO0LlHhnWDLxU_3uM.roa
File: 4L79xSgz9nnO0LlHhnWDLxU_3uM.roa (raw, json)
Hash identifier: HyI+AomOZnsi/Eh2NlG77ULTLxa2MP8Bs+N84ze2umk=
Subject key identifier: E0:BE:FD:C5:28:33:F6:79:CE:D0:B9:47:86:75:83:2F:15:3F:DE:E3
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 13CE
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4L79xSgz9nnO0LlHhnWDLxU_3uM.roa
Signing time: Fri 22 Aug 2025 08:57:17 +0000
ROA not before: Fri 22 Aug 2025 08:57:17 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 18419
IP address blocks: 118.150.248.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5070 (0x13ce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 22 08:57:17 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=E0BEFDC52833F679CED0B9478675832F153FDEE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bc:19:6c:0a:08:66:51:b2:a7:66:96:61:dc:
80:93:c5:19:df:45:45:f6:fe:97:ad:ae:b3:b6:93:
21:5e:a9:27:6c:49:7a:f8:03:c3:e1:3e:a4:92:7e:
80:87:ae:5d:9d:1c:33:a1:cf:30:e5:52:d7:6d:19:
0a:3a:73:7b:73:38:cf:5a:8c:33:9e:9b:1a:45:a7:
91:bc:fd:13:73:b1:39:6f:35:58:e3:6b:76:f1:00:
25:7d:b6:d1:62:19:08:d0:6c:d2:3c:0a:71:6d:bd:
38:ff:1d:d3:ec:8c:d8:f7:66:75:34:d5:05:b8:5b:
7b:47:66:ff:88:f2:33:7b:06:69:bb:a6:60:b9:61:
f7:fa:6f:fc:79:7b:c9:f3:50:cf:56:8a:e5:f0:fd:
fa:06:49:68:bd:5b:76:70:21:89:5c:78:da:89:8d:
4d:f2:b6:5e:58:dd:92:2e:2c:88:55:8e:a3:d0:3c:
43:ce:b3:59:44:f3:5d:8a:58:80:3b:1e:83:a9:1d:
c8:71:6e:8a:f3:7b:49:e7:92:e4:57:1a:74:dd:ab:
9c:3c:9f:c3:15:eb:53:2f:07:b7:d7:95:b5:82:f0:
82:fb:0b:0a:ff:c0:1e:da:8d:ca:b5:0f:92:83:8c:
64:9f:58:08:e6:3e:b3:1f:bb:68:14:c0:28:22:03:
02:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:BE:FD:C5:28:33:F6:79:CE:D0:B9:47:86:75:83:2F:15:3F:DE:E3
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/4L79xSgz9nnO0LlHhnWDLxU_3uM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.248.0/22
Signature Algorithm: sha256WithRSAEncryption
7e:56:d8:a3:85:64:4f:ec:8f:d0:65:5a:63:ae:ea:e4:8f:97:
b8:10:31:f2:d3:b8:78:b2:0f:af:ef:30:52:ac:e7:78:14:52:
05:f5:11:c7:31:1d:66:4d:5c:8a:94:16:23:b6:e0:12:04:4c:
d0:43:e4:c7:7e:6d:56:2b:22:94:10:f3:19:fe:a6:29:49:c6:
c0:29:10:ce:0a:50:95:b8:3b:88:e5:57:3c:93:38:be:90:61:
a1:0e:13:84:50:da:96:58:43:8b:f2:9a:bc:d7:eb:3c:23:1e:
6b:ca:c7:6f:49:80:70:4f:c1:a5:d9:b9:11:f1:e0:3d:74:4b:
45:91:9a:29:f3:7f:c3:84:e3:6f:da:3a:c0:05:b7:e5:fc:4c:
71:14:83:fb:ca:07:5d:04:1e:7b:f9:98:49:d3:00:12:a1:a8:
86:bf:a8:0b:f6:e0:d8:aa:72:f9:ac:2a:02:87:41:3d:17:86:
fe:d3:3f:6f:f3:e8:27:1c:c0:5f:26:2b:07:5d:84:5e:b8:3a:
7c:31:1e:43:89:8a:af:b9:46:c5:be:74:79:f6:84:26:e0:20:
e7:5f:10:b9:7a:8b:a6:4d:d6:d6:48:49:07:96:22:b2:e5:1f:
b0:f5:74:bd:39:74:49:83:4c:55:ca:33:aa:b2:34:8d:f9:93:
fb:27:18:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:50:45 2025 by rpki-client