Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LAZkVnJ43BqTqggBdk5XQVt0GSE.roa
File: LAZkVnJ43BqTqggBdk5XQVt0GSE.roa (raw, json)
Hash identifier: nOJdTIvvjHjNUwvgwuKDDsCfsCTiG25TnRk1NKxuExs=
Subject key identifier: 2C:06:64:56:72:78:DC:1A:93:AA:08:01:76:4E:57:41:5B:74:19:21
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 1403
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LAZkVnJ43BqTqggBdk5XQVt0GSE.roa
Signing time: Fri 22 Aug 2025 08:57:29 +0000
ROA not before: Fri 22 Aug 2025 08:57:29 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 18419
IP address blocks: 118.150.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5123 (0x1403)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 22 08:57:29 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=2C0664567278DC1A93AA0801764E57415B741921
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d7:3e:6a:93:15:f9:27:e1:a5:04:a4:0c:28:
9f:75:8f:e3:66:51:3a:20:92:4c:87:a9:07:6c:fa:
3f:2b:f1:55:5e:de:b6:68:4c:1c:75:14:20:b6:b0:
53:cb:8c:57:3e:a9:e1:ef:46:87:9f:14:07:c5:b4:
5e:fb:7b:31:1e:02:54:bb:4b:a5:95:2d:f7:de:e8:
04:22:6e:c8:0a:f1:eb:8a:32:da:a7:a7:38:64:40:
2b:4c:f7:85:e1:c5:f9:b7:34:df:98:7f:9a:7b:3b:
34:83:a2:d8:7d:8f:1f:6c:10:c1:ed:e5:8b:5a:89:
71:a3:90:b0:f8:c5:a8:5e:eb:d8:bc:c2:b7:17:61:
fb:61:cd:48:e1:be:70:1b:36:61:3d:4a:35:04:33:
83:6d:4f:99:6d:6a:57:28:13:76:91:12:e7:ee:25:
67:2a:5b:8e:31:f1:8f:28:b1:ee:26:ae:05:3d:b2:
98:1a:f8:5d:c4:82:48:66:07:11:92:50:8e:b2:74:
b7:43:d0:e7:4a:63:86:43:d1:47:49:dd:19:7a:02:
b6:34:e0:98:31:4e:a5:ef:65:c9:e9:cb:7f:0c:d3:
98:bc:de:5d:b9:04:0c:d1:f0:e4:b7:be:68:9f:16:
4b:73:fe:96:ba:fd:1f:ad:a9:cb:22:e0:b5:5d:86:
73:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:06:64:56:72:78:DC:1A:93:AA:08:01:76:4E:57:41:5B:74:19:21
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/LAZkVnJ43BqTqggBdk5XQVt0GSE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.0.0/17
Signature Algorithm: sha256WithRSAEncryption
0d:4c:3d:13:d1:29:41:a4:0e:68:cd:fb:bd:5b:ac:ef:dd:dd:
23:66:cb:c3:bf:b7:2c:6f:9b:82:32:00:7d:92:b4:d7:02:45:
20:ff:39:d3:25:8a:37:83:22:b8:d0:f6:d1:eb:15:97:8d:91:
5f:f1:f2:9c:d3:6f:03:9e:5c:a5:06:fc:e5:f5:58:1e:19:34:
b7:8e:27:15:2f:5f:f5:f7:df:aa:9e:d1:1b:82:1c:ff:f0:b1:
fe:69:54:37:3d:58:81:56:08:5e:c8:64:1b:4f:90:f8:12:2b:
3c:81:e3:88:ff:98:95:e2:9f:f3:11:df:86:bd:0c:17:69:c4:
19:46:36:85:7d:b4:9b:bc:a5:39:0b:29:ac:a4:ff:16:58:d4:
2d:e3:ad:a2:12:e1:36:6b:05:e4:22:a0:51:85:34:68:18:18:
55:2e:a7:73:73:c7:3d:80:37:79:15:ac:08:3f:19:4d:21:5b:
f3:24:9f:96:51:74:32:96:86:27:28:b1:f9:20:18:24:0c:1d:
cd:ea:d0:e0:cc:ee:41:9a:8f:3d:69:f2:14:c7:28:40:f4:df:
03:2b:d0:c1:fd:a9:73:e4:9d:aa:91:30:70:a0:c8:b0:c0:bf:
af:2d:dc:fb:dc:a9:1d:07:89:93:02:d3:50:ee:21:ac:0d:28:
ea:9e:cb:8b
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICFAMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw
ODU3MjlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJDMDY2NDU2NzI3OERD
MUE5M0FBMDgwMTc2NEU1NzQxNUI3NDE5MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDR1z5qkxX5J+GlBKQMKJ91j+NmUTogkkyHqQds+j8r8VVe3rZo
TBx1FCC2sFPLjFc+qeHvRoefFAfFtF77ezEeAlS7S6WVLffe6AQibsgK8euKMtqn
pzhkQCtM94Xhxfm3NN+Yf5p7OzSDoth9jx9sEMHt5YtaiXGjkLD4xahe69i8wrcX
YfthzUjhvnAbNmE9SjUEM4NtT5ltalcoE3aREufuJWcqW44x8Y8ose4mrgU9spga
+F3EgkhmBxGSUI6ydLdD0OdKY4ZD0UdJ3Rl6ArY04JgxTqXvZcnpy38M05i83l25
BAzR8OS3vmifFktz/pa6/R+tqcsi4LVdhnOVAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQULAZkVnJ43BqTqggBdk5XQVt0GSEwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9MQVprVm5KNDNCcVRx
Z2dCZGs1WFFWdDBHU0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQHdpYAMA0GCSqGSIb3DQEBCwUAA4IBAQANTD0T0SlBpA5ozfu9W6zv3d0jZsvD
v7csb5uCMgB9krTXAkUg/znTJYo3gyK40PbR6xWXjZFf8fKc028DnlylBvzl9Vge
GTS3jicVL1/199+qntEbghz/8LH+aVQ3PViBVgheyGQbT5D4Eis8geOI/5iV4p/z
Ed+GvQwXacQZRjaFfbSbvKU5CymspP8WWNQt462iEuE2awXkIqBRhTRoGBhVLqdz
c8c9gDd5FawIPxlNIVvzJJ+WUXQyloYnKLH5IBgkDB3N6tDgzO5Bmo89afIUxyhA
9N8DK9DB/alz5J2qkTBwoMiwwL+vLdz73KkdB4mTAtNQ7iGsDSjqnsuL
-----END CERTIFICATE-----
Generated at Sun Aug 24 04:49:59 2025 by rpki-client