Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/YNdPQw-OkZey76UslPRMrKzV4bY.roa
File: YNdPQw-OkZey76UslPRMrKzV4bY.roa (raw, json)
Hash identifier: P9I3/N3TpBNCs6GNa2j47xoSWGC96g4qFMcEl/BIYOQ=
Subject key identifier: 60:D7:4F:43:0F:8E:91:97:B2:EF:A5:2C:94:F4:4C:AC:AC:D5:E1:B6
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 140C
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/YNdPQw-OkZey76UslPRMrKzV4bY.roa
Signing time: Fri 22 Aug 2025 08:57:30 +0000
ROA not before: Fri 22 Aug 2025 08:57:30 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 131607
IP address blocks: 150.117.224.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5132 (0x140c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 22 08:57:30 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=60D74F430F8E9197B2EFA52C94F44CACACD5E1B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d7:87:11:9f:54:c3:fb:d9:f3:9e:62:53:71:
1d:6d:bf:7e:bb:9c:14:c8:e2:a5:ba:66:65:26:23:
4c:c2:28:26:c2:34:a0:4f:0f:a9:b2:d7:c6:e5:03:
68:6b:58:a3:44:37:58:34:9e:ea:75:3d:97:7b:29:
54:30:b1:27:ba:56:02:91:41:21:3f:49:2e:0f:a8:
68:93:59:32:4c:0b:28:81:e6:d3:1d:f5:9b:b4:cd:
80:33:45:45:57:0e:ce:a8:1b:dd:6b:8f:89:e8:27:
10:64:b0:b1:e9:96:73:92:a7:0b:cb:72:09:6e:49:
18:c7:b5:ae:94:d2:80:cb:fb:a6:d1:14:69:65:59:
c7:6c:b0:e9:58:a9:9e:78:5e:f5:cb:d0:a4:71:ff:
68:b7:a5:b1:93:55:3a:7f:ff:52:13:8e:ab:60:82:
d0:b3:70:67:25:65:d0:ea:24:ec:a2:21:a1:2d:42:
7f:2d:66:24:19:ac:e9:53:bb:aa:10:a5:0b:7d:16:
f0:cd:d9:de:b4:a4:b5:5c:90:87:af:b8:97:93:3e:
1b:a6:64:e1:b1:c2:5b:51:ef:b6:ba:7a:bb:dc:37:
da:bb:7d:69:db:66:12:ff:25:b6:1f:46:c5:33:41:
61:63:99:37:52:04:65:61:da:a0:7d:02:90:d4:a2:
1e:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:D7:4F:43:0F:8E:91:97:B2:EF:A5:2C:94:F4:4C:AC:AC:D5:E1:B6
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/YNdPQw-OkZey76UslPRMrKzV4bY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
150.117.224.0/21
Signature Algorithm: sha256WithRSAEncryption
95:76:e8:c1:a0:4c:d3:35:c8:0c:3e:cf:5d:bf:9b:71:22:d7:
c2:89:8c:63:97:aa:57:b7:06:ae:7a:a3:8f:d9:29:49:4f:38:
ee:76:e9:bf:08:77:49:30:7e:3d:34:ac:37:44:91:bb:ff:98:
24:b9:a7:07:e6:aa:0d:e5:14:25:a3:4c:a4:68:85:4a:02:7c:
c6:c6:d8:12:c6:85:e2:fe:82:3e:d8:1c:f1:4d:cf:1b:c6:89:
29:a7:df:be:a7:cd:49:b3:c6:91:c1:76:1c:40:21:f6:ae:90:
af:f9:c5:09:c2:63:4f:c8:2b:79:da:14:f6:7e:d1:fa:dd:4e:
9c:02:ab:35:b0:34:70:4a:ea:2d:5c:7a:bb:f0:de:83:3c:36:
8c:57:47:c1:cd:7f:38:56:56:4a:a9:63:e2:ab:5a:1c:3d:28:
56:c4:34:c1:75:a5:f2:88:85:04:ec:48:44:2f:84:99:e9:a5:
1d:f5:7d:94:f2:88:2e:ea:02:6a:1d:72:02:ed:99:a1:16:c6:
3c:c8:42:c9:69:83:c5:10:89:38:f4:36:6e:45:75:4e:64:61:
cb:c2:2e:1a:f8:ba:cb:af:8c:c0:f7:f1:9e:ac:7f:3c:49:ea:
a5:a9:d8:64:b2:40:d4:92:5b:27:10:21:b8:72:7f:7c:39:e9:
c0:bc:1d:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:50:02 2025 by rpki-client