Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sdPE4LO-ns_xmdG-mutWQ3mqzpA.roa
File: sdPE4LO-ns_xmdG-mutWQ3mqzpA.roa (raw, json)
Hash identifier: dxN/3D95+wNT1mOTGqy17EB8ckopM9gR0miDdLq1d9U=
Subject key identifier: B1:D3:C4:E0:B3:BE:9E:CF:F1:99:D1:BE:9A:EB:56:43:79:AA:CE:90
Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial: 141F
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sdPE4LO-ns_xmdG-mutWQ3mqzpA.roa
Signing time: Fri 22 Aug 2025 08:57:35 +0000
ROA not before: Fri 22 Aug 2025 08:57:35 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 18419
IP address blocks: 118.150.240.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5151 (0x141f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Validity
Not Before: Aug 22 08:57:35 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=B1D3C4E0B3BE9ECFF199D1BE9AEB564379AACE90
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e3:3d:a3:65:53:b5:9a:9c:e0:1e:ee:66:ec:
d0:b8:1c:f9:dd:13:e5:92:a4:97:7e:7c:13:9f:e8:
b7:1d:6b:24:a7:5d:50:07:b4:f9:20:7a:21:e5:f5:
73:7c:a8:fb:a3:64:7f:1a:a2:05:ab:73:68:d1:09:
26:64:c6:5f:e4:88:99:6b:b5:4a:cb:5f:07:59:49:
89:3b:44:2d:9a:b0:d1:4e:a2:40:24:42:5a:09:c2:
18:a5:6e:00:60:f3:20:4b:ce:7f:29:24:2d:f0:68:
b9:82:f9:e0:05:ee:02:64:3a:c8:63:68:d9:df:33:
1f:99:f3:81:ad:96:ae:05:6b:be:18:df:a5:58:0c:
8b:19:36:6d:a4:60:02:f7:da:03:b1:d8:d8:49:f7:
88:42:29:31:50:b1:47:aa:d9:e1:5d:54:d0:a4:5f:
ba:8f:07:57:c9:7e:2f:6f:67:bc:1b:c6:7d:39:b4:
e5:84:11:a0:e6:85:30:22:58:b2:a7:01:40:a5:66:
a6:d1:21:63:f6:2a:5e:6b:c1:fa:41:d1:af:06:26:
e5:30:73:46:f4:ad:cf:a4:3c:37:41:8b:ab:e5:25:
75:ad:35:1e:42:41:b5:32:21:56:5c:78:37:77:32:
0a:3b:5e:a1:f5:6a:96:1b:b3:4b:ac:7c:5e:21:06:
bb:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:D3:C4:E0:B3:BE:9E:CF:F1:99:D1:BE:9A:EB:56:43:79:AA:CE:90
X509v3 Authority Key Identifier:
keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sdPE4LO-ns_xmdG-mutWQ3mqzpA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
118.150.240.0/21
Signature Algorithm: sha256WithRSAEncryption
92:d7:07:79:d7:92:ff:ec:44:cf:ec:55:b5:d3:e7:80:ee:a6:
43:13:6f:0c:61:c8:82:45:c5:0f:d9:f5:c9:0a:11:f9:08:a7:
70:69:55:ee:29:88:0e:de:e6:ef:68:3e:d4:2f:db:ca:b8:d8:
78:2c:cb:41:90:00:ac:ad:a8:e2:f6:b0:fe:05:90:77:b5:0f:
57:67:d4:54:d1:0d:64:18:dd:ff:1d:c2:88:9a:5a:af:e6:30:
68:9d:6f:3e:c6:7d:cb:4b:61:df:54:6b:a2:15:6b:de:97:b1:
0b:2d:d7:a1:e5:e2:e7:de:04:31:0a:6e:ea:aa:3f:ce:32:da:
b9:12:d6:c7:94:86:5a:d6:2a:19:f0:72:a1:5a:ca:91:ef:9b:
dc:74:7a:94:87:33:ec:8c:39:3b:f4:ec:f2:bd:ed:94:09:79:
37:d2:73:23:9d:c4:a9:f1:a2:50:e7:ca:f4:c6:53:72:4d:65:
85:38:67:59:b6:0a:79:54:17:ba:22:06:77:a0:89:75:c0:d5:
a3:ac:20:bc:8f:ab:59:07:80:ce:78:f9:19:f7:99:2e:6c:8e:
8e:73:c2:9f:c2:8d:35:fb:b8:5c:49:42:3e:c0:c3:da:64:ff:
b2:04:45:13:0b:4d:be:16:1f:6f:44:77:e1:b8:a3:3e:5d:8d:
aa:44:3c:d6
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICFB8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw
RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTA4MjIw
ODU3MzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIxRDNDNEUwQjNCRTlF
Q0ZGMTk5RDFCRTlBRUI1NjQzNzlBQUNFOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC24z2jZVO1mpzgHu5m7NC4HPndE+WSpJd+fBOf6LcdaySnXVAH
tPkgeiHl9XN8qPujZH8aogWrc2jRCSZkxl/kiJlrtUrLXwdZSYk7RC2asNFOokAk
QloJwhilbgBg8yBLzn8pJC3waLmC+eAF7gJkOshjaNnfMx+Z84Gtlq4Fa74Y36VY
DIsZNm2kYAL32gOx2NhJ94hCKTFQsUeq2eFdVNCkX7qPB1fJfi9vZ7wbxn05tOWE
EaDmhTAiWLKnAUClZqbRIWP2Kl5rwfpB0a8GJuUwc0b0rc+kPDdBi6vlJXWtNR5C
QbUyIVZceDd3Mgo7XqH1apYbs0usfF4hBrv/AgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUsdPE4LO+ns/xmdG+mutWQ3mqzpAwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb
mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt
VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9zZFBFNExPLW5zX3ht
ZEctbXV0V1EzbXF6cEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQDdpbwMA0GCSqGSIb3DQEBCwUAA4IBAQCS1wd515L/7ETP7FW10+eA7qZDE28M
YciCRcUP2fXJChH5CKdwaVXuKYgO3ubvaD7UL9vKuNh4LMtBkACsraji9rD+BZB3
tQ9XZ9RU0Q1kGN3/HcKImlqv5jBonW8+xn3LS2HfVGuiFWvel7ELLdeh5eLn3gQx
Cm7qqj/OMtq5EtbHlIZa1ioZ8HKhWsqR75vcdHqUhzPsjDk79Ozyve2UCXk30nMj
ncSp8aJQ58r0xlNyTWWFOGdZtgp5VBe6IgZ3oIl1wNWjrCC8j6tZB4DOePkZ95ku
bI6Oc8Kfwo01+7hcSUI+wMPaZP+yBEUTC02+Fh9vRHfhuKM+XY2qRDzW
-----END CERTIFICATE-----
Generated at Sun Aug 24 04:47:54 2025 by rpki-client