Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/Ng4TCzfCqmXS1Gw47EAvoDedOn8.roa
File: Ng4TCzfCqmXS1Gw47EAvoDedOn8.roa (raw, json)
Hash identifier: PsNPD1JWOR3rJrJ/JEy/1EaRwA0fhlpzjqJVHc/Pd6w=
Subject key identifier: 36:0E:13:0B:37:C2:AA:65:D2:D4:6C:38:EC:40:2F:A0:37:9D:3A:7F
Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Certificate serial: 02CC
Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/Ng4TCzfCqmXS1Gw47EAvoDedOn8.roa
Signing time: Fri 22 Aug 2025 08:58:40 +0000
ROA not before: Fri 22 Aug 2025 08:58:40 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 63910
IP address blocks: 103.130.237.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 716 (0x2cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C
Validity
Not Before: Aug 22 08:58:40 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=360E130B37C2AA65D2D46C38EC402FA0379D3A7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:64:ac:9c:fd:32:df:2d:3c:34:8e:51:25:9d:
e4:77:80:f5:b1:b5:f7:7c:de:e0:0f:0c:da:d4:ad:
8c:a7:fb:32:3a:b4:4a:ef:4d:41:3c:0c:36:5d:72:
28:ba:a2:48:eb:f7:3f:3d:87:91:49:87:02:3a:ed:
ef:64:75:87:34:48:78:b9:63:04:80:f6:b1:b4:b3:
ff:19:66:06:72:bd:fb:26:9b:08:89:a8:28:07:8d:
6c:ff:d0:b6:18:01:4c:72:b4:b5:3d:a7:2e:da:a8:
43:f8:e8:2b:23:cb:99:47:bf:af:ec:0e:e1:89:fc:
10:c9:a3:22:b9:03:34:17:27:d0:cc:b6:b3:84:9d:
dd:44:b4:94:d3:a8:4b:dd:82:4e:f3:f7:8b:68:65:
46:92:74:04:a5:06:c2:76:95:58:87:88:06:6e:a0:
a8:04:c9:94:f9:fd:7d:75:11:dc:64:3a:1c:e5:fd:
e6:d7:9b:1d:94:e9:c9:00:6a:d7:f5:0c:71:6a:bf:
e1:2b:46:4c:5b:0c:fa:d2:37:5e:0b:00:a6:75:90:
74:b7:61:ac:71:08:f9:3d:1d:b1:32:91:eb:67:10:
6c:42:bf:31:b3:c9:bc:a2:14:4d:64:bc:51:bc:bc:
5c:56:85:24:45:43:01:fe:2f:35:13:09:ad:f4:df:
ca:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:0E:13:0B:37:C2:AA:65:D2:D4:6C:38:EC:40:2F:A0:37:9D:3A:7F
X509v3 Authority Key Identifier:
keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/Ng4TCzfCqmXS1Gw47EAvoDedOn8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.237.0/24
Signature Algorithm: sha256WithRSAEncryption
7c:77:4c:57:fc:4c:2c:ae:e8:2a:fe:98:9f:71:1e:5f:8f:b3:
53:1f:b4:ee:65:44:56:6c:e7:2a:b6:48:d6:21:d3:09:a8:30:
7b:f7:95:29:b8:62:c6:6f:b0:47:5d:1c:d9:99:3e:bd:67:95:
41:2e:08:29:19:52:4d:d6:4d:3f:21:c9:96:00:5e:1e:0b:3d:
82:f6:40:9a:5d:27:0e:df:a7:8e:74:66:b1:7c:78:fa:2f:58:
15:c2:90:27:b4:af:dd:4e:dd:62:51:f0:16:b8:9a:45:f1:97:
b7:7e:34:cb:84:41:0e:d7:d3:f8:59:eb:7a:6f:79:66:d2:8d:
7b:10:5c:3b:ce:25:c3:d3:8c:f4:53:bf:29:39:8a:90:9f:20:
7c:b2:5d:71:99:65:f8:a4:45:c5:40:f4:a3:fe:cc:41:82:1e:
ca:a6:16:2b:f6:1f:90:15:4a:0c:02:f4:57:2e:95:43:57:a0:
6c:b9:de:f7:a7:a5:2f:5c:3d:6c:9b:26:6b:ad:1d:77:bb:9b:
7f:a1:05:bf:d3:e6:e5:2d:3c:11:74:43:d0:43:e5:2a:12:21:
b1:d8:ef:c8:02:12:e2:d0:d4:de:60:20:79:ea:5a:cc:15:f4:
46:23:3f:8c:94:23:83:16:04:eb:57:bb:08:de:8f:dd:3c:0d:
31:5b:1a:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:52:47 2025 by rpki-client