Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/rbKt3NQhdLkKmsOzYVYlobsLtNc.roa
File: rbKt3NQhdLkKmsOzYVYlobsLtNc.roa (raw, json)
Hash identifier: BejVXYuVV29d2s0NhPOhtK8LmBBVFJH8xi0JxPBaCyw=
Subject key identifier: AD:B2:AD:DC:D4:21:74:B9:0A:9A:C3:B3:61:56:25:A1:BB:0B:B4:D7
Certificate issuer: /CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Certificate serial: 0228
Authority key identifier: AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/rbKt3NQhdLkKmsOzYVYlobsLtNc.roa
Signing time: Fri 22 Aug 2025 09:03:39 +0000
ROA not before: Fri 22 Aug 2025 09:03:39 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 150766
IP address blocks: 36.50.228.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 552 (0x228)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABD4DDB4BF932C5006B704B9828410174AC412AD
Validity
Not Before: Aug 22 09:03:39 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=ADB2ADDCD42174B90A9AC3B3615625A1BB0BB4D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a2:e8:e9:6c:27:32:03:d8:76:f7:75:72:63:
c9:6f:77:8a:d6:d0:79:f9:04:17:b8:f2:c7:d6:99:
7d:93:24:cb:e5:0f:d3:dd:a3:b3:61:f4:d3:43:30:
7e:85:8c:5b:25:5d:db:cb:17:cb:47:ab:ec:ff:35:
89:52:0a:17:f9:3d:a5:f3:34:29:3d:34:d5:8a:b4:
6f:d3:62:66:6c:35:39:22:6a:95:32:f0:b7:5c:2b:
61:30:8c:7f:22:eb:5d:a4:61:cd:43:22:0f:09:53:
14:38:6c:6d:3d:7e:e4:1c:3e:5f:f9:cc:d5:1f:6a:
cd:57:22:5e:cb:10:6d:73:e9:6a:08:96:96:69:19:
61:6a:68:8a:c0:2f:40:1e:71:ad:03:85:c2:b5:6a:
54:4e:95:24:73:94:2f:b6:cd:d1:d8:4c:51:17:30:
2d:bb:c2:8d:b5:31:f5:1f:f1:17:98:bd:c7:f5:1c:
32:e7:57:45:08:9c:59:76:23:08:e0:0c:25:4d:8b:
db:b0:05:7e:80:f1:e6:a9:54:65:e5:27:00:6b:86:
ef:59:61:09:26:21:cb:d4:30:73:0b:85:58:d0:3f:
76:d2:98:f8:c2:0d:ff:c9:72:6e:b6:b1:0e:79:bc:
d8:fb:51:71:15:96:5d:79:57:94:8d:e3:5a:00:0a:
6a:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:B2:AD:DC:D4:21:74:B9:0A:9A:C3:B3:61:56:25:A1:BB:0B:B4:D7
X509v3 Authority Key Identifier:
keyid:AB:D4:DD:B4:BF:93:2C:50:06:B7:04:B9:82:84:10:17:4A:C4:12:AD
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/q9TdtL-TLFAGtwS5goQQF0rEEq0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q9TdtL-TLFAGtwS5goQQF0rEEq0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COCODIGIT/rbKt3NQhdLkKmsOzYVYlobsLtNc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
36.50.228.0/24
Signature Algorithm: sha256WithRSAEncryption
09:5e:0d:25:17:8b:69:4f:c9:ef:75:4a:bb:ae:6e:4b:53:38:
56:7f:0d:0f:c0:97:73:17:47:c4:75:5b:f3:24:d5:27:f1:f8:
0d:5c:d2:39:39:60:0b:a9:2c:f8:36:a1:fe:29:a5:85:74:59:
5c:63:71:1b:66:79:e7:b7:87:35:38:c5:9f:03:b7:c1:de:45:
56:bf:f0:ed:b8:06:d8:bc:d1:39:77:95:23:89:4a:38:2e:53:
27:e7:00:da:13:14:b4:36:84:b1:4d:e7:fe:cd:cd:a8:f4:99:
83:c2:03:80:74:1f:c0:79:f5:72:09:c3:2e:0f:b9:00:d5:c0:
17:46:19:58:e4:cb:97:1f:0b:4a:ce:b8:4c:03:83:b0:cc:d5:
07:68:5c:d9:d6:d0:5d:7d:e8:8c:30:70:32:f9:5d:e4:e9:05:
87:b8:a9:3f:a3:f9:36:c1:ae:d2:d7:5d:53:f5:98:da:49:60:
4d:e9:de:dd:d7:2e:49:19:bf:8a:0f:79:a7:e8:9b:51:a3:fc:
f0:96:9b:ad:53:42:ef:2f:b8:2b:c6:0e:15:68:e7:b7:00:c8:
fb:fd:74:3e:81:44:ed:97:c5:48:9c:a2:69:40:12:34:cf:e2:
17:16:82:f9:27:0e:84:04:0a:97:17:1c:9d:a8:40:bc:eb:8f:
63:cc:de:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:50:39 2025 by rpki-client