Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/RwInttxPpgqBIyS9Sccrw-zmJRA.roa
File: RwInttxPpgqBIyS9Sccrw-zmJRA.roa (raw, json)
Hash identifier: ipUB3g5ULknn3vaI9ZJmQhxMUJAZEgrtc8NaSDnrG8A=
Subject key identifier: 47:02:27:B6:DC:4F:A6:0A:81:23:24:BD:49:C7:2B:C3:EC:E6:25:10
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 128E
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/RwInttxPpgqBIyS9Sccrw-zmJRA.roa
Signing time: Fri 22 Aug 2025 08:49:27 +0000
ROA not before: Fri 22 Aug 2025 08:49:27 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 17809
IP address blocks: 203.217.104.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4750 (0x128e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Aug 22 08:49:27 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=470227B6DC4FA60A812324BD49C72BC3ECE62510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ce:d7:b8:87:3b:ed:bf:54:fe:e7:27:e2:7a:
23:d9:dc:ac:2a:03:b3:06:7f:f3:c0:c8:2b:d3:ca:
9b:b1:47:70:03:a7:e2:60:00:25:d9:1c:84:24:0d:
dd:7e:80:3e:7b:a8:f9:e1:3d:96:97:11:b5:ac:11:
6a:28:ed:9a:45:9a:e4:d9:dc:81:a3:d8:30:c4:8a:
2c:9b:b2:45:66:7c:05:09:a8:49:9e:14:4b:2e:02:
3e:c5:92:f3:e4:16:f0:e5:42:36:23:06:08:ec:7f:
77:ee:4c:2e:d0:8c:80:e1:c5:95:e9:7f:aa:0a:eb:
da:05:c6:19:36:cd:8e:59:71:ce:a2:6f:57:0f:bc:
62:f6:21:56:1d:35:b8:20:da:cb:50:00:12:c8:69:
5c:e0:25:17:5d:48:06:fd:c7:28:d3:75:f3:63:c0:
50:5d:51:8f:00:e9:c5:d5:50:ee:03:bd:08:f8:19:
03:c2:dc:57:7f:98:cf:dc:62:22:df:f9:a1:fe:9a:
b7:68:7a:21:5d:0c:61:1a:17:59:63:3a:7c:50:c4:
7f:1d:ce:1d:c2:f8:2c:9a:81:bd:fb:e4:6a:7c:94:
96:a9:e1:e2:f5:fe:78:4b:24:df:61:51:80:b3:8a:
fd:d6:9b:72:3e:3c:07:f3:ba:f2:38:af:cb:6a:67:
d1:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:02:27:B6:DC:4F:A6:0A:81:23:24:BD:49:C7:2B:C3:EC:E6:25:10
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/RwInttxPpgqBIyS9Sccrw-zmJRA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.217.104.0/21
Signature Algorithm: sha256WithRSAEncryption
60:94:75:46:e6:3c:2e:61:5c:fe:17:a8:b4:a4:9e:53:49:f8:
8c:9a:ab:32:a2:10:ab:74:3c:22:6f:84:5b:70:62:65:5d:9e:
49:0b:a4:38:c4:be:62:10:c7:a3:cb:d3:37:71:e4:fd:c4:05:
5f:9c:76:d4:57:d5:df:7f:b3:0d:5d:fc:d0:11:33:5a:42:88:
23:95:bc:1a:f4:9e:b5:2f:89:8c:36:67:be:9c:c5:f3:cd:79:
db:ec:82:f3:f3:b7:82:7e:4d:6c:fa:8a:ef:13:81:ad:eb:4e:
b1:7c:4a:6c:7e:1c:d8:3c:47:1f:a1:be:ec:65:e4:5c:34:25:
62:9e:4a:11:61:e4:17:6c:53:8a:fd:1f:4a:18:7a:11:76:06:
59:73:b8:a6:d0:e7:8b:09:52:98:a8:44:77:81:a7:db:70:4e:
ac:63:94:15:77:46:51:ae:eb:6c:f8:a0:7e:78:a6:cc:e4:42:
8b:e7:f2:e5:a0:68:1a:cd:b2:9d:4d:06:94:be:23:f2:2d:23:
37:15:88:64:ed:21:0e:20:2d:47:fd:81:a2:0c:75:f5:80:2c:
f0:c0:49:fa:85:1c:82:7d:f1:ad:b8:55:9c:ea:f7:c4:7b:62:
7e:6e:50:8b:dc:66:26:c4:b5:38:21:06:7f:06:79:8f:5a:73:
b4:8e:7d:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:44:16 2025 by rpki-client