Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/aWvufHHIfrzHZn5hUMpKZmD4s8o.roa
File: aWvufHHIfrzHZn5hUMpKZmD4s8o.roa (raw, json)
Hash identifier: F3NSImyEO6Nem5JO/jvAg/QMxBR6KMsrFAe15rAyb+c=
Subject key identifier: 69:6B:EE:7C:71:C8:7E:BC:C7:66:7E:61:50:CA:4A:66:60:F8:B3:CA
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 1248
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/aWvufHHIfrzHZn5hUMpKZmD4s8o.roa
Signing time: Fri 22 Aug 2025 08:49:10 +0000
ROA not before: Fri 22 Aug 2025 08:49:10 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 17809
IP address blocks: 182.155.128.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4680 (0x1248)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Aug 22 08:49:10 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=696BEE7C71C87EBCC7667E6150CA4A6660F8B3CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:e5:30:f6:6f:00:6d:c8:f4:c1:7d:db:c2:02:
5b:87:62:e1:69:7e:35:b0:98:5c:9c:9f:a6:fe:19:
5f:5d:f8:7c:89:aa:db:64:f2:1a:96:14:14:04:c0:
a9:f0:24:df:78:5f:35:66:81:ae:ce:30:2f:60:31:
dd:f3:ec:a2:38:62:79:69:6f:1d:81:dc:9b:8a:31:
4e:f5:cf:26:9c:53:59:25:17:8f:a6:a6:85:59:5d:
78:7b:56:c2:43:b0:9d:b3:4a:60:bc:4f:2e:81:6a:
8f:db:5f:de:69:01:ea:f2:8a:79:d2:76:bd:21:e8:
cd:c1:10:c7:a6:48:41:c4:fc:df:c4:a2:88:d6:47:
ab:32:4f:7e:4b:44:2e:4e:2c:94:5c:68:eb:1e:47:
21:b3:73:3d:0d:6b:b5:67:4d:ee:94:dd:b7:e2:51:
d6:4f:4a:4d:30:71:5a:96:9e:88:7b:7d:cf:ed:fa:
4a:af:4e:cf:96:d1:1e:f4:e5:70:9f:d9:7c:e3:58:
c9:42:2c:2d:58:fb:77:b3:4a:32:22:c2:71:a0:2f:
04:b6:61:0c:eb:e5:52:a0:d5:5d:77:36:86:51:8f:
f5:b8:26:44:ff:1e:a2:d9:2d:67:d4:db:8d:82:84:
73:20:72:99:06:bb:93:24:b7:7a:82:29:85:fd:12:
2c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:6B:EE:7C:71:C8:7E:BC:C7:66:7E:61:50:CA:4A:66:60:F8:B3:CA
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/aWvufHHIfrzHZn5hUMpKZmD4s8o.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.128.0/19
Signature Algorithm: sha256WithRSAEncryption
0a:4e:54:a6:af:85:1c:2a:7a:9f:7a:14:8b:c1:de:94:e1:e5:
19:52:4a:fb:3d:5c:ff:3e:74:89:56:17:8b:b0:b3:41:a6:af:
b1:b3:d8:75:3f:bc:15:63:60:58:99:08:27:63:64:56:b4:cc:
6e:28:30:68:83:4c:b5:21:98:0e:38:02:99:47:87:25:d5:a9:
ef:f2:a1:ac:49:a8:d8:2f:da:0d:ab:1e:be:36:79:9e:c5:b4:
25:f9:ee:74:58:f1:b1:08:bf:79:14:ca:32:72:87:e2:f5:d3:
9f:55:43:91:7e:1d:09:50:4a:ca:4b:46:a2:54:e8:7d:24:a6:
e3:e1:c8:15:54:f8:0e:7b:61:c5:fb:ce:54:2f:d3:37:01:41:
42:a9:a9:b2:f3:f1:bc:83:04:16:ff:11:28:5f:e1:fb:d7:37:
f0:ad:3e:2b:28:05:5f:92:fb:f3:11:2a:b4:08:fd:9c:8c:2f:
f8:e0:01:5f:9b:b1:65:ce:f1:fb:6d:18:54:ed:1f:d9:87:70:
1f:c4:36:11:28:e5:0c:a2:50:27:06:02:1f:dc:da:8a:2c:ae:
82:dc:ce:9c:41:92:bb:c9:cb:0f:62:8d:31:d0:19:7e:69:42:
f0:0a:43:e8:a8:b4:9c:06:21:7e:1a:31:cc:5e:ed:01:2d:ac:
7a:e6:35:6b
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEkgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw
ODQ5MTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY5NkJFRTdDNzFDODdF
QkNDNzY2N0U2MTUwQ0E0QTY2NjBGOEIzQ0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDN5TD2bwBtyPTBfdvCAluHYuFpfjWwmFycn6b+GV9d+HyJqttk
8hqWFBQEwKnwJN94XzVmga7OMC9gMd3z7KI4Ynlpbx2B3JuKMU71zyacU1klF4+m
poVZXXh7VsJDsJ2zSmC8Ty6Bao/bX95pAeryinnSdr0h6M3BEMemSEHE/N/EoojW
R6syT35LRC5OLJRcaOseRyGzcz0Na7VnTe6U3bfiUdZPSk0wcVqWnoh7fc/t+kqv
Ts+W0R705XCf2XzjWMlCLC1Y+3ezSjIiwnGgLwS2YQzr5VKg1V13NoZRj/W4JkT/
HqLZLWfU242ChHMgcpkGu5Mkt3qCKYX9EiwLAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUaWvufHHIfrzHZn5hUMpKZmD4s8owHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvYVd2dWZISElmcnpIWm41aFVNcEta
bUQ0czhvLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbabgDAN
BgkqhkiG9w0BAQsFAAOCAQEACk5Upq+FHCp6n3oUi8HelOHlGVJK+z1c/z50iVYX
i7CzQaavsbPYdT+8FWNgWJkIJ2NkVrTMbigwaINMtSGYDjgCmUeHJdWp7/KhrEmo
2C/aDasevjZ5nsW0JfnudFjxsQi/eRTKMnKH4vXTn1VDkX4dCVBKyktGolTofSSm
4+HIFVT4DnthxfvOVC/TNwFBQqmpsvPxvIMEFv8RKF/h+9c38K0+KygFX5L78xEq
tAj9nIwv+OABX5uxZc7x+20YVO0f2YdwH8Q2ESjlDKJQJwYCH9zaiiyugtzOnEGS
u8nLD2KNMdAZfmlC8ApD6Ki0nAYhfhoxzF7tAS2seuY1aw==
-----END CERTIFICATE-----
Generated at Mon Oct 20 22:44:09 2025 by rpki-client