Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/lgsVQp6ctzNSzV8fvqj6ViSQW4c.roa
File: lgsVQp6ctzNSzV8fvqj6ViSQW4c.roa (raw, json)
Hash identifier: /NSmm1iPLXVpFRJMsKHwW0kQu/0gnPlDJwuaBsdMNWs=
Subject key identifier: 96:0B:15:42:9E:9C:B7:33:52:CD:5F:1F:BE:A8:FA:56:24:90:5B:87
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 123F
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/lgsVQp6ctzNSzV8fvqj6ViSQW4c.roa
Signing time: Fri 22 Aug 2025 08:49:09 +0000
ROA not before: Fri 22 Aug 2025 08:49:09 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 17809
IP address blocks: 182.155.192.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4671 (0x123f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Aug 22 08:49:09 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=960B15429E9CB73352CD5F1FBEA8FA5624905B87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ee:c3:29:78:df:c6:e0:c9:5c:39:1a:0c:f5:
65:f4:e6:2e:55:3e:78:40:06:2b:bc:63:f0:1c:cf:
8d:39:82:f7:7f:95:43:78:83:7d:96:0a:8b:fc:93:
62:11:86:ee:a5:f2:bb:78:a0:60:11:12:9a:8a:4c:
33:2c:cd:cb:1f:36:c5:39:56:17:74:af:d8:3f:92:
87:7b:45:a5:ec:06:d7:27:fa:7f:df:7a:91:a0:e3:
2c:d3:98:d5:3c:fe:8d:8e:c7:c1:92:58:25:48:85:
9b:d2:f7:e5:1c:47:16:c1:8a:9a:c9:66:d5:ec:92:
41:f1:1d:74:15:09:e0:03:d7:c8:6e:50:50:e1:eb:
f1:83:8b:13:d6:54:73:9b:da:f0:62:42:cd:55:16:
94:f0:4a:8a:84:90:48:1b:6e:f4:f2:65:86:1d:91:
67:b7:46:38:0b:2c:86:6f:97:2d:be:5a:11:4c:c4:
f3:a7:c2:7f:3e:f6:a4:ca:af:75:6a:ac:c0:d8:17:
80:d1:48:03:ed:94:52:01:c8:55:83:df:e0:e6:67:
a1:f1:ab:b6:99:35:84:b3:2c:7d:26:c9:b8:94:98:
f1:f0:10:94:65:a4:b5:dd:a1:b8:02:b7:16:c4:8c:
78:e9:ea:31:89:82:5c:84:ee:fb:13:97:c9:d1:f6:
ef:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:0B:15:42:9E:9C:B7:33:52:CD:5F:1F:BE:A8:FA:56:24:90:5B:87
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/lgsVQp6ctzNSzV8fvqj6ViSQW4c.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.192.0/19
Signature Algorithm: sha256WithRSAEncryption
0f:09:9b:cb:e4:b8:cd:d8:1a:44:73:b6:02:d5:4f:5c:50:d9:
62:dd:8a:be:4a:bc:a7:74:3d:eb:84:df:84:17:f7:bf:ba:22:
ad:cb:3e:5a:51:e1:3a:fb:64:2c:f7:60:30:cc:91:24:10:9f:
b9:14:e8:44:6d:a4:9f:27:0b:8a:6a:69:c5:e1:e3:f4:a2:cd:
96:2c:9f:d9:b3:65:96:63:f1:42:52:fd:ff:16:cf:b2:ea:68:
66:fc:e5:f8:4d:b8:a6:39:32:09:20:f1:55:36:01:70:89:0e:
98:0c:f0:37:70:ee:cf:27:ec:68:5e:65:b0:1a:f7:52:e0:a1:
2a:9d:1c:63:45:23:5a:88:03:88:d9:80:e3:37:24:ad:57:84:
e5:c3:8d:9e:f6:73:f3:3d:93:59:e8:c7:3b:22:76:54:a4:da:
77:4c:b9:c7:34:43:0b:d3:bc:ba:10:2c:02:db:8e:d9:24:7d:
e9:0a:59:a1:be:be:95:06:da:95:4b:de:84:5e:8e:cc:ff:b6:
c8:01:64:06:cc:da:7a:00:6e:9e:bc:9b:d9:fc:5e:3c:4d:4f:
d8:86:fb:c1:95:8b:3e:e1:25:b1:64:6b:55:b7:0d:46:e9:3a:
29:dd:5e:3b:72:8c:83:ec:4a:20:13:40:a8:fd:ac:76:a3:a9:
87:ec:74:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:44:26 2025 by rpki-client