Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/mKicpSPdAIW5X6_KuDEmtaJspCw.roa
File: mKicpSPdAIW5X6_KuDEmtaJspCw.roa (raw, json)
Hash identifier: GDsqvA+6ezHJUjpj9hC2iZUEV/ua2MLxYMqmmtS/jag=
Subject key identifier: 98:A8:9C:A5:23:DD:00:85:B9:5F:AF:CA:B8:31:26:B5:A2:6C:A4:2C
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 1234
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/mKicpSPdAIW5X6_KuDEmtaJspCw.roa
Signing time: Fri 22 Aug 2025 08:49:06 +0000
ROA not before: Fri 22 Aug 2025 08:49:06 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 17809
IP address blocks: 182.155.0.0/19 maxlen: 19
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4660 (0x1234)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Aug 22 08:49:06 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=98A89CA523DD0085B95FAFCAB83126B5A26CA42C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:40:95:07:13:39:19:5b:e3:3c:e7:bb:cc:89:
54:a8:da:39:7b:10:29:b5:d4:d0:aa:54:5c:05:e8:
b6:99:d6:c3:e7:f3:93:f8:65:43:ab:58:2c:ea:4a:
6f:26:56:42:cd:64:14:fd:06:2e:17:1c:20:f3:b3:
78:81:8d:24:c6:4b:65:62:ee:13:82:66:66:15:f2:
ce:06:d7:53:b2:62:2a:6e:14:6a:d7:44:19:be:0e:
87:1f:76:eb:c0:2e:e3:17:03:12:6a:b5:0b:f8:2d:
16:73:ae:c9:68:51:4f:7e:af:94:d6:66:8b:72:5e:
9a:8b:e9:46:14:a9:c3:56:2e:5e:8b:99:e0:ba:0c:
ad:7f:6d:b5:96:14:3e:bf:8c:34:3e:ae:77:7e:b0:
52:1d:e3:30:b9:b5:e2:93:d5:1f:69:dc:82:ab:f0:
0f:ee:d1:d3:0d:00:7f:61:ae:a5:24:36:d8:59:52:
99:58:b3:ba:c2:c6:e8:a9:ba:90:54:e3:e3:ba:36:
0d:36:f8:1f:7b:3b:b1:71:f6:7e:99:bd:69:44:50:
8c:d0:0f:2c:b2:a5:57:ba:08:0f:e8:ad:e1:45:79:
96:70:81:cc:e7:44:5e:46:1d:fb:30:9b:07:24:93:
89:33:f4:71:c3:6d:ba:4e:50:d3:a5:cc:2a:d8:62:
b7:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:A8:9C:A5:23:DD:00:85:B9:5F:AF:CA:B8:31:26:B5:A2:6C:A4:2C
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/mKicpSPdAIW5X6_KuDEmtaJspCw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
182.155.0.0/19
Signature Algorithm: sha256WithRSAEncryption
80:5d:09:6f:f3:fc:42:91:4b:be:1a:9f:da:ec:22:d6:41:b9:
46:42:8d:3b:68:56:ad:33:21:3c:58:d3:36:e8:f8:30:22:bf:
20:d9:5f:4e:e4:6d:2e:3d:27:93:c1:5b:2b:ff:74:a2:2b:39:
fa:f6:93:aa:0a:8d:c3:4c:f8:65:1d:5a:fc:2b:3f:e7:0f:cb:
7d:0f:28:fe:77:76:ae:99:82:d2:4a:30:2d:7a:fc:8e:a4:9f:
dc:70:81:65:f3:03:08:6e:48:20:6b:1b:6e:66:ba:62:9f:f3:
a1:b6:40:7c:92:ec:c3:d1:8e:ad:be:7d:64:50:01:47:29:c8:
58:a9:c8:d8:84:83:73:8d:fa:0d:00:8b:6b:3b:94:86:9f:8c:
07:07:a0:a9:4f:bd:4e:85:5e:bb:8a:a8:cd:8b:0a:d7:05:73:
4b:a7:d9:91:c8:02:38:6c:43:80:f7:0f:a3:28:50:69:71:4e:
01:e9:7c:b5:96:2d:f7:35:a8:f0:4d:3c:7e:88:60:ff:7f:95:
b3:db:67:50:8c:67:02:b8:28:27:22:1c:4c:4b:0a:c9:4d:cd:
5b:ae:29:e2:da:08:2b:14:ca:99:9b:6e:c2:6d:02:1c:81:eb:
fd:30:9d:3a:28:36:c8:f3:5f:d1:29:5f:68:c2:c9:24:86:89:
d6:68:81:d8
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICEjQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkE0
NzgxNTUzODI3MzFFNUMwRjY4MjFERDUzODlGOUU1MkUxRTRENjAeFw0yNTA4MjIw
ODQ5MDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk4QTg5Q0E1MjNERDAw
ODVCOTVGQUZDQUI4MzEyNkI1QTI2Q0E0MkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdQJUHEzkZW+M857vMiVSo2jl7ECm11NCqVFwF6LaZ1sPn85P4
ZUOrWCzqSm8mVkLNZBT9Bi4XHCDzs3iBjSTGS2Vi7hOCZmYV8s4G11OyYipuFGrX
RBm+DocfduvALuMXAxJqtQv4LRZzrsloUU9+r5TWZotyXpqL6UYUqcNWLl6LmeC6
DK1/bbWWFD6/jDQ+rnd+sFId4zC5teKT1R9p3IKr8A/u0dMNAH9hrqUkNthZUplY
s7rCxuipupBU4+O6Ng02+B97O7Fx9n6ZvWlEUIzQDyyypVe6CA/oreFFeZZwgczn
RF5GHfswmwckk4kz9HHDbbpOUNOlzCrYYrc7AgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUmKicpSPdAIW5X6/KuDEmtaJspCwwHwYDVR0jBBgwFoAUKkeBVTgnMeXA9oId
1TifnlLh5NYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRU1BWC9L
a2VCVlRnbk1lWEE5b0lkMVRpZm5sTGg1TlkuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L0trZUJWVGduTWVYQTlvSWQxVGlmbmxMaDVOWS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL0VNQVgvbUtpY3BTUGRBSVc1WDZfS3VERW10
YUpzcEN3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBbabADAN
BgkqhkiG9w0BAQsFAAOCAQEAgF0Jb/P8QpFLvhqf2uwi1kG5RkKNO2hWrTMhPFjT
Nuj4MCK/INlfTuRtLj0nk8FbK/90ois5+vaTqgqNw0z4ZR1a/Cs/5w/LfQ8o/nd2
rpmC0kowLXr8jqSf3HCBZfMDCG5IIGsbbma6Yp/zobZAfJLsw9GOrb59ZFABRynI
WKnI2ISDc436DQCLazuUhp+MBwegqU+9ToVeu4qozYsK1wVzS6fZkcgCOGxDgPcP
oyhQaXFOAel8tZYt9zWo8E08fohg/3+Vs9tnUIxnArgoJyIcTEsKyU3NW64p4toI
KxTKmZtuwm0CHIHr/TCdOig2yPNf0SlfaMLJJIaJ1miB2A==
-----END CERTIFICATE-----
Generated at Mon Oct 20 22:45:30 2025 by rpki-client