Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ETIME/R_tY-XNyO6ZpJ-xQLo6hScW-J74.roa
File: R_tY-XNyO6ZpJ-xQLo6hScW-J74.roa (raw, json)
Hash identifier: gp057ggEsUHYQmkif/z5oO0FEi7EhCUxvJxGKlboZLk=
Subject key identifier: 47:FB:58:F9:73:72:3B:A6:69:27:EC:50:2E:8E:A1:49:C5:BE:27:BE
Certificate issuer: /CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F
Certificate serial: 050E
Authority key identifier: E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/R_tY-XNyO6ZpJ-xQLo6hScW-J74.roa
Signing time: Fri 22 Aug 2025 08:58:57 +0000
ROA not before: Fri 22 Aug 2025 08:58:57 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 38042
IP address blocks: 103.158.228.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1294 (0x50e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E0EA885A7E6971C99342777E7DDDBA65D0EB131F
Validity
Not Before: Aug 22 08:58:57 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=47FB58F973723BA66927EC502E8EA149C5BE27BE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:69:c8:c9:68:e2:81:aa:69:b5:61:65:fd:38:
14:fe:68:ef:dd:a3:33:bf:cd:94:fd:fd:9a:de:5d:
b5:00:db:5a:fa:24:08:f4:d9:52:ca:86:05:3c:99:
e3:4b:51:5d:61:db:58:a4:ae:a3:cc:25:66:fd:1c:
66:59:7e:59:a0:af:8b:be:36:9e:5d:f5:6c:4f:5a:
ca:1e:7c:f8:97:22:0f:5e:53:af:da:27:c7:1b:91:
a6:73:3e:6d:a1:60:eb:e1:67:2b:0b:aa:44:46:0e:
62:4c:e6:5c:39:76:0d:f5:a6:ab:70:12:aa:56:96:
46:4c:0c:3d:00:bd:bb:27:eb:af:4f:59:4a:1a:ae:
4d:92:f0:8f:53:8d:c1:f9:c9:58:7c:05:bc:3e:92:
41:8e:a8:9f:bd:ea:c1:5e:d7:dc:51:fc:30:41:77:
4f:77:f4:82:5b:40:f1:91:c4:d3:5c:06:c9:a4:4c:
d1:43:f6:bd:5d:3f:31:c1:76:d8:b2:30:a4:a6:dc:
9d:f6:71:a8:ee:a2:c6:8c:16:46:b8:ce:bb:4b:d9:
58:e3:0e:61:33:68:a3:f0:bd:8e:30:e2:21:cb:2c:
89:94:c5:2c:59:a8:fc:38:ff:5d:ad:5a:2c:3e:1e:
b2:b2:32:85:3d:ef:32:5c:fb:6a:b7:60:89:a3:0d:
87:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:FB:58:F9:73:72:3B:A6:69:27:EC:50:2E:8E:A1:49:C5:BE:27:BE
X509v3 Authority Key Identifier:
keyid:E0:EA:88:5A:7E:69:71:C9:93:42:77:7E:7D:DD:BA:65:D0:EB:13:1F
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/4OqIWn5pccmTQnd-fd26ZdDrEx8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4OqIWn5pccmTQnd-fd26ZdDrEx8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ETIME/R_tY-XNyO6ZpJ-xQLo6hScW-J74.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.158.228.0/23
Signature Algorithm: sha256WithRSAEncryption
66:1a:f4:de:a7:83:94:59:f4:2e:38:a4:3c:14:b2:fd:8d:e8:
bd:c5:99:f0:e6:08:9b:3d:b5:13:43:a3:d1:3f:5d:49:ef:2d:
06:08:68:3d:98:a7:05:c7:10:03:14:a3:4a:13:0a:29:2d:71:
3e:16:e0:5f:29:77:8d:96:35:7d:1e:a5:7f:d2:78:b3:ca:f8:
a8:1c:0c:3d:30:d5:8b:83:09:eb:4c:76:4c:8b:fd:9b:1a:c3:
74:33:2c:8e:6f:e2:fa:35:96:a5:d4:35:17:80:3f:10:d1:43:
03:2d:ea:09:8c:49:62:e7:ad:1f:33:5a:18:b3:b7:09:81:b0:
ab:f6:99:9e:08:e1:9d:5e:2b:9d:7a:5a:af:84:fb:2b:9c:75:
bc:3e:bb:53:8a:bb:61:b2:92:c2:f0:e6:a7:a0:2e:85:e8:06:
44:da:c8:6f:02:0e:02:ad:45:20:6b:1b:ea:80:cb:32:ea:c6:
57:3f:2e:7d:1f:ff:16:6a:20:f9:84:d1:7b:76:86:c1:32:18:
3f:02:43:d6:75:65:d2:9f:67:89:29:33:01:bd:7a:0e:ab:2c:
02:81:dd:8f:21:cd:d3:24:73:b5:66:e8:8a:74:32:1b:92:39:
8f:ff:97:33:f1:bc:5f:6b:bd:e5:0d:54:56:6f:18:1c:48:ec:
f7:63:95:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:43:12 2025 by rpki-client