Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/0Xf9bLwLvjjIeVP-zVKA7gIbW4I.roa
File: 0Xf9bLwLvjjIeVP-zVKA7gIbW4I.roa (raw, json)
Hash identifier: Q9RplJiZluik1pJ+JwtBdk1SIZyDXIEs9kwJFaeZmW0=
Subject key identifier: D1:77:FD:6C:BC:0B:BE:38:C8:79:53:FE:CD:52:80:EE:02:1B:5B:82
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 13C5
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/0Xf9bLwLvjjIeVP-zVKA7gIbW4I.roa
Signing time: Fri 22 Aug 2025 08:59:42 +0000
ROA not before: Fri 22 Aug 2025 08:59:42 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 18419
IP address blocks: 124.218.112.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5061 (0x13c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 22 08:59:42 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=D177FD6CBC0BBE38C87953FECD5280EE021B5B82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:69:4f:29:48:e2:fb:6f:71:e6:ba:83:62:ab:
91:5b:d7:59:cd:2a:58:1a:e5:c4:01:1a:ed:6b:bc:
0d:a6:f1:16:99:7a:f4:ba:a8:2d:93:74:ee:cd:7a:
21:a0:84:19:67:89:4b:d1:13:57:37:75:2b:4a:f6:
da:e8:b0:66:ff:c8:16:f5:88:71:55:b1:d8:29:a1:
f5:3b:19:db:5f:eb:30:ae:f8:3d:05:53:c1:52:3c:
43:dd:f8:f6:47:16:a1:5e:4d:ca:ac:dd:ae:5f:5d:
04:69:df:d7:d5:2b:ba:09:cc:95:68:df:69:66:f3:
22:5b:35:98:bd:95:6d:18:60:1d:52:59:94:1b:ce:
6f:54:51:28:39:18:b7:be:16:ce:d7:11:76:39:55:
28:dd:c3:8d:65:5b:3d:75:87:10:a1:8c:35:c4:85:
20:fc:e6:61:fb:7b:52:1f:e2:19:5d:89:0d:1d:7a:
98:d4:bf:35:00:c1:69:02:19:7a:44:9e:de:1f:cf:
f3:33:4c:cb:02:27:59:c9:57:d6:56:67:ca:e5:b0:
b7:4f:5e:96:c0:34:1a:f0:f1:7f:95:3a:f1:90:58:
54:4a:0f:fb:bf:31:c5:fb:46:25:0f:47:06:ec:bb:
c6:47:ef:cb:ec:31:77:ec:4e:f2:f1:9a:16:67:36:
12:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:77:FD:6C:BC:0B:BE:38:C8:79:53:FE:CD:52:80:EE:02:1B:5B:82
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/0Xf9bLwLvjjIeVP-zVKA7gIbW4I.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.112.0/21
Signature Algorithm: sha256WithRSAEncryption
a0:e2:96:2f:d0:bb:25:32:03:bc:c9:fe:e4:66:01:b3:8d:ee:
b1:df:b7:8e:24:27:8b:14:49:8a:e3:0c:63:75:1c:74:16:70:
79:41:06:ac:42:f5:58:68:87:0e:be:f2:4d:17:d7:f4:6b:11:
26:79:7b:ca:f3:8b:4e:54:53:3e:59:0f:8c:ee:3a:cf:74:f0:
b1:db:37:ca:92:4c:4a:72:59:ff:ad:1c:83:89:de:e3:03:bd:
84:4f:74:b6:1b:9d:20:29:bd:1b:3d:df:bc:a5:4b:21:69:f2:
6c:63:fd:e4:83:2a:27:44:a3:cf:85:17:9a:74:64:aa:1c:f8:
b9:24:c7:fe:81:81:2d:31:80:f4:d5:bb:6c:42:59:4f:d7:f6:
9b:80:80:29:ba:b7:b1:23:24:cf:b9:4c:e4:c2:2c:19:a1:02:
fd:fe:b1:77:3c:41:ee:66:6f:ba:2d:de:d8:2d:54:d4:0c:2c:
83:f1:41:37:29:30:3b:24:26:e6:95:e6:a2:f3:b7:cb:f8:12:
57:53:59:02:af:3f:2b:bc:dd:7d:b7:43:81:57:36:9d:a9:b7:
f1:e8:f1:68:49:f8:ed:2f:45:b5:1e:46:80:27:9f:64:5b:0d:
f7:6b:a6:8a:88:b1:64:0b:ec:57:77:a2:6e:1b:4a:2c:1a:bd:
ca:79:3e:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:50:00 2025 by rpki-client