Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/7hPRqXaNyt71jucFGs-O2qoMAa8.roa
File: 7hPRqXaNyt71jucFGs-O2qoMAa8.roa (raw, json)
Hash identifier: U/9CZKOAHtwRhhVXHI5li8PuxE8KSrnCpbw9eIEDBMQ=
Subject key identifier: EE:13:D1:A9:76:8D:CA:DE:F5:8E:E7:05:1A:CF:8E:DA:AA:0C:01:AF
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1483
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/7hPRqXaNyt71jucFGs-O2qoMAa8.roa
Signing time: Fri 22 Aug 2025 09:00:30 +0000
ROA not before: Fri 22 Aug 2025 09:00:30 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 18419
IP address blocks: 124.218.116.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5251 (0x1483)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 22 09:00:30 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=EE13D1A9768DCADEF58EE7051ACF8EDAAA0C01AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:63:9a:ce:0e:f6:df:75:39:49:17:0b:c0:2b:
96:08:05:34:ed:ff:c4:a9:46:32:c9:77:ea:bc:94:
d5:93:2c:95:28:e6:56:e4:d6:81:46:cb:2c:e7:e4:
1b:77:b0:41:9d:52:34:bb:d3:e8:6c:a2:19:41:cd:
c8:a4:fe:39:54:d7:56:ae:2f:3b:5c:a0:37:f0:42:
22:f8:6a:b8:d8:b8:7b:18:52:b9:aa:03:e8:3b:13:
86:0a:71:44:0b:4d:65:3d:36:32:a6:7c:8f:15:f6:
4f:a6:7b:0e:c1:5f:ef:8c:3e:7e:23:7b:77:11:44:
bf:22:0e:fb:ea:62:b2:b8:68:74:57:71:26:56:ac:
39:ee:2a:53:8b:80:d1:98:65:77:ad:ff:1f:c9:b2:
29:bd:7d:72:29:40:a5:0b:eb:43:ab:87:54:58:55:
bc:58:5d:6c:d9:da:ea:d5:14:6c:14:73:34:6e:a1:
43:5b:bf:97:1e:65:fa:0b:d5:bf:32:9a:30:04:8d:
61:4a:0b:73:6a:7a:34:b8:44:78:92:07:bc:2c:27:
ed:76:01:27:37:bd:78:16:33:ac:2b:66:06:a1:2b:
8a:6d:80:28:21:31:74:ca:a4:ae:1a:d3:b9:a2:0e:
09:d5:69:c4:44:e1:1c:47:bf:71:85:a7:66:ce:36:
04:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:13:D1:A9:76:8D:CA:DE:F5:8E:E7:05:1A:CF:8E:DA:AA:0C:01:AF
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/7hPRqXaNyt71jucFGs-O2qoMAa8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.116.0/22
Signature Algorithm: sha256WithRSAEncryption
1a:96:38:ea:e2:90:66:16:81:80:33:c1:50:53:70:67:bd:dd:
c5:d6:11:a9:fe:29:c2:a7:6d:b6:f9:c4:c2:05:d3:64:bb:3f:
2f:93:45:db:56:37:47:65:92:fa:85:47:23:7d:16:b7:fe:76:
d9:db:61:f5:52:15:97:d5:ea:ed:97:4f:2f:8e:0d:54:97:dd:
b7:26:e0:cb:71:e1:f9:da:ab:0f:d0:1d:6a:37:00:d3:02:0b:
b2:9b:e8:6a:ff:67:9f:4d:3a:51:84:be:d0:1e:c1:1e:59:40:
e6:ed:99:07:dc:2e:ac:74:c5:33:e0:ce:d0:37:42:d0:5f:f9:
84:6e:fc:0e:7b:f6:d4:e2:ad:5c:47:a5:9b:1f:44:e5:9f:3c:
16:30:89:75:5d:3c:22:fd:ae:e9:80:ce:8b:b2:de:6a:e7:28:
d0:b6:19:41:19:81:bb:d5:84:bf:ce:e9:2f:d9:d5:8e:10:6b:
8f:4f:31:3e:d7:9b:bf:fb:31:41:b4:5e:e5:28:99:ba:7d:d3:
f2:63:83:b4:73:b3:68:44:f9:50:74:9e:e4:cc:e4:9f:23:67:
3e:49:c5:ce:e8:c9:df:70:d6:25:da:10:7b:d1:46:fa:b4:cc:
65:9b:27:15:04:6f:fc:04:a8:7c:d2:ea:03:bf:34:e2:c1:57:
df:09:9a:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:53:00 2025 by rpki-client