Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/CWOXye9sMnOLSos4O9CIeyoY_Js.roa
File: CWOXye9sMnOLSos4O9CIeyoY_Js.roa (raw, json)
Hash identifier: XnrzIMrCbaeM4egNjhX3UzMenlYVDMfAdsS1WsQFMYE=
Subject key identifier: 09:63:97:C9:EF:6C:32:73:8B:4A:8B:38:3B:D0:88:7B:2A:18:FC:9B
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 145F
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/CWOXye9sMnOLSos4O9CIeyoY_Js.roa
Signing time: Fri 22 Aug 2025 09:00:20 +0000
ROA not before: Fri 22 Aug 2025 09:00:20 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 18419
IP address blocks: 124.218.0.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5215 (0x145f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 22 09:00:20 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=096397C9EF6C32738B4A8B383BD0887B2A18FC9B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:69:62:9e:12:8b:d8:0b:0f:ca:77:ea:8e:ee:
28:89:9d:c7:6a:fd:98:31:3c:e0:c8:ad:09:8f:14:
a6:83:5c:b0:e6:9f:19:dd:e2:6e:ff:9b:b5:b4:a8:
ba:9e:96:9a:74:79:58:d1:1c:3f:0e:6d:fb:dd:30:
dd:55:6d:25:3a:55:eb:56:3e:06:20:e4:69:1d:02:
41:21:be:a5:e0:7b:06:26:e3:a8:36:b7:4b:3c:1d:
ec:6c:62:86:d4:32:f6:e7:1c:cd:77:ab:3e:34:fa:
af:9f:b5:11:e6:25:a5:2a:2f:c3:0f:8f:03:07:f2:
fd:20:57:8b:01:b3:e3:54:09:5c:6b:67:9c:d5:cb:
e9:2e:fc:1f:22:83:03:1c:76:5e:16:af:f9:de:52:
63:d2:81:64:30:1d:3e:62:33:5a:a1:d4:75:ea:1e:
0f:75:fc:87:4f:8d:de:1e:46:d2:78:f7:0a:e9:00:
63:98:82:17:de:f7:07:e9:5d:91:e8:00:0f:c5:da:
a7:e6:4b:63:29:63:48:6b:26:bb:24:2a:e8:08:87:
ca:74:55:ea:0c:8d:1c:23:78:58:07:ed:cd:37:6a:
fa:82:b2:cf:3e:1b:46:03:c2:3c:93:22:a6:ce:36:
38:63:f8:4a:7a:e7:78:13:40:07:90:21:1c:da:5c:
a7:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:63:97:C9:EF:6C:32:73:8B:4A:8B:38:3B:D0:88:7B:2A:18:FC:9B
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/CWOXye9sMnOLSos4O9CIeyoY_Js.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.0.0/18
Signature Algorithm: sha256WithRSAEncryption
0f:5d:7e:6d:68:1c:df:59:bd:8c:dc:48:13:8f:88:7d:b9:3e:
98:64:31:08:d0:65:64:45:cd:38:3a:ed:d4:d0:fe:ac:e3:c1:
ed:2f:d6:c8:37:42:17:96:c7:27:2c:ed:53:a3:35:1a:e8:c6:
36:98:01:ea:6b:52:a6:fb:52:11:73:cf:61:e1:d3:31:bd:27:
15:56:48:f9:40:f0:f8:90:1c:09:a4:93:23:9a:76:4e:38:78:
8f:8d:e3:4d:2f:c3:b5:50:85:60:6a:0d:0c:33:85:7a:0a:e1:
11:52:88:15:4e:5d:ad:00:09:80:5b:7b:48:af:4b:4e:35:5c:
d2:63:5d:19:28:c5:33:16:97:58:20:d4:0c:03:93:72:2c:fd:
28:61:65:2d:c9:66:d6:44:7f:54:40:30:57:51:3e:44:59:c5:
d1:00:a1:c8:eb:e7:82:33:f7:05:33:ca:d1:e9:66:75:15:67:
49:90:2b:ec:e8:72:d2:6d:dd:cb:2c:2e:5a:50:10:49:d4:1e:
0e:54:9f:de:4b:77:a0:06:44:05:29:88:42:c8:a5:ab:21:b2:
f8:58:15:1f:ac:a4:59:ac:0d:1a:1e:6d:22:b4:bc:21:2e:d0:
d6:61:f4:92:e6:02:96:59:40:22:40:a1:73:23:73:6e:58:d8:
52:5f:2e:b7
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICFF8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2
M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNTA4MjIw
OTAwMjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA5NjM5N0M5RUY2QzMy
NzM4QjRBOEIzODNCRDA4ODdCMkExOEZDOUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/aWKeEovYCw/Kd+qO7iiJncdq/ZgxPODIrQmPFKaDXLDmnxnd
4m7/m7W0qLqelpp0eVjRHD8ObfvdMN1VbSU6VetWPgYg5GkdAkEhvqXgewYm46g2
t0s8HexsYobUMvbnHM13qz40+q+ftRHmJaUqL8MPjwMH8v0gV4sBs+NUCVxrZ5zV
y+ku/B8igwMcdl4Wr/neUmPSgWQwHT5iM1qh1HXqHg91/IdPjd4eRtJ49wrpAGOY
ghfe9wfpXZHoAA/F2qfmS2MpY0hrJrskKugIh8p0VeoMjRwjeFgH7c03avqCss8+
G0YDwjyTIqbONjhj+Ep653gTQAeQIRzaXKerAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUCWOXye9sMnOLSos4O9CIeyoY/JswHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D
T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt
T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL0NXT1h5ZTlzTW5PTFNvczRPOUNJZXlv
WV9Kcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ82gAwDQYJ
KoZIhvcNAQELBQADggEBAA9dfm1oHN9ZvYzcSBOPiH25PphkMQjQZWRFzTg67dTQ
/qzjwe0v1sg3QheWxycs7VOjNRroxjaYAeprUqb7UhFzz2Hh0zG9JxVWSPlA8PiQ
HAmkkyOadk44eI+N400vw7VQhWBqDQwzhXoK4RFSiBVOXa0ACYBbe0ivS041XNJj
XRkoxTMWl1gg1AwDk3Is/ShhZS3JZtZEf1RAMFdRPkRZxdEAocjr54Iz9wUzytHp
ZnUVZ0mQK+zoctJt3cssLlpQEEnUHg5Un95Ld6AGRAUpiELIpashsvhYFR+spFms
DRoebSK0vCEu0NZh9JLmApZZQCJAoXMjc25Y2FJfLrc=
-----END CERTIFICATE-----
Generated at Sun Aug 24 04:50:01 2025 by rpki-client