Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/SZdgLL3fJcRkcTCCH4wm8fXvt1M.roa
File: SZdgLL3fJcRkcTCCH4wm8fXvt1M.roa (raw, json)
Hash identifier: 4TrkLNP2IEHYdiq8pDy7U6TKZDAs/KI54L37Y0iyQvE=
Subject key identifier: 49:97:60:2C:BD:DF:25:C4:64:71:30:82:1F:8C:26:F1:F5:EF:B7:53
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 13BB
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/SZdgLL3fJcRkcTCCH4wm8fXvt1M.roa
Signing time: Fri 22 Aug 2025 08:59:39 +0000
ROA not before: Fri 22 Aug 2025 08:59:39 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 18419
IP address blocks: 124.218.232.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5051 (0x13bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 22 08:59:39 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=4997602CBDDF25C4647130821F8C26F1F5EFB753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d1:71:18:1c:37:fa:7f:c6:3c:08:ac:62:61:
08:60:b6:a7:86:77:32:4a:1a:f3:77:b1:2e:43:04:
64:91:a0:44:98:92:4c:64:2a:ba:fe:ed:84:59:20:
30:eb:38:7f:64:c2:45:27:e4:7d:8e:c3:2e:c4:91:
b7:9b:f1:b2:00:93:69:ae:b6:7e:4f:be:49:0d:0c:
77:a1:e1:fc:ca:f7:75:77:a2:2c:9c:3b:25:bb:3c:
27:2d:25:15:ef:5b:66:a2:1c:de:04:d6:84:66:3e:
16:c4:2a:df:ae:02:a9:e9:19:28:6b:89:bb:73:b2:
10:8e:8a:10:5b:ca:64:5a:08:b9:21:59:a4:83:1a:
cf:d4:2b:cd:34:d6:0d:f9:47:73:52:a7:42:81:d7:
5d:33:86:d4:5e:58:dc:78:7c:d0:7e:27:2f:5e:15:
39:fd:82:9b:ab:25:fb:e0:2b:ac:f4:63:ce:4f:12:
48:c4:4e:51:81:b3:84:a0:b0:0c:da:c6:70:73:34:
c7:a0:9d:df:d3:4a:3f:80:42:ab:22:96:35:a1:95:
cb:59:54:23:39:d9:a4:c5:54:fe:3a:11:83:39:69:
c6:81:ee:8d:23:39:5d:3c:c1:72:d5:3c:7a:df:d8:
a0:e9:a9:bf:2d:8f:b4:3f:ad:e5:70:11:69:58:6b:
f3:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:97:60:2C:BD:DF:25:C4:64:71:30:82:1F:8C:26:F1:F5:EF:B7:53
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/SZdgLL3fJcRkcTCCH4wm8fXvt1M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.218.232.0/21
Signature Algorithm: sha256WithRSAEncryption
b3:65:2f:c7:a6:1a:33:f1:1f:2c:0c:68:18:17:24:95:6a:42:
70:85:0b:b6:ef:fb:6b:2d:59:68:09:01:ca:80:cf:65:1d:a7:
a9:7f:73:c4:6d:65:32:a6:19:14:b9:7a:f4:65:81:71:6f:3f:
89:bc:49:ed:44:06:d0:51:ff:1c:4e:36:6b:03:54:fa:58:4f:
c2:83:e9:1c:26:e5:e4:47:ea:7d:3a:17:90:5b:55:49:54:23:
ed:35:5b:20:64:96:56:95:7b:1a:17:71:8b:02:01:1a:5d:d9:
58:64:79:b7:98:db:b0:a8:e9:fa:cb:de:33:a8:d1:ca:ba:a7:
a7:3f:cd:69:7c:57:28:8c:1a:1a:e3:40:f5:d4:b1:07:5b:3d:
55:2b:47:0c:90:c7:ae:de:81:c3:9c:8e:70:dc:f6:cb:85:9e:
28:35:e0:94:fe:07:72:91:04:b3:31:bb:1d:1a:2e:db:5d:dd:
7b:24:94:d7:c2:59:40:eb:7a:03:02:64:a1:8d:8c:d9:ad:db:
f6:e4:41:b4:84:42:ee:9c:33:41:04:6a:2f:ba:f5:87:83:23:
15:d9:16:a7:c2:09:55:75:90:de:de:41:8c:b0:40:f6:76:31:
6f:78:69:84:d5:ea:5d:ef:f0:d7:12:2d:a7:8f:a4:b0:fd:e7:
0f:13:d4:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:53:30 2025 by rpki-client