Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/Ud4IMBW6ecQZJLDjtoyialOP6Vg.roa
File: Ud4IMBW6ecQZJLDjtoyialOP6Vg.roa (raw, json)
Hash identifier: 3qQgztcjebVYifoI4QEYn9pzKYSlYLhxP/zatmtqOjU=
Subject key identifier: 51:DE:08:30:15:BA:79:C4:19:24:B0:E3:B6:8C:A2:6A:53:8F:E9:58
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1495
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Ud4IMBW6ecQZJLDjtoyialOP6Vg.roa
Signing time: Fri 22 Aug 2025 09:00:35 +0000
ROA not before: Fri 22 Aug 2025 09:00:35 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 9311
IP address blocks: 210.202.233.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5269 (0x1495)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 22 09:00:35 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=51DE083015BA79C41924B0E3B68CA26A538FE958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:3c:c2:72:a6:5f:87:9e:64:75:2b:44:c2:c6:
f7:e0:81:43:00:0a:19:4d:f0:f9:68:c1:b1:d8:aa:
d9:dc:a1:bc:4a:42:f0:0c:3a:1b:a1:cc:45:14:f2:
00:c2:26:55:09:61:3e:60:b7:86:aa:60:8f:40:24:
b1:97:1a:3a:7a:21:b1:c3:13:21:98:b2:a9:9a:9f:
ea:f9:c8:5a:51:ab:aa:27:78:5d:eb:39:1e:13:4d:
81:f2:c2:ec:6d:f2:27:26:99:c4:f6:80:a2:13:f1:
5d:7c:c0:34:66:04:ec:56:bb:24:aa:ad:82:5f:81:
95:de:7e:48:27:60:71:da:1c:6a:77:ac:48:d9:b4:
e9:29:44:8f:a3:f1:d3:5b:c5:3e:1c:7b:af:77:2c:
cf:5c:25:c8:97:f0:45:c7:1a:16:b9:c3:b4:e3:17:
f2:00:cf:61:12:1c:fb:89:cf:df:2d:11:06:b2:38:
ea:a3:ce:1d:2b:14:1c:3f:6d:77:4e:25:aa:86:31:
f8:85:6e:27:d4:14:a3:a8:69:76:50:15:59:86:66:
26:db:fc:f5:69:52:79:eb:ae:ca:a0:e1:6d:8c:f0:
7a:ec:47:56:63:6c:dd:ce:4f:ac:69:21:8a:1e:84:
d5:8d:e2:a9:9d:d6:96:e4:03:8d:07:0b:ff:59:84:
37:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:DE:08:30:15:BA:79:C4:19:24:B0:E3:B6:8C:A2:6A:53:8F:E9:58
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/Ud4IMBW6ecQZJLDjtoyialOP6Vg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.202.233.0/24
Signature Algorithm: sha256WithRSAEncryption
68:b5:d8:a7:84:c8:3b:db:f0:5f:06:62:56:2e:af:bb:e8:55:
0e:70:68:b0:e5:d8:b6:3c:2b:f3:3b:0e:4a:44:89:a1:c0:bd:
f3:55:ea:dd:9f:04:3d:d9:89:fb:e9:1f:8d:14:3d:91:ed:6e:
ae:b0:49:3a:a1:e5:00:ad:44:62:c5:f5:01:90:98:a2:d4:b1:
9c:c3:de:7c:54:0c:08:aa:e0:76:be:f2:1e:f1:a6:01:80:d0:
62:83:58:d3:fd:e9:10:b5:76:ec:c7:5d:5e:f8:b6:c4:be:78:
b8:50:59:de:26:69:1a:66:f5:f1:b0:e9:8c:04:59:a3:0e:95:
f2:5e:7a:47:b9:84:cb:c1:43:1b:6b:29:dd:d6:40:7c:d7:48:
e6:fb:ae:70:55:1d:e4:7e:5d:bb:2d:9c:c0:57:bd:ca:e5:84:
f9:3d:cf:b5:9c:06:48:7b:c5:c9:60:43:8d:e7:0e:5f:a4:9b:
92:0e:2e:32:a2:31:95:24:f5:fb:c7:b9:42:76:7c:7b:21:10:
e5:de:6c:7b:74:cc:8b:24:0a:0a:53:ba:ae:87:2b:b2:b2:c7:
22:8a:a4:54:16:96:2b:70:45:b9:ba:1a:78:ad:34:1c:8d:35:
88:9a:98:41:10:29:60:40:7f:14:6f:61:58:57:55:bd:18:38:
82:88:eb:18
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:53:10 2025 by rpki-client