Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/an18LtS4fLIPfoIUHLGF6Od6MDc.roa
File: an18LtS4fLIPfoIUHLGF6Od6MDc.roa (raw, json)
Hash identifier: hoMF8BFhaePp109eVK3YVFPCEWJntUaL0+6tVAb11rQ=
Subject key identifier: 6A:7D:7C:2E:D4:B8:7C:B2:0F:7E:82:14:1C:B1:85:E8:E7:7A:30:37
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 143D
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/an18LtS4fLIPfoIUHLGF6Od6MDc.roa
Signing time: Fri 22 Aug 2025 09:00:12 +0000
ROA not before: Fri 22 Aug 2025 09:00:12 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 9311
IP address blocks: 210.203.0.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5181 (0x143d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 22 09:00:12 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=6A7D7C2ED4B87CB20F7E82141CB185E8E77A3037
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:d9:7e:7d:ca:b9:39:7c:15:bd:43:85:8d:78:
5e:19:3d:66:c6:b9:50:38:04:e9:29:0e:68:38:08:
db:20:fa:97:84:af:2a:69:47:92:f7:77:09:b2:e3:
47:ca:d6:30:79:3f:ec:71:6f:f4:5d:66:83:d5:d9:
64:3c:26:6a:3f:84:ed:91:63:02:31:48:99:f6:92:
a5:94:13:b1:f9:8b:58:d1:e1:64:9c:a9:55:c8:cc:
48:a3:58:7a:53:cf:9a:95:6c:62:9e:3f:53:c1:81:
57:58:73:f6:4b:23:6f:3f:1f:ce:0b:00:33:ff:64:
e0:86:d4:78:a1:f4:20:5f:b6:bd:0c:d1:8c:e4:51:
35:96:85:7f:bf:4a:c7:d0:03:b3:c3:dd:48:80:3d:
1c:7d:5a:1b:9a:ff:a5:d6:e2:83:49:55:59:6c:f3:
f6:71:4b:ad:df:97:fb:6b:c2:82:9a:d8:2d:5f:5d:
5b:f8:ae:49:e5:2a:4d:14:66:99:73:f3:61:ef:7e:
7f:fd:eb:5a:38:c2:6b:7b:43:b3:09:6f:21:72:aa:
f7:ea:78:dd:2e:a7:ce:de:aa:6e:dd:a2:eb:ed:a1:
4c:46:72:4f:44:82:2e:8b:7a:14:f3:6f:81:d8:67:
d9:e1:b0:06:9f:ce:0e:80:b0:c8:19:e6:73:fa:ef:
99:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:7D:7C:2E:D4:B8:7C:B2:0F:7E:82:14:1C:B1:85:E8:E7:7A:30:37
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/an18LtS4fLIPfoIUHLGF6Od6MDc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.203.0.0/17
Signature Algorithm: sha256WithRSAEncryption
11:16:dd:0b:b0:49:32:28:9f:69:c4:7c:20:8c:78:0b:10:9f:
10:e5:5a:eb:ad:69:ea:80:08:f7:e4:ca:2b:35:dc:81:90:ef:
b7:db:00:db:9c:24:0e:39:59:1d:ac:f9:50:64:01:a8:17:29:
5a:05:f0:ea:99:68:ff:e1:df:13:24:45:2f:85:07:34:e6:fa:
09:ce:e6:cc:65:ec:8e:48:3f:63:31:6f:90:17:a8:d8:05:19:
ec:5a:40:f6:2d:99:3f:ca:3a:7a:b0:dd:b0:df:e5:bd:b5:12:
3c:e1:a4:ff:a7:e2:0f:0b:74:aa:3b:a4:19:70:d7:04:07:6f:
6e:9f:2e:90:13:d2:3c:36:3b:5c:bd:50:10:d3:d5:18:41:0e:
6a:be:30:e7:ca:9f:f2:97:85:ee:ae:be:d5:86:ed:7b:94:6c:
6d:54:ba:7d:f5:0c:96:53:57:25:c0:fa:e1:5c:02:c4:60:f8:
5c:3d:e6:72:5a:50:a8:7b:2b:c4:8e:1c:b5:49:20:45:e0:d7:
8d:80:6e:8d:aa:83:16:f6:28:b2:09:d7:dd:d6:bd:f4:b8:b3:
13:49:ad:35:06:62:80:4e:fb:95:6a:dc:fa:b4:8c:fb:18:e3:
de:c8:35:06:84:93:04:e0:5d:b7:02:69:c4:20:31:f2:32:2f:
fb:85:ff:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:50:22 2025 by rpki-client