Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/rE9mhy3DChHxZcyXSm99d0OtXtw.roa
File: rE9mhy3DChHxZcyXSm99d0OtXtw.roa (raw, json)
Hash identifier: 9OIZ22y2gRkcgajRtKzcr0ke5sVgCVcQhz25l+CkRos=
Subject key identifier: AC:4F:66:87:2D:C3:0A:11:F1:65:CC:97:4A:6F:7D:77:43:AD:5E:DC
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1534
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/rE9mhy3DChHxZcyXSm99d0OtXtw.roa
Signing time: Wed 18 Mar 2026 07:52:04 +0000
ROA not before: Wed 18 Mar 2026 07:52:04 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 9674
IP address blocks: 223.22.0.0/15 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5428 (0x1534)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Mar 18 07:52:04 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=AC4F66872DC30A11F165CC974A6F7D7743AD5EDC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:e1:e0:43:c3:a2:dd:ed:be:32:76:39:40:e1:
24:ba:d0:c7:fa:31:d0:b0:ef:76:15:8f:b8:5a:c1:
09:39:2e:53:dd:0f:64:e9:19:ce:68:6d:57:eb:0b:
61:ed:2a:ec:3c:d3:92:60:09:ef:c2:7c:35:bc:8a:
17:06:11:b3:a2:d6:48:59:f7:2c:4d:e9:70:33:84:
f4:46:0b:28:26:30:a9:15:7b:6e:7f:eb:d4:d6:e2:
66:8d:90:31:82:5c:da:9c:1a:41:31:54:47:36:b2:
8e:c5:11:7c:c4:9b:33:6a:4c:fd:1e:3f:72:48:45:
4b:87:e1:37:3f:8d:11:23:1d:c7:be:84:c7:cd:36:
bb:30:ff:f0:f9:6d:57:d9:5f:5a:00:3b:1a:57:a7:
18:f7:9d:8e:68:5c:c7:7d:f4:58:33:50:f9:cf:33:
f5:38:72:73:7e:d6:5b:a9:d6:e9:ab:fe:00:47:6e:
20:f3:15:d4:af:e0:a2:ad:f1:68:83:af:ba:ec:89:
a7:cb:25:88:eb:72:d3:f6:e0:2f:d5:03:f2:eb:45:
c0:a2:7b:3c:9f:83:d7:46:e4:35:6a:16:88:b7:80:
82:ef:bd:f1:4e:48:92:75:5e:63:d5:83:91:28:d8:
cc:f9:6d:13:91:e0:8a:38:ac:35:2c:a9:22:c4:82:
8a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:4F:66:87:2D:C3:0A:11:F1:65:CC:97:4A:6F:7D:77:43:AD:5E:DC
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/rE9mhy3DChHxZcyXSm99d0OtXtw.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
223.22.0.0/15
Signature Algorithm: sha256WithRSAEncryption
9a:b6:2d:3f:89:31:84:c8:3b:4d:72:5e:24:7e:45:c1:3d:aa:
f0:c3:25:8d:61:3c:6a:17:3d:b7:78:53:ae:a7:5f:4f:86:03:
49:e2:50:8e:46:17:08:04:b1:48:4a:c1:c2:40:b9:60:46:37:
37:6b:cc:47:ed:be:90:52:24:7c:37:c4:1e:7b:77:f4:45:53:
9f:70:0c:69:e3:da:9e:45:f2:16:f7:ad:eb:7a:3a:f7:d3:8d:
99:b9:48:11:06:cb:aa:ef:d2:a4:e5:f5:58:3e:0e:d4:2d:44:
0f:68:e6:3f:1d:f5:6e:fa:6e:e8:81:ef:5f:5e:92:2d:56:79:
bd:78:3e:33:85:b8:e0:b8:3a:a8:c0:10:90:23:9d:2e:c8:f8:
2b:85:24:a5:01:ec:8b:16:92:de:e1:89:fe:13:95:c0:75:f9:
71:43:cd:65:29:8c:d7:90:4b:be:37:df:20:93:38:ad:a3:e4:
c2:2e:38:e8:ee:0f:56:a2:66:b8:2d:c8:ce:37:c6:fe:9a:4d:
59:cd:a3:ff:81:d0:bc:8f:ba:47:04:13:c4:6d:45:ec:f7:ec:
28:07:04:18:0d:2c:9a:2a:60:54:ec:55:33:21:b6:f5:23:ae:
f2:7d:80:0e:e7:a1:53:63:18:0a:54:39:13:87:9d:41:18:dc:
8d:d9:da:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:06:09 2026 by rpki-client