Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/xo4v1pzMa2I9DWIhugEeGme3Ez0.roa
File: xo4v1pzMa2I9DWIhugEeGme3Ez0.roa (raw, json)
Hash identifier: tKuncbZaIV6hfBDPTUnMvFhrVxreTIjUPyP77JwwmZY=
Subject key identifier: C6:8E:2F:D6:9C:CC:6B:62:3D:0D:62:21:BA:01:1E:1A:67:B7:13:3D
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 13D3
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/xo4v1pzMa2I9DWIhugEeGme3Ez0.roa
Signing time: Fri 22 Aug 2025 08:59:47 +0000
ROA not before: Fri 22 Aug 2025 08:59:47 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 9311
IP address blocks: 210.63.240.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5075 (0x13d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 22 08:59:47 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=C68E2FD69CCC6B623D0D6221BA011E1A67B7133D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:9a:42:21:9b:bb:5d:18:7d:c9:77:e9:4f:3f:
50:0f:da:d1:04:d7:89:e5:7f:87:f1:98:44:96:a1:
21:8c:a7:9b:27:38:26:24:43:62:0a:29:c0:cd:64:
85:22:ad:e7:ac:b8:f9:12:74:00:18:e5:0a:46:ad:
c9:f0:82:19:c9:96:18:aa:20:62:28:56:7f:5c:13:
cb:fc:42:6e:c5:40:1d:d8:8b:18:4b:b4:f6:28:92:
80:46:16:51:21:37:ff:bc:89:28:a3:59:a0:c1:e1:
53:2a:bf:1e:49:ee:82:14:9e:77:81:b0:f2:82:12:
61:fa:04:f9:74:f6:4f:b8:ba:02:f9:b2:6d:cd:92:
3b:3d:f4:d6:b8:90:13:81:8d:81:0f:25:95:da:be:
ff:5c:da:b4:e5:8d:13:05:ca:b7:d5:95:96:cf:c1:
be:b4:bf:bc:c2:30:1a:3f:1d:99:16:8c:86:cd:ca:
fc:f3:e9:91:7c:02:53:a0:51:27:c6:05:ab:61:6c:
ae:29:68:f4:1c:c1:2e:90:01:7e:55:28:1e:35:57:
05:3e:41:b2:52:f7:13:94:57:ea:30:6d:d6:95:5c:
40:42:b1:5c:ec:74:f0:6e:31:9b:8d:e1:c1:d6:17:
94:31:67:fa:e0:c8:f2:ee:e3:e0:7f:f6:07:9a:6a:
d6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:8E:2F:D6:9C:CC:6B:62:3D:0D:62:21:BA:01:1E:1A:67:B7:13:3D
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/xo4v1pzMa2I9DWIhugEeGme3Ez0.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.63.240.0/24
Signature Algorithm: sha256WithRSAEncryption
ad:0f:be:32:f2:a2:40:a2:47:50:c5:34:6d:f1:9b:3f:2c:1b:
6a:04:25:2a:2b:08:2e:85:59:7b:bb:cf:01:42:0d:fc:7a:6c:
d0:4e:60:4f:b9:27:db:6c:f8:aa:bc:01:66:83:7c:bb:40:89:
6b:0d:55:92:c0:84:78:79:92:e3:44:56:46:64:55:00:96:73:
76:78:0b:15:05:36:05:2a:b5:29:09:89:60:2e:6d:e9:e0:25:
88:fc:97:dd:46:48:17:31:dc:b2:2c:5c:1e:a8:49:c6:bc:79:
5a:a4:64:a8:dd:10:7e:3e:2a:fe:d6:d2:bc:88:ed:57:43:72:
c6:23:37:0f:5c:b6:5f:4a:02:f5:a9:bc:45:a2:ed:fb:25:16:
45:90:43:59:b4:cb:82:7b:c6:c1:43:3f:d4:c5:f1:1e:c6:81:
ce:28:cc:76:0c:01:55:2c:34:53:f4:e0:d1:69:c3:0f:61:2d:
f5:5f:2b:55:3d:20:99:0e:0b:d1:b8:7e:d6:57:3a:1f:b3:09:
ce:6f:af:28:73:3e:39:69:c5:29:80:b5:b7:b3:93:e3:ac:22:
5b:40:5e:ee:92:ce:3f:13:82:c4:0e:e6:0e:00:c4:55:21:28:
0c:8a:15:77:f8:c7:d3:cb:76:a1:61:c7:bb:05:7a:75:9f:1c:
7c:fc:98:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:50:57 2025 by rpki-client