Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/yBNyM75V2DgeXtm4hg2zPZ7pQwM.roa
File: yBNyM75V2DgeXtm4hg2zPZ7pQwM.roa (raw, json)
Hash identifier: 1OlOZMApv5I0mpmiSAWnWE+bCxnzRvbGboCZBoiEi68=
Subject key identifier: C8:13:72:33:BE:55:D8:38:1E:5E:D9:B8:86:0D:B3:3D:9E:E9:43:03
Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Certificate serial: 1465
Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yBNyM75V2DgeXtm4hg2zPZ7pQwM.roa
Signing time: Fri 22 Aug 2025 09:00:22 +0000
ROA not before: Fri 22 Aug 2025 09:00:22 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 9311
IP address blocks: 210.201.74.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5221 (0x1465)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51
Validity
Not Before: Aug 22 09:00:22 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=C8137233BE55D8381E5ED9B8860DB33D9EE94303
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e7:f9:4b:0d:fa:63:cd:8c:6c:ad:9e:1a:f5:
ca:86:73:f6:37:21:7d:16:7a:2c:af:1e:4a:fe:6a:
27:60:d0:12:bd:75:ef:33:87:96:f4:d4:58:d9:ec:
21:9a:51:53:6a:3d:ca:7b:bc:5f:19:07:a2:38:5e:
e0:52:f9:05:85:ab:1b:e7:44:7f:42:91:8b:34:34:
6a:7a:82:70:e4:8c:b4:05:08:5d:ad:c1:35:3e:f6:
e5:62:b1:c3:db:6a:6b:f7:b5:74:5c:f6:fc:52:a2:
97:5d:73:23:8e:e4:36:bb:4d:1f:53:53:4b:f3:27:
4b:c2:b1:b9:46:14:44:48:62:8e:af:f9:eb:1c:99:
87:b1:03:5d:fd:4a:94:79:cd:73:62:84:29:9b:32:
70:82:20:61:ff:f0:31:bd:75:d0:c1:a0:04:dd:eb:
71:7c:ff:06:b6:43:9e:8c:5f:76:93:48:64:25:98:
d0:7b:2d:cb:7d:4d:2e:40:12:d3:f0:c7:3b:1f:53:
38:df:99:9b:2c:4e:fd:6f:87:50:58:29:43:05:e7:
6f:92:cd:9c:03:de:49:5b:25:66:83:c8:c3:22:de:
47:e4:11:01:14:34:9f:19:92:5c:3d:3f:29:97:ea:
03:24:8f:b2:12:dd:75:15:49:07:0e:ff:ed:f4:c7:
ab:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:13:72:33:BE:55:D8:38:1E:5E:D9:B8:86:0D:B3:3D:9E:E9:43:03
X509v3 Authority Key Identifier:
keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/yBNyM75V2DgeXtm4hg2zPZ7pQwM.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.201.74.0/23
Signature Algorithm: sha256WithRSAEncryption
5b:82:42:26:dc:fe:c4:7a:3e:98:f1:e2:ed:90:f2:3f:87:4f:
b8:ae:73:e8:f1:9f:d0:14:54:da:fe:46:a5:42:62:72:8e:fc:
d2:29:b7:31:ac:aa:fa:d6:62:3e:8b:de:03:af:4c:23:c9:eb:
3f:99:21:a7:07:fc:77:77:ad:d9:70:57:54:50:5d:0f:17:0f:
d3:43:70:4b:c2:64:e2:76:4d:a6:73:fa:33:b2:67:e9:49:9b:
73:c5:8e:74:4e:74:3f:e3:ab:4a:f3:3b:06:e8:2c:b2:33:1c:
ae:2f:0b:cc:9a:fb:f4:9d:9a:73:78:ce:af:af:17:5b:18:42:
60:82:e1:7f:4a:31:5e:38:c7:5d:16:8f:39:2c:fd:22:cb:23:
66:ce:f0:5d:9e:57:40:a9:d7:a0:b2:3a:7b:73:60:66:1f:e2:
3c:52:ff:8b:5f:1c:e5:17:35:72:23:9c:95:e2:b1:7f:22:94:
5d:8b:b2:35:cf:db:40:25:3b:0c:b0:6a:8a:ee:32:a8:0e:60:
fd:be:f9:58:93:1c:41:02:a5:eb:f3:7b:89:91:a1:f2:90:85:
4a:fe:bc:09:05:d1:b8:09:f0:e2:4b:be:4f:26:92:02:15:96:
76:22:54:3a:3d:40:41:fb:28:12:3f:53:e8:09:2d:ca:62:f5:
a6:e1:f7:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:53:43 2025 by rpki-client