Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0cQ28NJbIo1-1dKr-N0eQ27gZI4.roa
File: 0cQ28NJbIo1-1dKr-N0eQ27gZI4.roa (raw, json)
Hash identifier: 3pE0UPf90zb+/DacQYo6B6xMikO1dV9hsUVBlFtJPcg=
Subject key identifier: D1:C4:36:F0:D2:5B:22:8D:7E:D5:D2:AB:F8:DD:1E:43:6E:E0:64:8E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 18E9
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0cQ28NJbIo1-1dKr-N0eQ27gZI4.roa
Signing time: Fri 22 Aug 2025 09:02:35 +0000
ROA not before: Fri 22 Aug 2025 09:02:35 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 142005
IP address blocks: 210.242.83.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6377 (0x18e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 22 09:02:35 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=D1C436F0D25B228D7ED5D2ABF8DD1E436EE0648E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:76:e6:9f:43:41:bd:56:d3:5c:6e:04:cc:be:
75:b0:57:df:bf:cd:e9:72:57:69:38:e9:2d:9f:37:
a0:32:76:c4:20:48:57:1b:ef:77:49:41:ad:a1:87:
5c:c4:f1:6e:ab:17:6b:9f:69:b1:5b:92:12:e1:ba:
f0:07:07:20:f4:4d:54:b8:31:21:bb:71:8d:df:9b:
bc:62:00:82:a7:e8:0b:1f:4b:4a:53:91:ac:ce:70:
60:21:fa:6f:70:6f:91:4a:36:44:5e:96:5b:f0:fb:
6f:06:0d:57:69:f8:ce:42:c5:79:c1:2a:cd:6f:e1:
71:41:83:89:33:03:c5:52:d4:24:c2:5d:82:8f:f4:
16:45:e0:76:ad:c2:16:85:d1:17:d2:21:37:b1:20:
48:0d:e9:6b:9a:2f:ff:c3:ad:65:a6:e8:9e:de:33:
f5:70:55:5e:0a:94:5f:68:77:ea:15:1c:05:0c:0d:
0e:fb:59:6c:04:44:0d:d7:d8:7f:e2:2a:15:08:ca:
f0:3a:38:e4:96:ea:91:61:39:f4:b3:aa:ca:63:94:
5d:11:d8:03:b7:8d:e0:69:b8:9e:23:b6:eb:f2:7d:
34:c9:a6:93:38:bb:6e:11:74:23:0a:b4:3f:6a:75:
57:ec:9d:85:24:51:33:96:4a:98:d9:cf:32:0b:96:
c9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:C4:36:F0:D2:5B:22:8D:7E:D5:D2:AB:F8:DD:1E:43:6E:E0:64:8E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0cQ28NJbIo1-1dKr-N0eQ27gZI4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.83.0/24
Signature Algorithm: sha256WithRSAEncryption
9e:ce:9c:f7:e7:bb:46:c5:50:a0:03:f8:b9:1e:7f:35:e9:b4:
77:8b:62:82:70:50:fb:ef:da:71:63:69:27:09:e3:58:6e:ab:
8f:dc:f6:7f:dc:c2:f2:86:2a:1a:3a:6a:53:17:6a:09:ac:b5:
55:2b:9d:7b:a7:c3:84:fd:75:23:34:bb:a3:c2:79:d1:dc:04:
12:2c:46:45:0b:1e:af:c4:b7:b3:1f:83:ac:2d:ca:4a:d9:88:
c5:1c:0a:86:bf:0d:b7:22:c6:b2:a2:f1:e5:06:ff:6b:c3:3c:
8c:2e:7f:97:ae:8e:42:ec:24:de:e1:bf:e1:4e:24:db:19:0c:
8a:73:dc:21:33:f0:da:3a:b8:ba:0d:6a:7e:fb:a2:cc:79:2c:
80:d8:4f:3b:46:6b:4b:f4:63:3b:6d:f9:f7:b4:f6:92:af:ed:
48:81:f6:de:a8:84:f2:f3:b1:c4:e7:ce:33:08:d0:b2:57:65:
4f:b3:e1:dd:35:bd:26:52:26:fb:5f:d0:3c:8a:23:a4:b0:7a:
6d:6a:36:84:f8:97:ef:77:51:f0:b2:50:3f:09:13:ff:19:5d:
d5:43:68:db:30:61:91:38:8e:83:56:c0:67:37:c1:21:ae:6d:
48:98:5f:b6:6e:8e:71:72:a4:3a:5b:67:f0:d1:08:57:6b:69:
b9:90:7a:01
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICGOkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw
OTAyMzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQxQzQzNkYwRDI1QjIy
OEQ3RUQ1RDJBQkY4REQxRTQzNkVFMDY0OEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC4duafQ0G9VtNcbgTMvnWwV9+/zelyV2k46S2fN6AydsQgSFcb
73dJQa2hh1zE8W6rF2ufabFbkhLhuvAHByD0TVS4MSG7cY3fm7xiAIKn6AsfS0pT
kazOcGAh+m9wb5FKNkRellvw+28GDVdp+M5CxXnBKs1v4XFBg4kzA8VS1CTCXYKP
9BZF4HatwhaF0RfSITexIEgN6WuaL//DrWWm6J7eM/VwVV4KlF9od+oVHAUMDQ77
WWwERA3X2H/iKhUIyvA6OOSW6pFhOfSzqspjlF0R2AO3jeBpuJ4jtuvyfTTJppM4
u24RdCMKtD9qdVfsnYUkUTOWSpjZzzILlsnfAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU0cQ28NJbIo1+1dKr+N0eQ27gZI4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8wY1EyOE5KYklvMS0xZEtyLU4w
ZVEyN2daSTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vJT
MA0GCSqGSIb3DQEBCwUAA4IBAQCezpz357tGxVCgA/i5Hn816bR3i2KCcFD779px
Y2knCeNYbquP3PZ/3MLyhioaOmpTF2oJrLVVK517p8OE/XUjNLujwnnR3AQSLEZF
Cx6vxLezH4OsLcpK2YjFHAqGvw23IsayovHlBv9rwzyMLn+Xro5C7CTe4b/hTiTb
GQyKc9whM/DaOri6DWp++6LMeSyA2E87RmtL9GM7bfn3tPaSr+1IgfbeqITy87HE
584zCNCyV2VPs+HdNb0mUib7X9A8iiOksHptajaE+Jfvd1HwslA/CRP/GV3VQ2jb
MGGROI6DVsBnN8Ehrm1ImF+2bo5xcqQ6W2fw0QhXa2m5kHoB
-----END CERTIFICATE-----
Generated at Sun Aug 24 04:49:58 2025 by rpki-client