Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ydN2PMYEE073YvNxfyYXrOBDAFc.roa
File: ydN2PMYEE073YvNxfyYXrOBDAFc.roa (raw, json)
Hash identifier: PGQueh1368oHdnVVA+nmY2TaA65+1JzhXet1rO7T8cw=
Subject key identifier: C9:D3:76:3C:C6:04:13:4E:F7:62:F3:71:7F:26:17:AC:E0:43:00:57
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1931
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ydN2PMYEE073YvNxfyYXrOBDAFc.roa
Signing time: Fri 22 Aug 2025 09:02:51 +0000
ROA not before: Fri 22 Aug 2025 09:02:51 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 142005
IP address blocks: 210.61.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6449 (0x1931)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 22 09:02:51 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=C9D3763CC604134EF762F3717F2617ACE0430057
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:f7:f4:c7:f3:71:15:a0:80:02:fe:5e:da:80:
b5:f0:cb:f0:c4:f6:58:51:3d:1e:89:76:8e:98:8f:
57:ca:74:2c:78:66:80:65:a7:4b:87:5d:de:31:c9:
48:b8:73:7b:fd:3f:ee:98:28:a2:01:7e:cc:26:6e:
e8:18:a1:fa:a9:12:d7:22:36:51:5f:23:fd:ec:68:
bc:51:89:95:3d:fd:39:e4:b9:91:d9:34:0d:c1:16:
ab:b6:70:76:d0:8a:fc:ec:14:79:41:42:08:1a:12:
9d:43:ab:45:b0:d6:b1:e1:ec:a9:5f:95:67:be:c9:
72:4f:d1:83:b7:4e:3a:34:61:e7:6f:a3:77:9a:10:
76:b4:48:e0:0d:ac:8a:d3:3b:a3:e3:b3:d2:6f:22:
0f:62:14:38:31:dd:7a:44:69:8f:8f:d3:d1:20:59:
a3:a2:15:8b:68:4b:48:b5:2d:5a:34:59:44:b6:16:
c0:3a:c8:d2:94:60:a9:b8:00:59:c0:38:15:98:09:
6c:3c:f8:9b:cb:0c:8c:91:43:ad:ff:fc:2b:47:de:
e5:43:97:04:f5:f9:7e:b6:d9:43:c7:64:da:a8:9b:
95:fb:45:b9:82:6e:6c:ce:30:11:2a:7c:56:ed:99:
f8:5e:f5:15:72:e2:4a:9f:e5:b6:9d:dd:42:bd:9d:
f8:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:D3:76:3C:C6:04:13:4E:F7:62:F3:71:7F:26:17:AC:E0:43:00:57
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ydN2PMYEE073YvNxfyYXrOBDAFc.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.61.3.0/24
Signature Algorithm: sha256WithRSAEncryption
d2:bc:9c:96:9f:29:81:8c:d4:f1:53:ac:4f:6a:81:5f:59:4a:
fe:f0:4e:53:a0:1e:1c:46:ed:b1:41:00:48:ad:35:b7:44:f3:
78:cd:c9:14:33:f2:6b:c2:8f:8b:f3:a0:8a:cc:94:ef:6e:07:
65:7a:d6:08:fc:24:a3:e8:1c:3f:af:9b:f7:68:45:f1:6a:5f:
45:b9:f8:ff:ab:35:97:09:64:b6:27:96:75:23:c1:ca:7d:a1:
82:59:21:69:9f:0b:d1:02:1a:5d:f1:a9:4c:37:29:71:72:4f:
d0:f1:de:8a:50:9a:e5:29:09:4c:84:bf:53:5e:cb:42:af:29:
fe:83:02:9b:a8:f1:01:44:5f:94:5a:1d:9a:c0:e6:8f:a7:a8:
16:ce:e2:ae:c9:f5:c5:0d:8c:ab:b7:b3:18:87:74:05:a9:55:
9b:e5:e8:60:e6:d2:d8:59:94:e9:b5:af:c1:e7:2d:33:c4:0d:
6d:ed:1e:c4:85:09:d1:11:6e:6e:8c:18:a3:22:48:fd:36:af:
3d:6d:93:ab:1f:bd:1d:dd:35:11:f4:01:91:d6:38:d4:ff:6b:
d0:1d:8c:6c:16:84:45:66:47:cd:97:8f:05:88:86:c8:09:92:
ae:96:6a:69:f3:14:ad:61:91:9b:73:da:a8:81:77:04:23:f7:
bd:70:ff:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:53:46 2025 by rpki-client