Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/yk62-rIFyvxUyYjPRzOWpiPSBE4.roa
File: yk62-rIFyvxUyYjPRzOWpiPSBE4.roa (raw, json)
Hash identifier: MJaErnGZ3eqC08EJIyYxyAT/MxNMnqVSUIUtc/N5VhI=
Subject key identifier: CA:4E:B6:FA:B2:05:CA:FC:54:C9:88:CF:47:33:96:A6:23:D2:04:4E
Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial: 1922
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yk62-rIFyvxUyYjPRzOWpiPSBE4.roa
Signing time: Fri 22 Aug 2025 09:02:47 +0000
ROA not before: Fri 22 Aug 2025 09:02:47 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 142005
IP address blocks: 210.242.123.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 6434 (0x1922)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Validity
Not Before: Aug 22 09:02:47 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=CA4EB6FAB205CAFC54C988CF473396A623D2044E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:5d:36:0b:a3:7c:dc:ee:4e:fe:5f:13:23:43:
1e:56:d4:11:00:6a:84:e2:55:ff:64:01:a7:a9:6b:
bf:90:76:8e:49:25:f1:2d:cd:63:6b:ea:ab:bf:f3:
89:20:3f:93:ba:0d:0d:d7:7d:c0:b2:6b:7a:d1:00:
32:36:c5:56:b2:14:1c:4c:94:9d:fe:f3:be:b2:a1:
d4:6b:97:88:b8:40:1e:1a:46:7c:d5:04:5a:53:e0:
bd:93:71:93:4e:b1:d6:f8:7a:55:ca:fc:95:c4:16:
dc:71:b4:06:52:2c:ad:23:a1:02:e5:72:5b:71:38:
d2:5e:5d:e9:8e:3d:dc:0f:43:58:c4:56:e1:5e:7d:
c2:aa:10:fa:2a:8b:4e:d6:58:ca:16:4d:92:b7:b6:
0b:cf:61:54:be:2c:3f:b5:2c:18:6f:b7:c4:68:29:
46:b2:a3:0f:2e:cb:e9:3b:ed:bd:51:f5:56:cc:93:
2e:e3:5c:bb:e9:2f:ec:3d:1e:d8:6a:50:43:bb:43:
84:cd:2c:d7:b8:5c:50:d4:ae:ec:36:df:5f:e9:34:
2c:75:f0:93:60:7f:6e:cf:d9:18:4a:d0:69:7c:1d:
31:67:9b:8f:f4:82:68:30:8a:26:78:26:11:e0:57:
ca:a3:89:37:f8:ab:04:cc:cf:dd:21:3d:4f:a0:c1:
e7:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:4E:B6:FA:B2:05:CA:FC:54:C9:88:CF:47:33:96:A6:23:D2:04:4E
X509v3 Authority Key Identifier:
keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yk62-rIFyvxUyYjPRzOWpiPSBE4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.242.123.0/24
Signature Algorithm: sha256WithRSAEncryption
52:5e:e7:79:e2:d6:6d:0c:51:0e:c7:8e:0b:ca:d0:83:78:9e:
61:55:16:23:dc:f3:74:13:ea:0f:37:f8:d8:4a:db:78:bb:0c:
dd:b8:fa:1d:df:73:d5:0a:99:08:9d:a3:01:7a:ea:da:07:d5:
c3:4a:a4:ca:42:f6:78:84:96:ee:7d:5a:32:48:d7:10:34:fc:
cb:ee:08:f1:09:0b:c2:1d:bf:c1:12:63:0c:50:70:b3:42:49:
1a:0c:ea:07:82:fc:55:94:36:71:59:a5:65:b1:7f:6a:80:ff:
b0:fa:32:19:18:a0:a6:39:9c:0f:e8:46:31:20:43:a3:1e:c0:
ec:2e:db:fc:8d:c9:8c:9a:dc:eb:59:13:fb:17:ad:b3:4b:ca:
4a:2a:9a:1f:ea:6f:a6:3d:db:6b:42:27:90:20:d7:2e:52:81:
9d:a9:e7:d5:78:1c:06:b3:ea:07:10:b1:10:02:2f:9a:0c:4c:
91:fa:4c:7d:0f:5e:12:22:03:57:3b:52:12:c0:5a:8d:71:e6:
e7:f1:92:fc:c6:0f:2c:2b:db:46:bb:cf:f8:04:be:cd:e3:68:
5e:f4:4c:21:41:65:ce:92:50:7e:67:54:c2:21:94:25:6f:42:
1e:f1:db:f6:55:8e:bc:c8:02:5c:28:e1:3e:11:eb:66:51:bf:
d5:76:0b:f5
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICGSIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw
OTAyNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKENBNEVCNkZBQjIwNUNB
RkM1NEM5ODhDRjQ3MzM5NkE2MjNEMjA0NEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/XTYLo3zc7k7+XxMjQx5W1BEAaoTiVf9kAaepa7+Qdo5JJfEt
zWNr6qu/84kgP5O6DQ3XfcCya3rRADI2xVayFBxMlJ3+876yodRrl4i4QB4aRnzV
BFpT4L2TcZNOsdb4elXK/JXEFtxxtAZSLK0joQLlcltxONJeXemOPdwPQ1jEVuFe
fcKqEPoqi07WWMoWTZK3tgvPYVS+LD+1LBhvt8RoKUayow8uy+k77b1R9VbMky7j
XLvpL+w9HthqUEO7Q4TNLNe4XFDUruw231/pNCx18JNgf27P2RhK0Gl8HTFnm4/0
gmgwiiZ4JhHgV8qjiTf4qwTMz90hPU+gwefpAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUyk62+rIFyvxUyYjPRzOWpiPSBE4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC95azYyLXJJRnl2eFV5WWpQUnpP
V3BpUFNCRTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vJ7
MA0GCSqGSIb3DQEBCwUAA4IBAQBSXud54tZtDFEOx44LytCDeJ5hVRYj3PN0E+oP
N/jYStt4uwzduPod33PVCpkInaMBeuraB9XDSqTKQvZ4hJbufVoySNcQNPzL7gjx
CQvCHb/BEmMMUHCzQkkaDOoHgvxVlDZxWaVlsX9qgP+w+jIZGKCmOZwP6EYxIEOj
HsDsLtv8jcmMmtzrWRP7F62zS8pKKpof6m+mPdtrQieQINcuUoGdqefVeBwGs+oH
ELEQAi+aDEyR+kx9D14SIgNXO1ISwFqNcebn8ZL8xg8sK9tGu8/4BL7N42he9Ewh
QWXOklB+Z1TCIZQlb0Ie8dv2VY68yAJcKOE+EetmUb/Vdgv1
-----END CERTIFICATE-----
Generated at Sun Aug 24 04:52:44 2025 by rpki-client