Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/LaVX5X3D7Y0PPLIsHr12ZGd8Yj8.roa
File: LaVX5X3D7Y0PPLIsHr12ZGd8Yj8.roa (raw, json)
Hash identifier: zcnTubw2yTX8ZPxOv3MP0E6IcCLJ+3BXmwPYfAHyTvE=
Subject key identifier: 2D:A5:57:E5:7D:C3:ED:8D:0F:3C:B2:2C:1E:BD:76:64:67:7C:62:3F
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 08A1
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/LaVX5X3D7Y0PPLIsHr12ZGd8Yj8.roa
Signing time: Fri 22 Aug 2025 09:01:56 +0000
ROA not before: Fri 22 Aug 2025 09:01:56 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 131657
IP address blocks: 103.153.176.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2209 (0x8a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 22 09:01:56 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=2DA557E57DC3ED8D0F3CB22C1EBD7664677C623F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:36:3f:b9:cc:20:9a:d5:0e:4a:95:1d:fa:6e:
62:f2:0f:35:cc:f7:d5:01:1d:de:2c:9a:eb:20:29:
79:0c:32:bd:07:0e:35:eb:ba:2a:48:5f:00:e8:d1:
2a:12:66:87:c6:1e:04:df:37:8a:ab:1e:87:4e:08:
c1:31:af:00:f0:f1:ac:ad:a6:95:fd:0d:2c:67:eb:
73:0d:9d:50:f3:fa:55:ee:e1:f5:c2:02:94:a3:9d:
f1:fe:86:82:ba:82:3a:23:3f:70:e2:7b:fb:9e:37:
4b:f8:b7:f7:89:0f:95:f8:ff:01:ac:cd:da:ec:8b:
a7:db:75:b3:63:67:05:4e:bc:65:8b:e9:9b:16:b3:
a2:69:6c:0a:35:1f:15:3c:d2:6e:89:04:f3:84:9a:
61:8b:3e:41:1c:be:3f:14:bb:36:cf:e8:02:77:95:
0c:b0:36:44:a6:47:91:7d:b4:82:55:6b:0f:e7:fe:
ae:3c:2c:9d:22:90:33:f6:32:85:86:45:5f:0c:74:
de:f5:ed:62:6e:6d:69:0c:33:d4:30:77:00:fe:44:
c8:7a:c6:31:79:3a:3d:46:f4:d3:4a:92:fe:16:45:
0e:d8:15:49:60:a0:1a:bd:95:4a:c7:16:82:cf:fc:
da:59:2e:28:f5:6e:33:86:97:e9:a9:1a:cf:3a:35:
57:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:A5:57:E5:7D:C3:ED:8D:0F:3C:B2:2C:1E:BD:76:64:67:7C:62:3F
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/LaVX5X3D7Y0PPLIsHr12ZGd8Yj8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/24
Signature Algorithm: sha256WithRSAEncryption
97:9a:1e:bc:40:60:ce:ca:e3:18:37:f9:4f:d8:e5:c0:47:3d:
74:32:97:b2:8f:5f:5c:29:01:85:8e:86:1b:96:5b:02:32:47:
5c:b0:42:85:de:e1:20:22:89:95:0f:c1:23:5e:af:ac:12:bf:
18:5b:c7:89:a5:c6:c0:79:d5:8d:d6:57:9f:27:3e:17:49:13:
5f:99:b9:af:d9:15:75:5d:d1:c7:7d:d0:b3:50:4a:67:ff:3d:
57:c6:e0:40:6c:4d:8b:20:99:1b:ad:e3:6e:e1:a5:13:7c:b8:
2d:45:a5:08:ea:68:e7:9b:4d:c3:59:1b:0e:3b:8c:20:b0:a0:
bb:7d:8d:f2:55:0f:31:86:6c:5b:d1:69:62:84:07:f9:75:4f:
2a:6b:d5:96:b4:30:21:bb:c2:13:3e:69:34:7e:4c:bd:a5:06:
6e:9f:cb:30:3c:cc:db:48:f4:61:d2:7a:55:0d:90:3f:39:40:
e7:e9:99:81:cc:61:5d:68:cb:2f:b0:ca:59:ff:f5:d4:57:c3:
54:2c:9a:22:db:45:bd:43:39:89:70:b7:fb:f0:67:ec:73:49:
7c:c7:aa:4b:9c:49:f8:43:f9:fc:be:63:91:d5:c1:51:77:fb:
cb:3d:0a:1d:52:99:27:5f:a4:5d:ee:a1:03:46:fe:87:0e:e3:
ec:2e:87:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:56:58 2025 by rpki-client