Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/PKTHrJ5RFqzu4xvMN3Urw6vISow.roa
File: PKTHrJ5RFqzu4xvMN3Urw6vISow.roa (raw, json)
Hash identifier: mjzlyoRGgBxW0WHO+5r+JHdnaihOvne2iG3+JAHbjbc=
Subject key identifier: 3C:A4:C7:AC:9E:51:16:AC:EE:E3:1B:CC:37:75:2B:C3:AB:C8:4A:8C
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 08B7
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/PKTHrJ5RFqzu4xvMN3Urw6vISow.roa
Signing time: Fri 22 Aug 2025 09:02:02 +0000
ROA not before: Fri 22 Aug 2025 09:02:02 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 131657
IP address blocks: 103.153.177.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2231 (0x8b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 22 09:02:02 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=3CA4C7AC9E5116ACEEE31BCC37752BC3ABC84A8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f3:18:a3:f9:8b:b6:14:4a:ac:c9:fb:73:4f:
b6:b5:3f:77:5d:fc:d6:98:d4:3a:7c:4f:b6:aa:8c:
92:46:56:f7:1e:cb:e8:1c:56:5e:dd:e1:b0:1d:da:
05:81:33:2a:69:08:1b:b9:a2:b5:d4:59:0f:d8:d1:
04:53:1a:28:e2:be:3d:4a:71:69:d5:be:90:c9:53:
cf:d9:12:62:96:eb:6f:1a:e9:21:e3:a1:78:db:5d:
c4:5c:bd:c9:a4:0e:30:f0:63:f1:34:01:1d:56:b6:
2f:6f:ef:01:11:16:2a:49:1c:61:2b:60:64:f4:b0:
45:cb:bb:26:17:f4:0f:e5:cb:f9:02:34:78:8b:38:
31:25:ab:46:0a:e7:2e:65:3a:fc:a3:52:47:59:c3:
91:d5:86:40:39:77:d2:a2:50:f1:02:c1:64:3b:24:
e3:5b:25:10:fa:fa:19:9f:c5:f5:43:e5:6e:8b:9c:
0e:8f:9c:a2:cc:8a:31:1e:2a:87:53:6c:28:a5:31:
c5:7f:03:33:07:e1:0c:17:4b:16:f1:10:38:27:c0:
82:c3:b2:5b:cf:1d:1b:a8:ee:fc:f7:50:0c:62:4c:
43:34:b7:dc:35:0c:b6:a8:21:05:b0:67:0a:5f:e6:
3a:1e:3b:cb:46:50:a3:ef:5e:e3:d9:93:63:38:d5:
04:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:A4:C7:AC:9E:51:16:AC:EE:E3:1B:CC:37:75:2B:C3:AB:C8:4A:8C
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/PKTHrJ5RFqzu4xvMN3Urw6vISow.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.177.0/24
Signature Algorithm: sha256WithRSAEncryption
8c:47:23:67:71:e8:03:60:03:b3:84:66:8c:fa:6d:db:7d:fa:
6a:fd:97:27:2f:7b:bd:f3:aa:0f:8b:76:f3:8f:0d:6f:10:50:
48:71:36:06:37:0d:31:2e:4b:7c:a3:47:d7:61:17:8d:6b:6e:
ba:1b:36:d7:8c:9f:db:7c:9f:73:8b:ed:64:72:a1:3f:cc:a2:
5b:81:26:e3:ca:dd:5a:58:26:a6:28:bf:0c:e3:52:e5:35:b9:
07:22:3f:a9:62:e9:4b:b2:03:79:ad:c3:9a:9e:96:5b:6b:6a:
46:61:69:89:b9:7e:b6:6d:0e:ec:eb:bd:c0:69:fa:fa:b3:56:
59:db:d4:72:97:18:04:75:77:29:a3:35:5f:c1:c8:c4:ed:79:
24:be:55:54:2a:8f:3a:4c:b6:0d:47:9a:75:fc:39:80:47:3f:
4b:a9:00:f2:e9:f2:79:44:cd:f3:de:67:63:1c:87:e5:da:fe:
35:5e:c2:3b:4b:38:12:c6:d5:08:de:54:a1:81:59:24:46:fe:
1a:b8:74:9e:57:06:72:29:84:41:f1:ff:5c:92:bf:1c:82:0f:
3e:41:63:3f:6a:c6:dc:d2:6d:c3:8c:d1:c5:71:87:b3:37:00:
c2:8d:92:c4:28:af:5f:0a:5c:15:b8:b7:3c:80:63:87:44:93:
39:0b:f0:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:57:12 2025 by rpki-client