Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/z6tHKo-XlUb2Lv2gWwz5Lu-pIC8.roa
File: z6tHKo-XlUb2Lv2gWwz5Lu-pIC8.roa (raw, json)
Hash identifier: hxJbTA1VDfe8QIGQySS34F6xpz1I6ISD8xmY3gBSQ2o=
Subject key identifier: CF:AB:47:2A:8F:97:95:46:F6:2E:FD:A0:5B:0C:F9:2E:EF:A9:20:2F
Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial: 08B0
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/z6tHKo-XlUb2Lv2gWwz5Lu-pIC8.roa
Signing time: Fri 22 Aug 2025 09:02:00 +0000
ROA not before: Fri 22 Aug 2025 09:02:00 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 131657
IP address blocks: 103.153.176.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2224 (0x8b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
Validity
Not Before: Aug 22 09:02:00 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=CFAB472A8F979546F62EFDA05B0CF92EEFA9202F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:bc:b4:8a:c2:3c:55:ec:d2:a5:56:de:98:34:
68:e9:a6:79:aa:36:06:3c:b5:a9:da:2b:c0:2f:5e:
8e:57:d6:c8:49:42:45:5f:cd:ee:23:96:34:cd:df:
8a:eb:fe:57:73:98:84:87:eb:cb:9f:a1:9d:1f:80:
c6:44:c2:f8:59:37:0e:de:99:f5:c9:62:f7:e9:bf:
a4:32:38:8e:63:42:10:b3:7c:29:cd:83:8d:83:7e:
34:c9:4d:f2:fc:39:6a:fd:a0:32:16:ea:05:c0:39:
af:c9:40:25:86:eb:bf:61:5c:30:b3:6d:f5:ac:fc:
c1:2f:dc:a2:9d:9a:12:ba:1f:f1:26:54:95:05:de:
59:b3:b7:99:c4:0f:e2:64:f1:27:2a:d2:07:c8:17:
fc:fd:8f:9e:78:ec:1e:e4:8c:1b:13:fc:3e:f8:82:
cf:76:dc:67:a7:67:2b:15:11:4c:6b:b2:4a:5b:e2:
91:1d:51:04:3e:49:e7:a3:2e:1b:1c:ba:03:85:77:
37:20:f4:4e:60:72:4a:4d:b2:b9:f0:1a:0c:85:2e:
a7:3e:43:6f:b4:88:36:32:b6:d4:2e:09:cf:00:66:
bc:52:94:e2:48:01:6e:0b:3d:23:1e:09:f0:14:11:
ba:d7:b8:9f:b5:ee:f4:3e:ae:bd:f7:cb:bc:c3:20:
7e:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:AB:47:2A:8F:97:95:46:F6:2E:FD:A0:5B:0C:F9:2E:EF:A9:20:2F
X509v3 Authority Key Identifier:
keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/z6tHKo-XlUb2Lv2gWwz5Lu-pIC8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.153.176.0/23
Signature Algorithm: sha256WithRSAEncryption
5e:75:7f:5a:90:74:1f:39:f0:93:c4:0a:f9:78:1a:a7:aa:ff:
c1:5f:70:b7:3f:54:51:9c:61:d1:80:03:0c:09:7b:48:5f:f7:
d7:9c:93:bd:72:b6:f7:27:a3:53:a5:38:1c:56:90:62:4e:c9:
0c:76:cb:bb:77:a4:1b:d1:e2:15:e0:ab:2b:0b:08:95:2a:47:
5d:c3:9c:33:0c:fd:a6:04:75:42:25:f8:81:67:b7:71:cd:57:
28:ca:76:35:05:2e:c8:ab:cb:d6:db:df:40:aa:32:90:1e:8a:
9a:de:fa:f3:4b:fe:6f:0b:77:b0:bd:dc:9b:df:9a:f8:04:9b:
83:a5:a2:a5:8f:fe:48:6c:c1:dc:7c:4d:03:66:12:d1:59:53:
60:e0:7f:ff:13:61:83:8a:c8:9e:47:18:a6:5d:b9:e1:18:99:
ab:17:3a:d2:b9:5d:ff:cf:de:3e:2c:ce:b7:34:2e:b6:c3:86:
e0:8d:91:ed:cb:a2:5b:f1:ea:f1:2f:9f:0b:8f:9c:9f:3f:ed:
b0:89:46:1c:aa:ac:0f:59:60:56:07:8f:24:2a:7e:a1:9c:3d:
19:b8:f2:4c:7d:e3:12:30:11:d3:fa:7e:d5:e7:1d:bf:0b:dd:
3c:64:7a:84:12:dd:9e:44:13:38:c5:ec:6d:06:ab:66:69:a2:
8d:8c:a1:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:55:39 2025 by rpki-client