Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/qph_IFR3oKkcveb27M5eZ1xyRxk.roa
File: qph_IFR3oKkcveb27M5eZ1xyRxk.roa (raw, json)
Hash identifier: VFGcAzUTJfdPA9guAnWBUwVPumt1YYSt1Q3PGwIWXpg=
Subject key identifier: AA:98:7F:20:54:77:A0:A9:1C:BD:E6:F6:EC:CE:5E:67:5C:72:47:19
Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Certificate serial: 0804
Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/qph_IFR3oKkcveb27M5eZ1xyRxk.roa
Signing time: Fri 22 Aug 2025 08:58:50 +0000
ROA not before: Fri 22 Aug 2025 08:58:50 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 9678
IP address blocks: 103.98.72.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2052 (0x804)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C
Validity
Not Before: Aug 22 08:58:50 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=AA987F205477A0A91CBDE6F6ECCE5E675C724719
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:91:9d:31:e8:20:95:46:6b:a3:95:36:78:56:
99:4c:d4:ce:89:9d:ef:4c:94:7f:c9:bb:91:97:69:
3f:7e:ce:25:04:9f:9e:de:02:f3:23:79:9a:cf:52:
8d:61:62:64:0f:92:63:2c:79:4a:1d:60:c7:46:40:
e3:ab:9e:f3:88:1c:03:e5:d5:11:3f:ad:e2:46:e9:
76:2d:12:51:51:43:11:7e:06:09:2e:38:7e:7a:10:
96:eb:c7:54:c2:ff:04:98:8e:17:66:9f:74:9f:ad:
eb:3d:a8:1a:54:1e:ba:c0:4a:d1:2e:b2:04:4d:ca:
8b:67:4e:d8:07:46:34:41:21:bc:fd:94:00:4c:c3:
b1:af:9e:37:c2:0e:1e:0f:11:66:e5:10:6d:47:cb:
32:63:93:46:c6:0a:48:73:d0:ac:7d:3f:3a:2d:ad:
13:ab:4c:b1:62:63:3e:d8:4e:2c:1f:f3:c1:cd:83:
60:64:f9:eb:c8:36:cf:fc:cd:e6:6b:4d:59:db:48:
98:0f:69:7a:47:d5:9b:53:cb:b6:80:9b:53:1c:6d:
9e:dc:07:3c:69:72:be:f3:9e:b3:88:4d:b2:af:ad:
2d:1f:e0:54:a8:0d:2c:75:e1:9b:9e:f6:2e:83:61:
63:71:c2:e4:37:a1:d1:53:11:1d:09:e4:b4:f0:a7:
4f:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:98:7F:20:54:77:A0:A9:1C:BD:E6:F6:EC:CE:5E:67:5C:72:47:19
X509v3 Authority Key Identifier:
keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/qph_IFR3oKkcveb27M5eZ1xyRxk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.98.72.0/24
Signature Algorithm: sha256WithRSAEncryption
e3:b3:12:e6:8c:2d:a9:69:94:50:0c:29:b2:8a:c5:5a:90:4e:
41:92:bd:26:0a:45:80:7e:19:a6:9a:12:d9:a8:dc:12:17:35:
0c:2e:dd:fe:ad:64:3f:80:a6:16:3c:76:78:6b:d2:c1:8b:32:
8b:78:3c:23:39:c5:2d:9b:94:49:5b:df:c6:a6:60:cd:7b:35:
67:7d:d1:13:f4:a1:e8:9f:f2:b8:50:fa:cf:34:73:a1:44:52:
07:1a:20:64:da:ed:33:90:6a:43:ad:69:a1:25:12:2f:92:f4:
7c:ed:a8:d4:dc:85:34:7f:da:72:ba:bd:88:ee:5f:5f:e1:7a:
f5:d9:a4:1a:02:10:32:96:e8:b0:37:bf:e2:68:da:d2:10:30:
2a:ee:b3:13:58:6e:e6:ab:66:fb:42:53:64:70:af:3f:cd:22:
e0:2d:05:cd:45:1f:62:61:be:de:80:08:34:30:00:9c:a0:1a:
02:8c:fa:d5:a8:56:e1:68:1c:c6:13:d4:08:ea:aa:75:45:5d:
d8:80:37:67:56:11:cf:e0:02:c5:7e:ab:88:6a:47:1a:0c:38:
45:7c:42:1a:0a:65:8d:f4:85:25:0b:85:26:1c:32:fe:55:da:
22:7b:fc:28:e4:13:96:05:28:89:f9:34:04:9f:ef:c2:6c:49:
9d:89:78:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:53:23 2025 by rpki-client