Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HST/mFCKX647egMWRjaSvIGqI0RqwmY.roa
File: mFCKX647egMWRjaSvIGqI0RqwmY.roa (raw, json)
Hash identifier: hMiNbN8dpsTFf0y6Sui0mAW/IPUCVmEzv25ZNPcIEWA=
Subject key identifier: 98:50:8A:5F:AE:3B:7A:03:16:46:36:92:BC:81:AA:23:44:6A:C2:66
Certificate issuer: /CN=833D5BF79B45C730ED141CB539A508D01AA30908
Certificate serial: 0AF3
Authority key identifier: 83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/mFCKX647egMWRjaSvIGqI0RqwmY.roa
Signing time: Fri 22 Aug 2025 08:48:59 +0000
ROA not before: Fri 22 Aug 2025 08:48:59 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 131666
IP address blocks: 2405:6440::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2803 (0xaf3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=833D5BF79B45C730ED141CB539A508D01AA30908
Validity
Not Before: Aug 22 08:48:59 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=98508A5FAE3B7A0316463692BC81AA23446AC266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:81:55:9c:ff:d8:5e:e2:97:86:0c:91:65:95:
99:62:72:95:db:b0:72:a0:19:55:8a:85:ee:ab:a2:
64:29:c5:1d:d7:6d:34:e9:5e:16:9c:25:3e:e8:0d:
b6:e3:37:40:d9:d8:5b:ae:3c:37:76:f7:ab:80:e8:
72:27:90:63:a9:b5:97:b8:be:7a:f3:19:3f:cd:be:
6c:59:7b:a1:ca:e7:36:6b:60:52:68:91:32:49:3a:
fa:98:fb:48:82:09:f0:f6:65:c6:0f:a8:21:59:cb:
eb:f7:0b:36:2e:a7:24:10:6f:2b:bf:6c:18:40:c4:
a1:72:27:f6:2b:ed:0f:a3:52:7f:f8:a7:b9:74:fd:
0a:17:6a:13:ff:fc:84:64:b2:5c:51:54:0f:dc:84:
82:36:73:1b:8c:aa:68:c5:63:82:70:ba:39:14:02:
03:37:b9:18:07:c9:19:76:cc:0f:1c:3f:40:4d:ab:
30:7f:2c:49:65:f4:d8:d0:92:40:30:af:a4:04:f6:
81:c4:ef:35:de:83:6f:6f:60:76:f3:f4:69:6c:c4:
d0:f1:0e:9f:28:7d:db:e4:5c:dd:ed:73:a8:dd:51:
38:19:90:10:77:b8:d5:26:55:8c:75:4c:be:98:93:
0c:91:5e:fd:e6:34:6d:35:4f:2c:4c:f3:f3:59:6e:
05:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:50:8A:5F:AE:3B:7A:03:16:46:36:92:BC:81:AA:23:44:6A:C2:66
X509v3 Authority Key Identifier:
keyid:83:3D:5B:F7:9B:45:C7:30:ED:14:1C:B5:39:A5:08:D0:1A:A3:09:08
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/gz1b95tFxzDtFBy1OaUI0BqjCQg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gz1b95tFxzDtFBy1OaUI0BqjCQg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HST/mFCKX647egMWRjaSvIGqI0RqwmY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2405:6440::/32
Signature Algorithm: sha256WithRSAEncryption
2a:89:9f:c3:a1:e2:16:44:d7:d4:cf:4b:00:48:4c:01:b3:a6:
fd:67:3b:8d:99:3d:cb:ed:dc:f0:b8:e3:b2:72:33:01:2d:9e:
51:f9:4d:00:fa:ec:9d:18:d3:c6:29:c5:b9:f4:22:70:09:c7:
92:b9:e9:58:69:3b:13:bd:64:e1:80:60:1e:c9:1b:a1:14:6c:
5f:3c:fe:f6:d6:56:55:8e:16:87:ed:44:86:5d:c5:bf:03:58:
40:82:ec:fb:d0:a4:3f:93:ef:26:28:97:76:91:83:64:70:92:
7d:69:bd:31:c7:1b:c4:76:93:21:ed:a1:e1:b1:7f:57:51:22:
4f:01:b1:4c:32:93:21:00:79:20:99:38:7d:6c:c6:14:8e:ef:
6c:bf:09:d0:0e:38:27:cd:6c:68:17:21:76:20:f6:31:66:62:
4f:e1:2e:3d:14:b6:0a:34:14:31:70:98:5d:ad:2b:9b:1a:2d:
b7:33:94:f2:ad:5f:13:ab:9c:fd:c3:e1:c8:0a:6e:27:0e:ef:
29:79:eb:08:4e:ac:da:83:a8:11:9e:d2:de:9b:dd:e6:74:e5:
5d:be:3d:0c:c5:97:de:2b:a9:32:99:1f:f2:b6:58:18:7d:7a:
63:31:9c:10:ae:e2:c1:35:8b:9d:22:15:1a:db:c1:23:ca:6f:
ee:0a:9a:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:53:04 2025 by rpki-client