Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/CR0MuifInA_H7fQ83EsV6MSR_jQ.roa
File: CR0MuifInA_H7fQ83EsV6MSR_jQ.roa (raw, json)
Hash identifier: yKQwVf1W7S9enTkGY02UnaSgCBOri5SjXlimdBfQf5Y=
Subject key identifier: 09:1D:0C:BA:27:C8:9C:0F:C7:ED:F4:3C:DC:4B:15:E8:C4:91:FE:34
Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803
Certificate serial: 02F7
Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/CR0MuifInA_H7fQ83EsV6MSR_jQ.roa
Signing time: Thu 09 Oct 2025 06:14:13 +0000
ROA not before: Thu 09 Oct 2025 06:14:13 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 152609
IP address blocks: 157.20.248.176/28 maxlen: 28
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 759 (0x2f7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803
Validity
Not Before: Oct 9 06:14:13 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=091D0CBA27C89C0FC7EDF43CDC4B15E8C491FE34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:65:49:99:35:8b:f4:c6:f9:95:ed:d3:8e:4d:
1a:4e:56:a8:51:b7:dd:a7:19:09:a5:b1:9c:d2:1a:
df:13:7b:7f:37:5a:09:d8:be:bb:f8:86:97:1c:74:
4e:cc:10:36:81:05:98:e0:75:cb:9d:ab:7b:a6:8d:
bf:83:b9:f1:6d:12:1f:79:86:24:a0:3f:ac:0e:72:
f7:a3:fe:39:46:b7:fb:63:7b:f3:a3:9c:f3:de:dc:
7d:6a:35:14:5d:16:8f:73:df:20:cb:35:f6:23:88:
70:aa:14:9c:62:5f:d4:28:ed:bd:ab:c3:4b:3d:c5:
ee:ff:fe:3b:1c:ea:2d:d9:ec:33:fb:45:07:5c:de:
75:c0:b4:5b:eb:a4:35:d8:aa:5a:8d:22:d2:a2:92:
6f:5a:ba:05:1d:25:19:c1:30:40:0b:42:68:0d:e1:
ee:b8:88:80:3e:70:fb:cb:37:4b:8c:0f:42:7b:ed:
70:d6:a0:74:b3:94:49:df:30:b6:f2:3c:8d:22:87:
9b:6f:6b:cb:15:8c:5b:07:dc:52:4d:7a:fc:e9:eb:
03:69:9c:9d:75:92:e2:49:9c:d0:a5:a1:4e:5c:86:
60:f1:21:e4:b0:79:34:56:e8:bb:e4:00:87:53:f5:
ca:e7:e4:a5:47:43:d4:53:e9:0e:4e:1d:64:23:ec:
ec:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1D:0C:BA:27:C8:9C:0F:C7:ED:F4:3C:DC:4B:15:E8:C4:91:FE:34
X509v3 Authority Key Identifier:
keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/CR0MuifInA_H7fQ83EsV6MSR_jQ.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.248.176/28
Signature Algorithm: sha256WithRSAEncryption
2f:6c:2c:e1:44:09:72:bc:66:44:e6:6a:2b:82:d8:58:e4:63:
4e:9c:ae:6b:11:3a:74:e7:76:7f:84:09:be:13:28:8c:e4:4b:
d5:38:3c:68:6d:9d:34:06:76:80:a1:c8:7c:94:96:6f:8b:64:
12:9c:38:32:61:1d:19:bb:75:af:5b:e3:06:56:a9:21:95:79:
0c:4c:89:3f:ca:7d:44:e7:0c:62:17:82:31:c9:11:c1:7f:c1:
e0:9a:64:b9:ef:dd:10:70:0f:08:5e:78:a4:7c:e0:92:4e:2a:
00:ce:f1:39:2e:db:89:db:d2:67:4b:aa:19:2c:d9:79:ee:18:
d2:11:bd:52:3f:c7:03:7b:e1:d0:8f:d9:da:7a:da:ce:ad:9b:
b8:c6:05:17:94:7e:a6:c2:d9:9a:ba:d4:90:48:42:e2:76:5b:
fc:4b:e3:c5:72:99:10:2c:79:fc:bc:cb:ba:75:66:5e:e7:7c:
61:e4:64:8f:f0:60:9d:85:40:fb:fa:fb:8d:e4:c9:f3:c1:90:
f0:fd:ee:bb:08:dc:59:d5:a2:42:4d:62:92:fb:4b:4b:b1:27:
d0:1e:c4:cd:6d:2a:0c:07:bd:48:9e:9b:79:01:00:d3:03:02:
ef:a7:50:43:1b:8c:7b:bb:56:56:03:a2:bb:54:20:8e:28:92:
43:7d:0f:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:35:55 2025 by rpki-client