Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/MXG5OK7elYXy7T1Oh8eBqZSKco8.roa
File: MXG5OK7elYXy7T1Oh8eBqZSKco8.roa (raw, json)
Hash identifier: A/08v6rlzW1ywh/z/Sn+w4h1ZJb3xKwqORXfQ5sOHgQ=
Subject key identifier: 31:71:B9:38:AE:DE:95:85:F2:ED:3D:4E:87:C7:81:A9:94:8A:72:8F
Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803
Certificate serial: 02FB
Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/MXG5OK7elYXy7T1Oh8eBqZSKco8.roa
Signing time: Thu 09 Oct 2025 06:14:30 +0000
ROA not before: Thu 09 Oct 2025 06:14:30 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 152609
IP address blocks: 157.20.248.208/28 maxlen: 28
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 763 (0x2fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803
Validity
Not Before: Oct 9 06:14:30 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=3171B938AEDE9585F2ED3D4E87C781A9948A728F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b5:e6:d2:14:1f:d5:ab:77:f2:98:a1:27:90:
86:90:8f:83:4b:31:36:e6:61:37:7e:c3:55:55:7a:
90:5c:c1:09:7e:13:72:f6:de:51:8b:34:06:d9:ce:
66:43:9e:e9:0f:b8:25:71:6f:c5:3f:73:ec:a9:30:
15:59:9e:e6:1e:a5:3d:c5:4c:12:10:12:d2:21:26:
f9:a9:c1:81:1c:b0:37:54:06:05:29:d7:d0:cc:2e:
ec:ae:44:68:98:1e:43:e9:48:18:4e:f3:12:8f:ac:
40:c3:bf:df:37:4e:2b:60:20:f8:36:75:03:04:0e:
b4:e2:38:e7:2b:39:ed:75:d3:b7:24:2f:99:ee:e0:
16:67:1a:03:71:fb:14:a3:1f:d7:4f:96:92:a2:d4:
91:c4:7b:78:d0:6e:ee:bc:1f:1f:cb:3a:f3:c1:f7:
16:ff:2b:27:bb:66:25:b0:ce:c7:01:55:3b:a3:6e:
3b:0e:47:2e:8e:67:e5:73:c8:0b:f7:4e:b7:d6:2c:
ec:10:ea:65:6a:0f:b2:b7:ec:26:91:10:c6:4a:ed:
de:2b:1f:37:9d:14:7e:2b:ad:98:15:98:c8:c0:fb:
48:f3:c0:6b:3f:11:8f:f0:78:7a:e8:13:a7:9d:a7:
ea:9c:2d:a1:e0:45:93:fe:49:27:8e:2f:45:ee:54:
57:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:71:B9:38:AE:DE:95:85:F2:ED:3D:4E:87:C7:81:A9:94:8A:72:8F
X509v3 Authority Key Identifier:
keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/MXG5OK7elYXy7T1Oh8eBqZSKco8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.248.208/28
Signature Algorithm: sha256WithRSAEncryption
61:5c:ef:ad:4c:30:f0:69:a4:d2:88:48:70:db:dd:42:2f:1e:
c6:a2:8e:5e:8f:99:f0:35:a4:7d:3d:17:04:d7:29:a0:56:ae:
3d:b6:05:c0:ea:cf:1b:69:86:29:8a:50:e7:e9:b9:da:10:f2:
74:a1:73:18:0e:db:e7:ee:35:7d:0e:4a:97:db:83:46:ec:17:
ac:58:3d:c2:d5:79:b4:ca:ca:b7:ae:7b:67:d5:b9:20:ab:86:
9e:00:a3:ae:64:9c:13:0b:b7:75:04:1b:a3:48:fe:cb:8e:b3:
6d:e7:e4:f3:39:8c:04:af:6b:89:19:74:dd:4b:a4:c5:e2:49:
28:8c:5b:a6:00:82:ab:d9:6e:87:fc:4c:b3:ab:2e:f1:4d:30:
b1:5e:5a:c6:7d:1c:c3:94:77:03:bd:ec:c2:a8:f4:04:2c:a8:
91:22:20:a7:52:d6:70:e6:50:7d:22:df:8e:4c:e6:57:b3:c7:
c7:81:d1:92:ec:4e:e1:b9:c2:6c:5a:a4:b9:d8:8a:da:ce:69:
ac:c5:0f:5d:91:92:cd:68:f6:99:38:dc:79:6d:c2:0e:e7:8c:
e5:b8:9c:0d:6b:11:72:5b:7d:81:f0:d8:e3:04:84:c5:0d:f8:
8b:b5:8e:00:07:4e:c0:fe:7c:98:53:55:80:ee:ad:53:28:06:
5d:a1:22:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:39:59 2025 by rpki-client