Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/_vrA40UtL3sywKaUVgITVDMZLbA.roa
File: _vrA40UtL3sywKaUVgITVDMZLbA.roa (raw, json)
Hash identifier: x3cpN/FQzAHQLvaCv8ZxnDxo4hKbCPAVbhhUQlxWTok=
Subject key identifier: FE:FA:C0:E3:45:2D:2F:7B:32:C0:A6:94:56:02:13:54:33:19:2D:B0
Certificate issuer: /CN=F33A72AAF798105BB277F094458E464B4659F803
Certificate serial: 02FF
Authority key identifier: F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/_vrA40UtL3sywKaUVgITVDMZLbA.roa
Signing time: Thu 09 Oct 2025 06:14:52 +0000
ROA not before: Thu 09 Oct 2025 06:14:52 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 152609
IP address blocks: 157.20.248.240/28 maxlen: 28
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 767 (0x2ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F33A72AAF798105BB277F094458E464B4659F803
Validity
Not Before: Oct 9 06:14:52 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=FEFAC0E3452D2F7B32C0A6945602135433192DB0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:4e:82:e6:20:a7:a4:0e:bb:02:e7:f6:d5:01:
d8:a1:40:94:dc:b1:ac:73:77:ec:93:12:b0:62:78:
c4:f5:13:41:46:50:bf:9b:fa:f7:22:0d:94:e1:8a:
16:49:e0:38:20:ed:a7:59:f9:6d:e9:e1:95:dc:c0:
20:2c:71:1e:ba:59:40:9b:96:50:a2:af:90:14:af:
9b:e5:e6:07:de:0f:5b:52:65:0a:f7:33:dd:b6:8a:
11:cd:41:92:f7:18:ae:cd:07:88:b4:68:05:f5:4d:
0a:54:e3:e0:f0:55:c6:98:22:4f:03:5a:b5:69:44:
cf:37:5f:d0:ea:37:8f:0e:b6:d5:aa:16:5f:59:65:
1d:81:b4:b2:ee:6c:07:5a:f7:1c:64:ed:5d:cd:1f:
ce:55:8f:85:65:85:e6:1a:f0:ea:41:20:2f:f4:a7:
55:2d:87:d0:87:e8:a5:75:5f:ce:34:50:c6:6f:dc:
23:be:cf:7c:a3:97:92:1c:d1:fc:39:6f:d7:6f:b0:
32:24:e2:dc:0f:96:69:87:ff:2a:82:5b:e0:38:93:
fc:f5:7d:ae:40:fa:09:16:2f:2a:2f:00:52:5a:07:
e8:1f:24:e2:1d:b9:36:1f:86:62:46:ac:e8:5a:dd:
34:5a:20:53:37:0b:cc:7f:c0:e8:05:63:0e:11:6c:
db:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:FA:C0:E3:45:2D:2F:7B:32:C0:A6:94:56:02:13:54:33:19:2D:B0
X509v3 Authority Key Identifier:
keyid:F3:3A:72:AA:F7:98:10:5B:B2:77:F0:94:45:8E:46:4B:46:59:F8:03
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/8zpyqveYEFuyd_CURY5GS0ZZ-AM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/_vrA40UtL3sywKaUVgITVDMZLbA.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
157.20.248.240/28
Signature Algorithm: sha256WithRSAEncryption
aa:84:0c:6e:7d:8d:7b:1c:e8:6b:19:5a:f1:c7:07:87:58:be:
21:cb:fd:9a:40:94:8c:6b:3d:6a:36:7b:54:1f:95:a0:d2:d1:
3e:43:e9:f9:3c:c8:93:3b:30:a2:47:c6:6b:c6:fb:91:40:85:
ce:b6:75:b4:c9:8c:bb:61:fb:3e:80:f9:96:00:ac:94:bb:7a:
38:ec:22:45:0d:d4:50:21:98:63:16:f3:17:4e:55:3d:95:b6:
ff:52:7f:a7:9a:55:dc:d5:02:a4:7c:76:65:84:c7:1d:13:a9:
d1:8e:5f:8b:3c:13:19:fa:bb:d2:25:53:c8:d3:e3:0c:01:7e:
90:37:8b:13:77:8c:ee:5b:73:99:03:fa:c6:89:c7:97:32:f7:
38:7d:e2:af:22:e1:97:5d:53:f2:1f:e6:05:a6:df:d1:11:4c:
8b:43:67:9c:3d:40:91:0c:ca:75:6d:36:9d:1e:a1:d8:66:09:
08:b5:2e:b1:d4:5c:80:f8:55:96:aa:44:00:52:7b:b3:90:df:
d7:a7:2b:4e:92:e1:7e:62:d1:21:48:81:02:86:92:b8:f8:1e:
bb:ba:15:44:bf:a3:7f:c4:61:0b:05:19:97:77:ec:8d:4b:74:
53:c7:c4:43:0c:1e:77:c1:ba:b0:ca:4c:3e:bd:61:5a:aa:79:
2a:6f:a8:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:36:43 2025 by rpki-client