Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/vRw71xEw4OqOSlbp_8uJgF-tqIk.roa
File: vRw71xEw4OqOSlbp_8uJgF-tqIk.roa (raw, json)
Hash identifier: 3DgR5gysQMsQEjykOWXIxSieSAiG+6omq/Kj+E5pe0o=
Subject key identifier: BD:1C:3B:D7:11:30:E0:EA:8E:4A:56:E9:FF:CB:89:80:5F:AD:A8:89
Certificate issuer: /CN=F95F0AA4EEE346F077A0CEEC8D06CC498F9B1AB9
Certificate serial: 0234
Authority key identifier: F9:5F:0A:A4:EE:E3:46:F0:77:A0:CE:EC:8D:06:CC:49:8F:9B:1A:B9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/vRw71xEw4OqOSlbp_8uJgF-tqIk.roa
Signing time: Fri 22 Aug 2025 08:44:03 +0000
ROA not before: Fri 22 Aug 2025 08:44:03 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 131642
IP address blocks: 202.47.172.0/23 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 564 (0x234)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F95F0AA4EEE346F077A0CEEC8D06CC498F9B1AB9
Validity
Not Before: Aug 22 08:44:03 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=BD1C3BD71130E0EA8E4A56E9FFCB89805FADA889
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:62:8d:d8:44:aa:af:87:83:b4:ee:73:b8:bc:
27:23:a1:08:f5:d6:1c:55:2b:3d:87:6b:56:58:b4:
77:18:2b:80:d3:78:be:80:3d:b6:b2:eb:49:98:92:
c3:34:80:c0:0f:df:be:af:5c:27:9e:5b:e0:1a:f1:
60:2c:b9:18:16:4d:8b:8f:b6:02:53:83:42:e5:ac:
d5:c5:49:dc:bb:28:7b:9a:a5:10:6f:c8:20:9d:98:
c3:86:3e:e2:d7:53:9d:ce:01:50:72:e0:98:8b:69:
a0:f9:94:6f:d4:e3:43:f2:9e:78:59:37:1e:7a:0e:
c6:17:e3:1b:3c:52:4e:f6:b8:ac:e3:60:67:23:e2:
88:ee:74:9b:f9:36:f8:fd:02:4d:08:94:44:b7:00:
a0:39:41:be:c0:8b:3a:69:19:79:d8:c1:c7:7c:66:
e6:58:6a:af:3c:07:fe:47:d4:19:76:bf:70:d2:d0:
98:bd:48:fa:72:e4:28:ac:ec:1c:a0:f2:e7:af:a5:
ef:5a:11:2a:5d:26:3c:5f:5a:23:0e:5a:bf:4e:01:
b4:8c:85:3c:26:b9:83:d8:f4:f9:e0:7b:fa:a6:a1:
77:a1:df:67:c1:1c:e7:54:73:1d:94:be:4f:27:51:
80:3b:aa:71:1d:f2:06:23:3e:bd:32:8b:dc:28:0c:
51:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:1C:3B:D7:11:30:E0:EA:8E:4A:56:E9:FF:CB:89:80:5F:AD:A8:89
X509v3 Authority Key Identifier:
keyid:F9:5F:0A:A4:EE:E3:46:F0:77:A0:CE:EC:8D:06:CC:49:8F:9B:1A:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/-V8KpO7jRvB3oM7sjQbMSY-bGrk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-V8KpO7jRvB3oM7sjQbMSY-bGrk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KAIWEI/vRw71xEw4OqOSlbp_8uJgF-tqIk.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.47.172.0/23
Signature Algorithm: sha256WithRSAEncryption
82:eb:85:7f:63:b0:43:b6:9d:46:87:c9:ac:a1:7d:98:06:ba:
fc:68:d9:12:3f:7c:7f:8e:58:99:3d:27:f9:ff:d1:a8:0f:02:
e4:6c:8f:39:2d:6f:41:0a:c2:cc:83:f6:36:36:08:95:a9:ca:
1d:40:6d:4f:ff:e9:03:e2:bf:17:62:16:8e:ea:e6:a5:66:03:
46:f0:94:c1:50:10:53:bd:3e:91:2b:d5:f0:e7:f8:6c:0b:d6:
1b:fb:9a:07:00:ed:27:b9:fa:33:2a:0a:1b:7d:00:42:4a:fc:
ae:b8:d6:b1:a2:91:02:8f:03:d4:42:f7:a1:f3:43:46:a6:f8:
5c:35:8d:9f:11:9a:3d:1b:3c:e7:80:a2:b3:4a:9a:1e:2f:89:
ea:ce:fd:e8:64:3f:27:1b:60:fc:0c:91:a5:4d:57:c0:c5:4b:
42:3e:cc:bc:17:9e:31:fe:c3:97:6d:26:65:8d:ca:36:01:87:
89:20:6f:8d:4b:54:67:12:f3:a2:98:f8:45:97:d8:f5:ef:44:
e1:2d:ce:45:6e:f7:4c:c6:30:3d:3c:e1:1f:27:b0:d4:67:9b:
4c:3a:6e:fa:2e:ee:63:c6:67:fa:14:74:dc:cc:5d:33:ef:13:
ac:61:e9:c2:1f:05:8e:04:a6:92:fc:c3:b9:ed:c6:08:25:6c:
0f:39:1a:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 08:50:03 2025 by rpki-client