Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/l49ml1pNcLXoLE0aU5eVkKPlDwg.roa
File: l49ml1pNcLXoLE0aU5eVkKPlDwg.roa (raw, json)
Hash identifier: SuONQBYYGT0ZGE1cV+6soLLpQbiQTqc4oEbjf2kP9e8=
Subject key identifier: 97:8F:66:97:5A:4D:70:B5:E8:2C:4D:1A:53:97:95:90:A3:E5:0F:08
Certificate issuer: /CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Certificate serial: 0502
Authority key identifier: 31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/l49ml1pNcLXoLE0aU5eVkKPlDwg.roa
Signing time: Fri 22 Aug 2025 08:52:17 +0000
ROA not before: Fri 22 Aug 2025 08:52:17 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 132369
IP address blocks: 202.148.212.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1282 (0x502)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Validity
Not Before: Aug 22 08:52:17 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=978F66975A4D70B5E82C4D1A53979590A3E50F08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:e5:c3:43:2b:39:6c:77:88:31:67:f9:ff:55:
71:af:c4:6a:87:be:16:e6:8d:d2:79:10:99:51:cb:
72:54:c4:09:0c:61:6f:41:1c:af:5a:46:61:31:d6:
c7:14:69:83:3e:88:8d:6b:f9:83:62:78:eb:72:dd:
dc:3a:32:76:10:25:3c:0b:39:b0:8c:27:56:24:bb:
34:26:07:ec:04:c4:52:aa:f8:93:4c:c9:09:64:84:
6e:ca:6b:5a:c0:e2:20:dc:a8:99:48:2d:13:ec:4e:
75:e5:a2:09:ee:10:de:2e:ff:0e:41:c9:55:7b:94:
a2:e8:25:06:20:cd:2d:b9:c2:c4:94:82:f4:3f:8e:
e9:d4:4b:e0:39:aa:90:cd:ec:3a:63:65:0c:99:3c:
fb:bd:cd:57:1f:e9:84:77:05:f1:06:80:fb:76:7a:
ba:f3:92:de:ab:86:55:3c:1a:cb:93:b1:d0:64:60:
df:de:00:5d:31:e3:3e:fe:0f:fc:67:6d:8f:c2:e6:
dc:db:84:62:a5:af:15:0d:20:73:8b:e2:d2:d7:13:
c1:27:20:69:ec:63:43:0a:4e:30:f7:7c:71:7c:b7:
55:70:c6:a7:5a:e7:7d:d0:50:75:1c:f9:5f:1a:f9:
c8:6a:71:8d:e1:fe:eb:1c:52:f6:ac:f8:3b:b2:cb:
ae:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:8F:66:97:5A:4D:70:B5:E8:2C:4D:1A:53:97:95:90:A3:E5:0F:08
X509v3 Authority Key Identifier:
keyid:31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/l49ml1pNcLXoLE0aU5eVkKPlDwg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.148.212.0/23
Signature Algorithm: sha256WithRSAEncryption
3b:a0:1a:f3:2f:89:7f:d8:a4:38:80:bc:45:b5:49:0f:77:68:
9f:9d:ba:b2:f8:23:8d:df:b0:99:fe:fb:b5:89:99:f9:0c:db:
1d:cc:6d:e4:98:9d:44:0c:e8:20:9e:88:28:f7:45:cb:e8:c0:
02:84:16:26:af:1b:d9:87:e2:83:40:80:9f:c7:d9:a3:84:bd:
a6:e9:ff:5c:20:f1:76:c8:e1:5b:cc:fc:9e:09:5b:8b:92:ec:
a7:7a:7f:59:0d:6a:b2:31:87:2d:ef:a2:4a:5a:a0:79:16:ad:
42:19:d3:d0:bf:6b:4c:3b:cd:43:3c:0b:4f:4e:bb:b4:41:4c:
50:ea:2d:3e:63:86:49:d2:2b:0b:76:2e:31:d6:7b:ca:7d:93:
bc:44:37:b5:6e:b3:ed:7c:de:84:a5:b5:dc:69:75:40:21:0e:
dc:60:ee:bd:83:47:24:a3:8b:a7:37:fc:6c:96:10:d7:e4:9d:
4e:af:19:b9:ff:7f:5c:cf:ed:59:05:b1:a5:76:e4:71:3d:cc:
4d:85:61:a4:e6:bd:e1:83:3a:33:36:1d:5b:9f:44:af:13:22:
0e:d7:a1:1b:15:38:e2:e9:07:fa:ce:53:8f:6e:d5:f6:5a:41:
76:26:5b:11:cc:af:f2:8d:0c:17:e2:ea:9e:66:30:d3:09:7d:
44:cf:95:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:50:47 2025 by rpki-client