Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCL/vNP_I5PsMAFrbuL-fCVc_DAcuas.roa
File: vNP_I5PsMAFrbuL-fCVc_DAcuas.roa (raw, json)
Hash identifier: APgUUdWq9/Tb8VzeXKS6YF+F0jEJbFs8Sj9SdJqqO7s=
Subject key identifier: BC:D3:FF:23:93:EC:30:01:6B:6E:E2:FE:7C:25:5C:FC:30:1C:B9:AB
Certificate issuer: /CN=0F7FB4302F21F301AB0EAFC5B80184BEED3FB198
Certificate serial: 0EBC
Authority key identifier: 0F:7F:B4:30:2F:21:F3:01:AB:0E:AF:C5:B8:01:84:BE:ED:3F:B1:98
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/vNP_I5PsMAFrbuL-fCVc_DAcuas.roa
Signing time: Fri 22 Aug 2025 08:48:44 +0000
ROA not before: Fri 22 Aug 2025 08:48:44 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 32242
IP address blocks: 103.140.232.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3772 (0xebc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0F7FB4302F21F301AB0EAFC5B80184BEED3FB198
Validity
Not Before: Aug 22 08:48:44 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=BCD3FF2393EC30016B6EE2FE7C255CFC301CB9AB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:b5:3a:9f:43:d2:a8:3c:99:bf:e5:51:13:85:
a4:78:61:8e:eb:e0:62:bd:a3:58:aa:b8:01:af:2c:
49:02:67:9e:ed:d2:62:70:be:63:b5:e6:30:df:f6:
1c:82:12:30:9f:fe:d1:55:e5:fb:11:91:84:53:b0:
fb:37:1d:b4:5a:7f:a2:f2:93:bd:d5:66:da:84:79:
37:57:c1:9a:c9:5b:f8:6b:73:96:c5:fa:81:b0:68:
52:c1:1e:67:de:ae:42:bb:21:5b:05:df:83:b5:4b:
c2:86:5d:99:bd:cc:67:03:98:ce:73:c2:69:54:65:
22:73:2c:62:f1:54:95:ac:3a:81:e9:6f:65:02:5c:
61:7d:e2:81:ac:08:ab:aa:f8:8f:9b:e8:1c:77:b5:
1b:bc:23:6b:f3:1f:12:70:c4:41:0f:59:a0:62:67:
5f:59:92:3f:f3:bf:bc:15:8e:0d:bb:3c:40:de:ee:
40:b5:3d:16:bf:93:17:a8:30:24:85:e0:6f:93:ad:
06:02:af:d1:d9:3d:e2:06:be:04:5f:27:f4:ac:4f:
3a:13:49:ff:26:99:03:53:49:ee:37:dc:cb:f2:6c:
f7:3e:b5:eb:ef:e9:3c:13:16:36:f3:21:62:c6:12:
a1:67:9a:5d:12:6f:ba:1b:07:42:9a:fd:b2:8b:68:
49:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D3:FF:23:93:EC:30:01:6B:6E:E2:FE:7C:25:5C:FC:30:1C:B9:AB
X509v3 Authority Key Identifier:
keyid:0F:7F:B4:30:2F:21:F3:01:AB:0E:AF:C5:B8:01:84:BE:ED:3F:B1:98
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/vNP_I5PsMAFrbuL-fCVc_DAcuas.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.140.232.0/24
Signature Algorithm: sha256WithRSAEncryption
53:53:9c:4b:55:f0:3b:e7:20:1d:32:67:cb:96:23:b3:c0:4e:
a7:38:d9:56:cf:0d:70:5f:be:e4:ec:68:91:81:37:a0:b3:81:
b9:fa:de:60:5e:ee:42:21:21:27:14:12:ae:fb:01:b5:06:e8:
14:87:9f:1b:dd:05:db:b5:cc:84:4f:4e:39:83:b6:cc:03:a7:
83:e0:c9:94:7a:09:b3:fa:d5:68:7a:60:09:58:79:91:a7:a0:
5a:89:7e:09:1e:9f:b3:b2:55:12:98:6d:c9:e9:0c:b5:dc:2c:
4a:9b:2b:e8:af:c6:19:61:05:03:e3:0f:34:03:54:8c:c7:6b:
4a:5d:09:88:52:e6:d7:68:f6:3d:30:9e:c3:af:bf:92:1b:f2:
a4:41:12:e8:d4:53:f6:b1:9a:d5:7d:4a:38:e0:6c:3e:b4:3e:
67:68:d3:42:9b:f8:94:6d:28:92:c6:e8:95:4f:ec:67:89:c0:
a1:a1:09:f2:df:56:7d:dd:49:de:ff:e7:19:97:5a:88:dc:fc:
90:f0:2a:d9:4c:2e:51:c2:87:bd:54:bd:77:f2:4b:87:76:1c:
1d:31:a8:86:38:25:9d:d3:c2:b5:71:e9:a8:53:b4:86:48:eb:
2f:84:e2:48:4a:fc:9c:91:12:06:88:3d:3e:25:12:aa:05:31:
28:1a:32:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:56:30 2025 by rpki-client