Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/ywiNVIZ1QQ4bfkFXC-tAivsHjzI.roa
File: ywiNVIZ1QQ4bfkFXC-tAivsHjzI.roa (raw, json)
Hash identifier: Q9oQftJcQcvSuPxuHL/R+AP9rCVRyQWOrSl1DN5ds9g=
Subject key identifier: CB:08:8D:54:86:75:41:0E:1B:7E:41:57:0B:EB:40:8A:FB:07:8F:32
Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Certificate serial: 0DCE
Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/ywiNVIZ1QQ4bfkFXC-tAivsHjzI.roa
Signing time: Fri 22 Aug 2025 08:51:43 +0000
ROA not before: Fri 22 Aug 2025 08:51:43 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 131593
IP address blocks: 43.251.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3534 (0xdce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2
Validity
Not Before: Aug 22 08:51:43 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=CB088D548675410E1B7E41570BEB408AFB078F32
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:08:bb:cf:29:e5:51:ee:63:09:19:60:de:92:
d4:74:0c:8f:4d:47:96:ed:86:de:59:df:40:18:24:
0d:73:da:44:42:4d:8f:09:a7:0a:a6:d8:db:df:41:
fe:81:d4:89:57:7c:ff:7e:a8:c7:56:05:e2:e0:a7:
6e:33:b6:11:4e:04:f5:91:e4:ca:20:59:e1:2a:f1:
93:61:ac:b4:54:4a:0d:cc:59:ab:70:c5:52:08:bf:
be:c8:eb:5b:e3:fa:c3:93:0c:04:9e:42:f0:cf:df:
3f:84:0c:e8:00:44:7b:3d:0b:53:4e:24:78:7e:5d:
2c:14:50:77:1d:5d:e0:19:c0:ad:67:bd:bd:9b:8b:
50:d1:31:d5:ca:b3:ed:77:3e:12:1b:cf:24:8a:9c:
1d:12:37:6d:69:8a:aa:32:d1:3d:8b:ec:6b:da:20:
3c:2f:7e:76:4a:75:fb:e0:75:5f:0b:ee:cd:d6:bc:
da:17:26:11:59:35:47:92:3e:29:a0:5c:c7:f5:8e:
61:65:89:a0:e5:65:a2:b3:de:96:b4:d6:48:15:9d:
f4:07:ce:84:70:49:2a:6c:38:f0:10:96:e9:10:e8:
8d:6c:fe:1f:48:8f:3e:d9:dd:a9:16:4b:f4:f8:16:
c2:5c:df:8e:b6:33:c2:1a:77:5f:67:95:18:2f:b5:
52:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:08:8D:54:86:75:41:0E:1B:7E:41:57:0B:EB:40:8A:FB:07:8F:32
X509v3 Authority Key Identifier:
keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/ywiNVIZ1QQ4bfkFXC-tAivsHjzI.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
43.251.61.0/24
Signature Algorithm: sha256WithRSAEncryption
49:5d:db:39:df:2d:f2:1e:ea:24:92:c5:ab:53:d3:bb:71:3c:
a1:0c:7c:48:52:57:13:20:3a:81:c4:8c:6d:10:d3:fc:4f:09:
e0:2c:1b:b1:59:58:19:1e:17:f9:3e:9d:b2:2a:28:24:f8:5e:
59:d8:4a:db:10:c4:85:4a:a5:af:29:60:45:ae:dc:b3:be:54:
ac:a0:76:65:b0:48:7f:74:79:be:64:08:5c:df:12:63:99:51:
6b:66:7f:ee:dd:43:b0:ca:bd:3d:c7:4f:29:3c:dd:60:7e:1b:
3e:7f:46:b9:c9:60:fb:e8:ea:4e:f9:52:7e:7a:38:ad:60:58:
e0:7d:14:6f:c4:aa:12:13:0c:a6:0f:da:5d:62:27:8c:7f:93:
8a:e0:b6:1c:b9:3f:34:6c:bb:07:fd:25:b9:be:a4:80:91:e8:
a4:2f:d2:a5:e1:99:5a:42:4c:95:1f:12:45:a1:46:c0:53:66:
40:73:d1:bf:10:a7:39:83:1c:c1:6b:f4:7f:0c:fb:77:4f:9d:
0e:29:c8:48:22:cc:b9:85:02:2f:7f:7d:96:65:73:e8:fb:6f:
ae:31:60:63:05:9e:b1:13:c6:1b:64:b6:62:cb:34:95:b5:fa:
1e:6b:71:e8:e8:63:73:00:ad:1d:0d:84:42:df:f2:9d:6f:c3:
1e:6e:55:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:44:10 2025 by rpki-client