Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAELW/plN6TlQMP3qTM5WBPlFYzO6YRCE.roa
File: plN6TlQMP3qTM5WBPlFYzO6YRCE.roa (raw, json)
Hash identifier: oXn5+/wl8H3Ceea5XWKI+xNM2/t6MEJx6Sg2hKc5Oaw=
Subject key identifier: A6:53:7A:4E:54:0C:3F:7A:93:33:95:81:3E:51:58:CC:EE:98:44:21
Certificate issuer: /CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7
Certificate serial: 0197
Authority key identifier: 43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/plN6TlQMP3qTM5WBPlFYzO6YRCE.roa
Signing time: Fri 22 Aug 2025 08:50:01 +0000
ROA not before: Fri 22 Aug 2025 08:50:01 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 152610
IP address blocks: 160.19.91.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 407 (0x197)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7
Validity
Not Before: Aug 22 08:50:01 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=A6537A4E540C3F7A933395813E5158CCEE984421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:c5:84:8e:36:44:4d:98:15:51:04:94:c7:0b:
7b:59:a2:b4:45:23:65:b8:80:b4:12:2e:5f:8b:8b:
5b:ba:2e:7f:2c:84:de:f2:70:d9:d2:a7:45:f4:26:
bc:ab:48:00:1b:8e:f8:fb:40:6a:ef:68:05:c2:0a:
89:76:1d:f9:54:08:27:8f:f8:7a:f3:44:4c:f5:19:
69:02:04:69:be:8e:90:b0:24:8e:72:f8:aa:5d:83:
8b:32:2e:0f:ba:7a:32:4a:50:4e:99:95:b3:17:ba:
2b:2e:ae:8c:9a:59:b3:36:59:c2:0d:b0:cb:c2:99:
0f:4f:ec:19:61:d7:e1:44:fc:e4:9b:7e:f1:d4:3b:
21:08:8f:ec:ad:c3:da:3b:3c:f7:ad:ee:d8:4e:ef:
a8:65:0f:15:76:51:d9:87:b7:4d:3d:c3:ad:1d:03:
b4:ea:71:0f:a8:b1:52:0a:03:8a:a4:ec:87:42:63:
22:4e:02:c7:94:14:de:68:ca:e0:b9:76:f2:25:c7:
29:94:7f:dd:c0:40:b5:2a:9c:9d:d5:14:35:d2:a3:
0d:1c:4a:3f:6d:e8:e8:f9:bf:1f:4a:7a:f1:f7:1b:
0b:93:ce:61:c2:71:31:18:00:1e:ca:4c:cf:0f:40:
c7:f2:bf:b5:e0:00:44:90:8c:db:db:ec:43:fd:1d:
56:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:53:7A:4E:54:0C:3F:7A:93:33:95:81:3E:51:58:CC:EE:98:44:21
X509v3 Authority Key Identifier:
keyid:43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/plN6TlQMP3qTM5WBPlFYzO6YRCE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
160.19.91.0/24
Signature Algorithm: sha256WithRSAEncryption
8f:21:da:f0:51:d5:56:38:1a:0b:61:90:bd:d4:71:62:2f:42:
c8:bf:c7:cc:ed:fd:b5:3c:01:df:80:91:b3:13:64:9c:a3:d0:
83:25:e6:e1:8d:71:43:99:83:c9:25:70:50:25:12:11:ea:5c:
0a:49:df:50:1d:70:4f:04:ec:58:c6:88:fd:28:ad:9b:78:2a:
cc:da:08:5e:bb:b1:5a:4e:90:55:7d:53:cc:d0:90:e1:f7:39:
be:f6:67:0e:71:6d:e4:21:e7:f9:6e:f4:a8:a1:9c:30:32:d1:
b7:c0:66:a8:f6:4a:0e:d9:e0:d3:4e:4d:23:53:b6:36:a3:96:
e2:45:4b:e9:b4:2e:10:36:9a:19:53:4c:f7:98:8d:f1:39:04:
ba:af:4f:a6:1d:89:c0:68:5a:da:39:e3:05:66:c5:cd:38:b4:
35:dd:59:7e:2a:64:7c:93:bf:9f:2c:69:ac:08:55:60:c4:e3:
3a:f5:f0:e8:5d:2c:7f:1c:ba:f1:b2:27:4c:a9:fc:34:63:59:
d0:ef:f9:53:61:d7:75:3c:fc:08:d3:31:f3:89:6c:d3:f1:0b:
b8:8e:48:5c:94:ef:b6:fa:ba:b0:9f:57:35:59:59:15:91:ad:
94:64:71:e8:3d:22:87:ef:81:4e:c8:c3:9b:b9:4f:1d:77:b5:
96:1b:ce:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:55:42 2025 by rpki-client