Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/_ho6VpD9bk82PTf645psnvBJ1MY.roa
File: _ho6VpD9bk82PTf645psnvBJ1MY.roa (raw, json)
Hash identifier: kdzYzMXEgkNlszY83k/4jbH2hsZfk5UR5ZiVY2W6SE8=
Subject key identifier: FE:1A:3A:56:90:FD:6E:4F:36:3D:37:FA:E3:9A:6C:9E:F0:49:D4:C6
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0E54
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/_ho6VpD9bk82PTf645psnvBJ1MY.roa
Signing time: Fri 22 Aug 2025 08:56:24 +0000
ROA not before: Fri 22 Aug 2025 08:56:24 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 4780
IP address blocks: 202.148.218.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3668 (0xe54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Aug 22 08:56:24 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=FE1A3A5690FD6E4F363D37FAE39A6C9EF049D4C6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:b5:13:71:ca:3b:3c:d2:9d:9e:cc:77:78:c7:
e3:27:d5:3e:c9:97:ff:58:b3:ea:f8:36:c9:49:20:
87:bc:04:37:40:dd:9f:76:ae:eb:c9:4f:24:ff:3a:
bb:46:51:39:c2:71:a2:7f:63:5e:59:09:c7:10:bf:
1b:01:b4:39:28:f0:d6:56:7c:9f:73:7c:4a:21:8a:
7d:93:b5:39:05:49:21:2c:a3:71:bf:9f:c5:b3:d2:
36:ee:b6:87:4c:e0:93:27:fe:e6:63:16:31:25:6f:
0a:08:87:d0:19:38:77:b5:f8:74:e3:ec:f6:c5:8a:
56:37:5d:34:b0:15:b4:bd:4a:37:d5:57:79:7d:e9:
4b:51:1a:11:d0:c2:fb:93:9a:de:a7:9d:41:37:7f:
3e:87:7f:8b:ee:91:8c:62:8f:e3:63:17:11:c5:fe:
94:73:8e:ce:12:61:bc:fd:4c:9c:bb:af:9d:a6:8f:
a1:41:52:c7:af:e1:d6:03:cb:0d:9e:34:24:cd:29:
9f:9f:b5:0f:c9:b4:92:73:b3:06:c9:ac:e6:d5:43:
1a:05:89:8b:10:b1:6d:e7:4c:4b:41:30:77:33:f6:
a9:44:57:71:9c:79:5b:9d:f9:69:ad:57:a2:13:53:
04:eb:ea:eb:4e:58:65:5f:38:36:e3:8a:5d:66:4d:
36:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:1A:3A:56:90:FD:6E:4F:36:3D:37:FA:E3:9A:6C:9E:F0:49:D4:C6
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/_ho6VpD9bk82PTf645psnvBJ1MY.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
202.148.218.0/23
Signature Algorithm: sha256WithRSAEncryption
00:3e:60:10:ce:99:bc:15:04:d8:41:29:a8:7a:44:8f:13:76:
24:29:68:b1:67:51:20:bb:9b:84:99:bf:33:37:e5:39:79:e3:
ae:73:24:ce:d9:1c:b4:66:06:d8:be:6e:e1:44:aa:15:2d:38:
43:94:ff:06:ae:0b:69:0d:18:c8:6b:eb:bf:0f:45:df:61:71:
ef:ab:0a:10:98:35:4d:4f:6d:a1:28:53:ca:a2:25:cc:1f:17:
fb:1e:77:2d:b4:65:bf:17:c1:2a:f2:16:8b:57:9e:5f:e4:fa:
e4:02:ee:0d:72:be:32:da:9f:b1:6a:4b:a6:12:2c:74:38:fc:
91:52:75:d7:40:e8:72:09:1f:38:1e:f9:94:d3:d8:d1:51:10:
2b:dc:55:67:74:00:78:0d:56:8d:3d:0e:4f:ab:25:72:78:59:
50:cc:dc:48:30:a9:b7:24:fe:5c:82:55:bb:f6:d5:c5:50:d5:
1b:c1:bd:3e:f9:33:33:42:93:61:2c:2e:e6:ca:0d:65:77:bd:
0f:96:4e:2d:7b:cb:c1:d5:81:ce:fb:e1:c6:8c:b7:78:87:4e:
a0:4d:7d:28:d6:82:dc:66:41:a3:d2:26:8e:26:05:02:50:a5:
eb:3a:e4:9d:04:d0:6e:c6:8d:6e:44:bb:ac:60:19:84:4f:86:
ce:73:61:21
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDlQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF
NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNTA4MjIw
ODU2MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZFMUEzQTU2OTBGRDZF
NEYzNjNEMzdGQUUzOUE2QzlFRjA0OUQ0QzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCctRNxyjs80p2ezHd4x+Mn1T7Jl/9Ys+r4NslJIIe8BDdA3Z92
ruvJTyT/OrtGUTnCcaJ/Y15ZCccQvxsBtDko8NZWfJ9zfEohin2TtTkFSSEso3G/
n8Wz0jbutodM4JMn/uZjFjElbwoIh9AZOHe1+HTj7PbFilY3XTSwFbS9SjfVV3l9
6UtRGhHQwvuTmt6nnUE3fz6Hf4vukYxij+NjFxHF/pRzjs4SYbz9TJy7r52mj6FB
Usev4dYDyw2eNCTNKZ+ftQ/JtJJzswbJrObVQxoFiYsQsW3nTEtBMHcz9qlEV3Gc
eVud+WmtV6ITUwTr6utOWGVfODbjil1mTTYvAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU/ho6VpD9bk82PTf645psnvBJ1MYwHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+
q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv
Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9faG82VnBEOWJrODJQVGY2NDVw
c252QkoxTVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBypTa
MA0GCSqGSIb3DQEBCwUAA4IBAQAAPmAQzpm8FQTYQSmoekSPE3YkKWixZ1Egu5uE
mb8zN+U5eeOucyTO2Ry0ZgbYvm7hRKoVLThDlP8GrgtpDRjIa+u/D0XfYXHvqwoQ
mDVNT22hKFPKoiXMHxf7HncttGW/F8Eq8haLV55f5PrkAu4Ncr4y2p+xakumEix0
OPyRUnXXQOhyCR84HvmU09jRURAr3FVndAB4DVaNPQ5PqyVyeFlQzNxIMKm3JP5c
glW79tXFUNUbwb0++TMzQpNhLC7myg1ld70Plk4te8vB1YHO++HGjLd4h06gTX0o
1oLcZkGj0iaOJgUCUKXrOuSdBNBuxo1uRLusYBmET4bOc2Eh
-----END CERTIFICATE-----
Generated at Mon Oct 20 22:43:19 2025 by rpki-client