Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/rO8VMSfGcZaBoLD-HlLzCAht7_g.roa
File: rO8VMSfGcZaBoLD-HlLzCAht7_g.roa (raw, json)
Hash identifier: uxP/Za77hSiigfbWu7mlAY2l3M7WrKTwfhNsCu76SHs=
Subject key identifier: AC:EF:15:31:27:C6:71:96:81:A0:B0:FE:1E:52:F3:08:08:6D:EF:F8
Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Certificate serial: 0E5A
Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/rO8VMSfGcZaBoLD-HlLzCAht7_g.roa
Signing time: Fri 22 Aug 2025 08:56:25 +0000
ROA not before: Fri 22 Aug 2025 08:56:25 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 18419
IP address blocks: 2402:2580::/32 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3674 (0xe5a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3
Validity
Not Before: Aug 22 08:56:25 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=ACEF153127C6719681A0B0FE1E52F308086DEFF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:26:3c:72:cd:4f:37:a3:e4:1b:8a:c9:21:ef:
d9:47:13:4d:6e:2a:52:cc:26:45:7a:97:b8:11:be:
b7:b4:5a:5e:8a:32:6c:91:4d:c3:b2:a3:51:b5:a4:
1a:b5:42:5e:a5:6c:7a:7d:55:38:25:a0:6a:e4:8e:
84:62:d8:ee:44:30:2f:25:27:69:e1:6e:c0:ef:0c:
40:17:3f:31:54:ba:0d:70:91:96:6b:e8:b4:59:72:
95:21:ad:ba:ce:90:bf:f1:a6:7a:33:2b:08:24:9a:
cb:28:fb:71:ab:67:ba:04:31:a7:f0:6d:ac:1b:a2:
55:d6:e2:04:e5:05:a3:da:5a:60:c5:e7:2c:06:dd:
6b:69:f3:1e:dc:79:d3:aa:0a:b3:f7:f4:40:d2:a9:
e9:45:7a:74:3a:93:0e:93:05:2a:f1:26:58:b2:13:
31:62:fd:22:09:a3:2b:d4:56:a1:6a:f3:5c:e9:db:
12:1c:80:49:5f:34:df:fb:da:db:9e:38:11:62:39:
37:ea:51:40:1d:cd:3f:cc:1a:a2:d7:25:ae:df:99:
62:e6:47:63:7a:58:b1:82:67:ec:dd:9f:d8:30:bd:
b5:4c:d5:03:20:bd:54:c4:37:e1:29:dd:73:c3:12:
8b:6d:b8:6a:ea:0b:c4:22:b6:4c:f1:9e:94:19:9f:
2b:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:EF:15:31:27:C6:71:96:81:A0:B0:FE:1E:52:F3:08:08:6D:EF:F8
X509v3 Authority Key Identifier:
keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/rO8VMSfGcZaBoLD-HlLzCAht7_g.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:2580::/32
Signature Algorithm: sha256WithRSAEncryption
43:08:b6:31:78:0f:9c:97:78:c9:71:5c:f6:72:63:82:e7:f6:
a7:18:6d:e3:08:9c:22:1f:5c:4c:99:75:c0:49:93:e1:64:23:
32:fd:65:4d:8c:57:bd:94:22:b2:24:a6:16:df:56:cf:43:38:
08:5c:5a:55:8a:af:fc:0f:a4:49:00:93:30:3c:06:37:7e:fd:
45:ae:93:7e:b7:70:c2:bd:89:e5:3e:db:c2:e1:10:16:a2:8c:
e0:ed:2d:6c:1e:ff:a4:a5:48:18:c1:89:d1:a4:45:72:bc:4a:
8c:74:32:56:2b:2b:9c:c9:7d:ce:ea:07:a9:05:61:3b:56:f8:
ca:52:8a:f3:15:34:ce:e9:4f:44:60:ce:2c:98:4a:3d:f5:ac:
25:c9:d5:07:8a:cb:c6:64:37:5e:65:e4:ed:fb:12:3e:fa:cf:
87:d3:66:67:99:39:11:bc:8f:c4:7c:59:61:f5:a6:ed:6a:f0:
bf:02:54:cf:fe:b2:3e:66:47:f0:8e:1e:11:12:98:c0:14:8c:
a0:11:f8:87:af:14:25:9b:45:de:c8:5a:21:46:83:a2:e2:70:
10:47:73:97:a0:0d:df:06:5f:cb:71:0a:27:59:94:83:56:c7:
95:99:ac:aa:d4:8e:17:78:db:47:23:fb:fb:ae:20:c1:2f:78:
0c:16:ed:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:50:25 2025 by rpki-client