Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/qptbKXIDgniH29W-VrxkH_CJfPU.roa
File: qptbKXIDgniH29W-VrxkH_CJfPU.roa (raw, json)
Hash identifier: ZY6c1Eo/cAQYh7y9rC5t1DM/IcHwpSL87cqDArNLpqc=
Subject key identifier: AA:9B:5B:29:72:03:82:78:87:DB:D5:BE:56:BC:64:1F:F0:89:7C:F5
Certificate issuer: /CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Certificate serial: 07A3
Authority key identifier: B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/qptbKXIDgniH29W-VrxkH_CJfPU.roa
Signing time: Fri 22 Aug 2025 08:55:16 +0000
ROA not before: Fri 22 Aug 2025 08:55:16 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 9678
IP address blocks: 103.152.151.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1955 (0x7a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B2839BF7A6C6B17E7CFCB3734A36C0E98C37A1B7
Validity
Not Before: Aug 22 08:55:16 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=AA9B5B297203827887DBD5BE56BC641FF0897CF5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:16:85:b8:68:4f:f2:25:02:7d:29:e5:5a:dc:
9d:a6:ed:6a:73:0c:42:42:d2:41:35:40:08:7b:5d:
70:f1:31:bb:68:82:33:52:54:8f:f4:4f:81:8e:55:
a1:b4:62:63:72:c7:8b:4f:93:d3:7a:8e:69:16:39:
e6:25:31:8c:e7:4c:97:94:91:93:5e:01:c6:ae:10:
55:a5:fd:e7:e6:1a:32:66:de:f1:d5:0d:20:45:c3:
d6:7b:ba:8c:b6:dc:da:16:df:20:e5:db:bd:8c:89:
e1:05:96:a8:f0:2d:48:89:e6:75:cb:cf:e9:fa:fd:
64:a4:84:fb:bb:de:09:c9:8a:bb:68:f2:af:86:07:
40:db:e3:e7:bc:0e:56:fe:a1:ce:ba:70:90:5f:81:
36:b9:3e:d9:11:ca:48:67:c1:16:23:b5:b0:1a:07:
42:ef:e6:79:50:6e:35:7c:8e:61:6d:d3:09:09:b2:
dd:4a:16:76:0b:cb:4b:52:88:81:8b:ce:eb:3e:49:
41:6e:e6:9e:25:0d:42:94:4a:dd:7b:13:19:80:c7:
86:7a:6d:b7:66:ce:06:7c:6c:14:ad:59:5c:9f:f9:
dd:08:b6:f9:9f:6b:ea:56:b1:74:f7:be:b7:a5:fd:
0c:00:fe:94:c6:0d:ee:da:ef:b9:b9:9f:6b:fd:d3:
04:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:9B:5B:29:72:03:82:78:87:DB:D5:BE:56:BC:64:1F:F0:89:7C:F5
X509v3 Authority Key Identifier:
keyid:B2:83:9B:F7:A6:C6:B1:7E:7C:FC:B3:73:4A:36:C0:E9:8C:37:A1:B7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/soOb96bGsX58_LNzSjbA6Yw3obc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/soOb96bGsX58_LNzSjbA6Yw3obc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SUMATRA/qptbKXIDgniH29W-VrxkH_CJfPU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.152.151.0/24
Signature Algorithm: sha256WithRSAEncryption
96:0c:38:75:7f:56:0e:c6:e1:4a:21:cb:71:7e:af:b8:1f:5a:
d7:f6:5c:f5:1e:78:31:5c:9d:05:7f:68:e6:26:cb:15:f8:ea:
6d:7b:65:67:e8:8e:61:df:19:79:8e:4b:69:d5:a0:cd:c3:e7:
57:2d:9c:3e:49:e9:05:91:e7:e9:e4:4f:7a:e0:19:23:b6:18:
8a:8f:07:07:13:aa:d9:65:11:62:4d:85:3c:f6:3d:b3:2f:74:
cf:22:6b:85:ed:3a:f1:04:c4:49:3f:3d:71:d2:53:b0:70:83:
16:3d:5b:b0:4e:b6:9d:7d:30:3c:a5:a6:55:0b:b1:a3:21:fb:
af:17:d3:da:09:8a:0a:f8:6b:37:b4:86:13:40:f8:08:3a:1c:
43:1a:29:1c:12:7c:0d:11:34:37:fe:d0:00:ed:24:1b:b7:1d:
c1:71:4e:f0:95:f9:a2:68:7e:4b:3a:66:e0:10:ec:dc:ac:bc:
bd:a7:17:9c:33:bd:37:85:77:ec:61:9d:ed:a6:d2:2b:ac:62:
99:28:f6:60:37:5f:b1:cb:8e:0f:35:70:b6:45:34:28:17:fe:
72:56:9b:52:b1:30:e2:39:ad:6f:ab:5a:13:6a:15:7b:cf:3d:
4a:d1:53:0a:26:db:1d:32:24:92:8f:90:ef:34:ce:c4:0d:d3:
68:41:b4:69
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICB6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjI4
MzlCRjdBNkM2QjE3RTdDRkNCMzczNEEzNkMwRTk4QzM3QTFCNzAeFw0yNTA4MjIw
ODU1MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEFBOUI1QjI5NzIwMzgy
Nzg4N0RCRDVCRTU2QkM2NDFGRjA4OTdDRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCgFoW4aE/yJQJ9KeVa3J2m7WpzDEJC0kE1QAh7XXDxMbtogjNS
VI/0T4GOVaG0YmNyx4tPk9N6jmkWOeYlMYznTJeUkZNeAcauEFWl/efmGjJm3vHV
DSBFw9Z7uoy23NoW3yDl272MieEFlqjwLUiJ5nXLz+n6/WSkhPu73gnJirto8q+G
B0Db4+e8Dlb+oc66cJBfgTa5PtkRykhnwRYjtbAaB0Lv5nlQbjV8jmFt0wkJst1K
FnYLy0tSiIGLzus+SUFu5p4lDUKUSt17ExmAx4Z6bbdmzgZ8bBStWVyf+d0Itvmf
a+pWsXT3vrel/QwA/pTGDe7a77m5n2v90wTvAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQUqptbKXIDgniH29W+VrxkH/CJfPUwHwYDVR0jBBgwFoAUsoOb96bGsX58/LNz
SjbA6Yw3obcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1VNQVRS
QS9zb09iOTZiR3NYNThfTE56U2piQTZZdzNvYmMuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL3NvT2I5NmJHc1g1OF9MTnpTamJBNll3M29iYy5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NVTUFUUkEvcXB0YktYSURnbmlIMjlX
LVZyeGtIX0NKZlBVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
AGeYlzANBgkqhkiG9w0BAQsFAAOCAQEAlgw4dX9WDsbhSiHLcX6vuB9a1/Zc9R54
MVydBX9o5ibLFfjqbXtlZ+iOYd8ZeY5LadWgzcPnVy2cPknpBZHn6eRPeuAZI7YY
io8HBxOq2WURYk2FPPY9sy90zyJrhe068QTEST89cdJTsHCDFj1bsE62nX0wPKWm
VQuxoyH7rxfT2gmKCvhrN7SGE0D4CDocQxopHBJ8DRE0N/7QAO0kG7cdwXFO8JX5
omh+Szpm4BDs3Ky8vacXnDO9N4V37GGd7abSK6ximSj2YDdfscuODzVwtkU0KBf+
clabUrEw4jmtb6taE2oVe889StFTCibbHTIkko+Q7zTOxA3TaEG0aQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 22:57:44 2025 by rpki-client