Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/J0pWNyrCWIY5k8mT7IBIHZfpIjs.roa
File: J0pWNyrCWIY5k8mT7IBIHZfpIjs.roa (raw, json)
Hash identifier: WEYg+S9Vq+N0Tlw4O8T7f46l6ys1QRnoL/fR7I/cM2A=
Subject key identifier: 27:4A:56:37:2A:C2:58:86:39:93:C9:93:EC:80:48:1D:97:E9:22:3B
Certificate issuer: /CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Certificate serial: 0D5E
Authority key identifier: 1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/J0pWNyrCWIY5k8mT7IBIHZfpIjs.roa
Signing time: Fri 22 Aug 2025 08:51:06 +0000
ROA not before: Fri 22 Aug 2025 08:51:06 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 18185
IP address blocks: 211.76.240.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3422 (0xd5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Validity
Not Before: Aug 22 08:51:06 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=274A56372AC258863993C993EC80481D97E9223B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:b7:6c:28:a5:1a:35:7e:7d:00:f2:47:2e:25:
b6:e5:1c:0b:cb:65:51:42:7d:9f:79:8d:a3:ff:62:
f6:03:b5:be:3f:37:26:b5:70:65:0b:5b:1a:a4:b0:
1a:7e:f8:19:09:a4:d5:32:05:ee:bb:6f:62:6f:0c:
ce:d7:82:60:f3:5f:44:4d:2d:df:09:9e:5b:15:8f:
28:47:8b:97:a0:d5:63:8d:2c:da:0f:ff:95:16:0c:
82:9c:64:cc:e8:ba:6b:94:4a:fb:a2:d3:68:2a:4a:
60:63:8d:ca:f4:0d:25:72:9b:6c:12:9e:12:a6:41:
0e:ec:db:db:99:23:fd:b7:a4:52:ee:e7:0b:b0:73:
82:cc:06:00:cf:09:b1:78:36:1e:6a:b7:2c:d5:8e:
54:f2:24:5c:d2:66:de:49:d9:82:57:0c:e5:99:15:
20:57:f4:23:30:48:a7:7b:b9:8e:1f:3e:95:a6:53:
ae:63:63:66:33:1d:46:22:41:ff:ac:b4:23:5e:2c:
ab:44:49:f9:64:a0:67:28:e7:86:f2:f4:07:ec:0c:
71:30:f7:d4:c9:31:9f:bd:2f:68:66:86:f4:cd:79:
7c:c9:0b:04:ff:ee:05:e5:dd:d5:d0:2b:c0:fd:58:
dd:22:89:d9:7a:ff:eb:a1:8a:b9:42:b2:91:61:2a:
31:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:4A:56:37:2A:C2:58:86:39:93:C9:93:EC:80:48:1D:97:E9:22:3B
X509v3 Authority Key Identifier:
keyid:1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/J0pWNyrCWIY5k8mT7IBIHZfpIjs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
211.76.240.0/20
Signature Algorithm: sha256WithRSAEncryption
86:95:03:0f:e6:be:86:09:e5:74:cc:bd:3a:57:12:cb:0a:7a:
63:9e:d2:ff:0a:5f:ed:c0:a9:fe:01:01:a7:ef:53:b7:0b:93:
43:b8:d8:d2:14:6b:c4:9e:c9:4a:b1:e5:72:66:0c:76:06:10:
56:54:ae:18:0d:05:bc:a8:84:d8:69:6f:d9:69:78:51:fb:20:
d5:65:ef:49:cd:8d:dc:64:e2:2c:79:be:11:50:68:7e:d0:85:
f4:e5:7d:ec:ec:04:97:62:ae:99:31:83:a1:e6:41:22:2e:50:
30:8b:ea:0f:18:44:bc:e2:4f:40:b1:1d:f8:9c:02:0d:e2:9f:
9d:66:ca:02:d6:05:05:8a:16:3b:d7:ea:82:51:c8:59:06:1a:
b2:ea:38:bd:f5:00:69:7b:25:9f:3c:64:58:ba:69:9f:27:e1:
ee:b9:2f:1b:cd:28:ce:d3:1a:09:09:68:59:ee:5d:e5:a9:24:
ca:93:fb:6b:19:02:53:bc:2f:90:71:41:40:3c:86:de:9d:5c:
c8:d7:c0:a5:85:a8:15:da:c6:1d:48:52:68:5a:66:44:46:82:
8f:c2:fa:ac:9e:1d:db:7b:fc:c4:cc:67:65:04:4a:50:b7:a5:
89:06:c4:8d:50:4f:f5:60:15:5d:a5:43:44:37:73:1a:07:85:
1b:14:20:bd
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICDV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ5
MkJFMEFDRjk4ODdCMUE4MTkyODc1Q0ZFNzMyMjM4REUzMjJBOTAeFw0yNTA4MjIw
ODUxMDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI3NEE1NjM3MkFDMjU4
ODYzOTkzQzk5M0VDODA0ODFEOTdFOTIyM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC0t2wopRo1fn0A8kcuJbblHAvLZVFCfZ95jaP/YvYDtb4/Nya1
cGULWxqksBp++BkJpNUyBe67b2JvDM7XgmDzX0RNLd8JnlsVjyhHi5eg1WONLNoP
/5UWDIKcZMzoumuUSvui02gqSmBjjcr0DSVym2wSnhKmQQ7s29uZI/23pFLu5wuw
c4LMBgDPCbF4Nh5qtyzVjlTyJFzSZt5J2YJXDOWZFSBX9CMwSKd7uY4fPpWmU65j
Y2YzHUYiQf+stCNeLKtESflkoGco54by9AfsDHEw99TJMZ+9L2hmhvTNeXzJCwT/
7gXl3dXQK8D9WN0iidl6/+uhirlCspFhKjEzAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUJ0pWNyrCWIY5k8mT7IBIHZfpIjswHwYDVR0jBBgwFoAUHZK+Cs+Yh7GoGSh1
z+cyI43jIqkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOQ1RV
L0haSy1Dcy1ZaDdHb0dTaDF6LWN5STQzaklxay5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvSFpLLUNzLVloN0dvR1NoMXotY3lJNDNqSXFrLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOQ1RVL0owcFdOeXJDV0lZNWs4bVQ3
SUJJSFpmcElqcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATT
TPAwDQYJKoZIhvcNAQELBQADggEBAIaVAw/mvoYJ5XTMvTpXEssKemOe0v8KX+3A
qf4BAafvU7cLk0O42NIUa8SeyUqx5XJmDHYGEFZUrhgNBbyohNhpb9lpeFH7INVl
70nNjdxk4ix5vhFQaH7QhfTlfezsBJdirpkxg6HmQSIuUDCL6g8YRLziT0CxHfic
Ag3in51mygLWBQWKFjvX6oJRyFkGGrLqOL31AGl7JZ88ZFi6aZ8n4e65LxvNKM7T
GgkJaFnuXeWpJMqT+2sZAlO8L5BxQUA8ht6dXMjXwKWFqBXaxh1IUmhaZkRGgo/C
+qyeHdt7/MTMZ2UESlC3pYkGxI1QT/VgFV2lQ0Q3cxoHhRsUIL0=
-----END CERTIFICATE-----
Generated at Mon Oct 20 22:44:02 2025 by rpki-client