Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/bi_TDVubJ9njomx5EkHYpLdeCa8.roa
File: bi_TDVubJ9njomx5EkHYpLdeCa8.roa (raw, json)
Hash identifier: DS7gFBCUdGBOKW8JeVI0o+OQfH3D+ozjXhDup8iSXDI=
Subject key identifier: 6E:2F:D3:0D:5B:9B:27:D9:E3:A2:6C:79:12:41:D8:A4:B7:5E:09:AF
Certificate issuer: /CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Certificate serial: 0D5F
Authority key identifier: 1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/bi_TDVubJ9njomx5EkHYpLdeCa8.roa
Signing time: Fri 22 Aug 2025 08:51:07 +0000
ROA not before: Fri 22 Aug 2025 08:51:07 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 9916
IP address blocks: 2001:f18::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3423 (0xd5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9
Validity
Not Before: Aug 22 08:51:07 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=6E2FD30D5B9B27D9E3A26C791241D8A4B75E09AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:61:28:f3:9f:f5:05:83:e1:da:f1:42:c8:0a:
ac:22:bf:5d:f5:47:ab:57:88:a3:91:be:9f:a6:bd:
ed:cb:87:cc:67:d3:bf:99:5e:d2:b3:38:fa:b7:4e:
8d:e6:9b:33:cd:f6:b4:68:c8:1d:62:16:64:d2:5c:
42:58:a2:ea:f2:bb:3f:aa:2c:51:f4:a6:fa:3e:8b:
34:bb:ba:b1:da:d4:f0:5d:a8:19:de:85:9d:89:f9:
30:ee:e1:c2:34:8b:12:e7:ab:01:ea:d5:a5:53:d5:
8d:71:ca:48:55:53:9e:d7:1f:b3:02:ad:fb:f8:d3:
97:11:cb:67:fd:bc:de:65:77:b1:53:0a:fc:45:96:
46:43:c4:2a:7e:5f:df:61:3c:41:59:ad:ba:61:68:
47:d9:fd:ae:bf:2b:45:61:31:78:42:cb:f4:b5:8d:
6f:25:60:3c:d9:32:20:ef:9e:60:9a:a5:f5:e9:0d:
c1:a5:b2:88:99:f9:75:74:33:c1:4f:42:4e:3d:66:
bd:52:0f:ab:a7:14:51:70:9e:2d:a9:48:66:4a:6b:
ec:17:5f:b1:01:a0:23:ad:68:74:d7:f7:bb:09:94:
d2:13:51:74:19:d7:64:ce:59:9b:01:8d:a3:ae:3c:
c1:5f:9b:90:90:aa:74:2a:f6:76:33:ea:93:26:6b:
a9:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:2F:D3:0D:5B:9B:27:D9:E3:A2:6C:79:12:41:D8:A4:B7:5E:09:AF
X509v3 Authority Key Identifier:
keyid:1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/bi_TDVubJ9njomx5EkHYpLdeCa8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:f18::/32
Signature Algorithm: sha256WithRSAEncryption
9e:aa:14:d3:62:5c:ec:4e:25:40:8c:ce:52:24:d6:f1:4b:4b:
69:83:19:97:75:75:4b:69:89:c7:a6:d9:51:58:7e:f4:8b:fd:
3a:4e:2b:d3:8a:5f:47:08:17:db:a5:49:cd:3e:78:ac:7f:a7:
20:41:67:18:c5:8c:0f:c1:45:f7:f7:8b:49:52:ee:05:02:76:
a3:0f:ff:5a:94:81:43:bc:9b:88:e9:d7:de:18:3f:4b:cb:a4:
a6:82:60:06:24:15:a9:9b:c8:c5:f3:67:b8:fb:b5:3c:e2:76:
ac:9c:e8:f0:89:aa:57:7c:d6:7c:5d:3e:0c:5f:4c:c2:2a:5e:
9e:e3:28:de:c2:0a:71:83:ab:a9:c2:da:a3:f6:c5:8a:54:ed:
35:4f:7e:89:f7:91:e4:0f:5c:5e:c0:ee:97:cc:80:ea:3d:01:
3f:55:13:fd:36:fa:ff:df:5c:73:cd:b9:d0:9d:e2:42:2f:c6:
63:71:47:86:b9:7e:ba:9d:33:b2:59:ca:17:a0:66:11:cc:27:
f2:c3:c6:88:1f:b0:4d:6f:93:27:45:54:84:36:dd:c9:44:41:
44:a7:85:2f:ea:32:1b:a9:3a:c4:47:15:1f:4a:78:eb:00:65:
04:2f:c2:e8:2b:15:62:44:ef:91:fa:cb:ba:eb:56:58:5c:b3:
18:22:d6:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:55:35 2025 by rpki-client