Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0EV9Waq_8Cf2qfNaIc6o1Ce1S7U.roa
File: 0EV9Waq_8Cf2qfNaIc6o1Ce1S7U.roa (raw, json)
Hash identifier: sYZtEfovuYI6eGXv2fre/IamCcA0mP3GieUs/1LghjE=
Subject key identifier: D0:45:7D:59:AA:BF:F0:27:F6:A9:F3:5A:21:CE:A8:D4:27:B5:4B:B5
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1475
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0EV9Waq_8Cf2qfNaIc6o1Ce1S7U.roa
Signing time: Fri 22 Aug 2025 08:51:32 +0000
ROA not before: Fri 22 Aug 2025 08:51:32 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 131644
IP address blocks: 101.101.101.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5237 (0x1475)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Aug 22 08:51:32 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=D0457D59AABFF027F6A9F35A21CEA8D427B54BB5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4c:a0:7b:93:2a:43:2c:d0:ab:16:64:d2:67:
69:ff:c9:26:db:05:29:4f:f8:cf:31:a5:ff:c2:e2:
70:fc:81:e7:dd:d0:78:0f:2e:27:87:73:30:0e:59:
86:60:fd:07:6c:55:6f:b7:e0:52:1f:ed:4f:3d:d6:
e4:ed:45:01:d9:97:ff:2d:70:25:9c:21:e9:72:da:
5e:14:bb:32:1d:18:0f:3b:56:2e:70:89:cb:f3:b2:
de:28:e1:74:6c:b8:ce:f5:db:31:5d:51:da:17:45:
fa:ad:34:41:64:d2:f4:a5:85:d3:c0:29:5a:d2:58:
a0:b6:97:2c:25:da:4b:05:4f:7a:07:a6:a4:4c:82:
da:70:76:94:17:5a:42:cd:29:f9:bd:16:45:cb:e8:
e2:62:ab:c1:19:0c:72:2e:ee:23:7b:12:9c:23:99:
fb:b9:71:11:bf:63:e1:b6:4c:35:85:b5:55:d0:64:
f2:2b:12:30:17:62:6a:a7:94:dd:fd:0e:05:e4:e9:
1f:1b:06:81:e9:7f:24:67:50:b0:b2:b3:4e:cd:78:
0f:2b:3d:a0:25:d8:e1:92:f2:c8:5b:71:37:76:dc:
4e:f1:b1:26:b4:02:bc:3d:55:0d:16:4f:1e:7b:4f:
d9:4f:03:d6:7d:49:60:ad:bf:9a:b1:77:d4:44:b0:
7b:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:45:7D:59:AA:BF:F0:27:F6:A9:F3:5A:21:CE:A8:D4:27:B5:4B:B5
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/0EV9Waq_8Cf2qfNaIc6o1Ce1S7U.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.101.101.0/24
Signature Algorithm: sha256WithRSAEncryption
ab:c0:c2:9f:bc:d4:9a:ea:4d:6d:19:f9:6d:85:94:d1:6b:fc:
49:22:e5:56:84:27:40:15:c6:62:36:76:4d:40:a2:e9:42:61:
5d:93:ac:f3:70:c2:1c:d1:9a:fa:1f:0f:41:38:8a:c9:1c:38:
4d:19:cc:5b:9f:84:86:6e:c3:32:13:cd:e4:5b:b0:c0:96:41:
26:4d:ba:78:15:ce:a6:bd:cb:80:15:83:05:61:15:a7:90:e6:
fe:0e:d6:a3:19:67:3e:51:05:55:e1:70:f5:2f:ff:97:e0:61:
0d:c5:ec:78:05:58:95:a1:cb:2a:cd:47:83:b4:00:8c:16:61:
59:c7:d2:4a:ab:8d:ea:a8:dc:06:cc:1b:21:ec:6d:67:96:08:
3c:09:fd:82:11:b2:2e:79:f3:e4:80:c9:82:7f:7a:74:0f:49:
a7:16:c9:32:b3:e2:c5:f4:0e:86:ec:b1:1a:a4:96:37:1d:ec:
e8:b8:83:18:3d:19:7b:cf:4c:4f:d6:12:9e:da:e1:32:7a:6a:
7e:60:9f:08:bc:5f:ee:e6:9c:b9:38:8f:d1:96:e5:ca:99:22:
00:e5:44:bc:8c:98:8f:cf:18:68:e4:0b:61:57:c6:fd:11:89:
2a:4d:25:62:f6:d5:c8:c6:db:b8:6b:fd:da:82:58:13:da:67:
03:5c:ad:49
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICFHUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB
OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNTA4MjIw
ODUxMzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQwNDU3RDU5QUFCRkYw
MjdGNkE5RjM1QTIxQ0VBOEQ0MjdCNTRCQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUTKB7kypDLNCrFmTSZ2n/ySbbBSlP+M8xpf/C4nD8gefd0HgP
LieHczAOWYZg/QdsVW+34FIf7U891uTtRQHZl/8tcCWcIely2l4UuzIdGA87Vi5w
icvzst4o4XRsuM712zFdUdoXRfqtNEFk0vSlhdPAKVrSWKC2lywl2ksFT3oHpqRM
gtpwdpQXWkLNKfm9FkXL6OJiq8EZDHIu7iN7Epwjmfu5cRG/Y+G2TDWFtVXQZPIr
EjAXYmqnlN39DgXk6R8bBoHpfyRnULCys07NeA8rPaAl2OGS8shbcTd23E7xsSa0
Arw9VQ0WTx57T9lPA9Z9SWCtv5qxd9REsHuFAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQU0EV9Waq/8Cf2qfNaIc6o1Ce1S7UwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0
p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv
MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy8wRVY5V2FxXzhDZjJxZk5hSWM2
bzFDZTFTN1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZWVl
MA0GCSqGSIb3DQEBCwUAA4IBAQCrwMKfvNSa6k1tGflthZTRa/xJIuVWhCdAFcZi
NnZNQKLpQmFdk6zzcMIc0Zr6Hw9BOIrJHDhNGcxbn4SGbsMyE83kW7DAlkEmTbp4
Fc6mvcuAFYMFYRWnkOb+DtajGWc+UQVV4XD1L/+X4GENxex4BViVocsqzUeDtACM
FmFZx9JKq43qqNwGzBsh7G1nlgg8Cf2CEbIuefPkgMmCf3p0D0mnFskys+LF9A6G
7LEapJY3HezouIMYPRl7z0xP1hKe2uEyemp+YJ8IvF/u5py5OI/RluXKmSIA5US8
jJiPzxho5AthV8b9EYkqTSVi9tXIxtu4a/3aglgT2mcDXK1J
-----END CERTIFICATE-----
Generated at Sun Aug 24 04:47:56 2025 by rpki-client