Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/AY_50U5vPMRrl8HUUZiPEYGKnto.roa
File: AY_50U5vPMRrl8HUUZiPEYGKnto.roa (raw, json)
Hash identifier: YyY5kyPyrcgvMnbVZJIfrN9oOpX8/EgZ0i89QU4P1aY=
Subject key identifier: 01:8F:F9:D1:4E:6F:3C:C4:6B:97:C1:D4:51:98:8F:11:81:8A:9E:DA
Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial: 1476
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/AY_50U5vPMRrl8HUUZiPEYGKnto.roa
Signing time: Fri 22 Aug 2025 08:51:32 +0000
ROA not before: Fri 22 Aug 2025 08:51:32 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 9311
IP address blocks: 203.119.94.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5238 (0x1476)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Validity
Not Before: Aug 22 08:51:32 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=018FF9D14E6F3CC46B97C1D451988F11818A9EDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d0:c2:92:43:85:3a:cb:31:d7:40:ff:eb:d4:
78:2b:a2:15:d4:f4:1c:4e:fd:ce:8a:90:80:22:08:
0f:3f:d0:cc:fd:4e:e8:15:6e:c5:54:33:a6:63:ba:
6c:b3:b0:43:d3:1e:73:a0:1a:e4:76:ba:49:27:b2:
1e:e7:92:52:f1:d5:0a:8d:1c:6c:fb:42:69:6d:12:
b1:4f:32:38:81:4e:f6:b5:87:04:d4:4d:a0:83:b4:
e0:97:77:48:0b:03:ae:8a:c8:ba:1c:42:47:2c:ed:
6d:fd:9b:98:9e:d2:c0:4d:74:ac:7b:28:a0:e1:4f:
bc:62:59:33:9b:8f:f4:b8:2e:0c:08:52:21:09:b6:
81:16:00:1e:f6:cc:62:83:58:0d:da:83:92:df:cd:
4c:e0:71:bc:e0:60:ca:db:e3:39:9c:9b:a0:c2:30:
32:f4:16:1a:9d:13:3e:2d:9c:ab:b2:d9:13:d3:e1:
3f:2d:e4:b8:19:a3:38:c2:3e:d2:21:1e:b5:d3:ef:
bf:e4:39:8c:3b:9c:89:28:3e:00:d9:8d:f6:6b:ed:
70:7d:4e:64:04:2d:02:3e:a5:9c:ae:bc:2f:87:7f:
5d:fe:d4:55:9e:6b:bc:8f:69:c7:91:50:5c:75:a0:
cf:16:83:76:3f:b0:70:15:f7:87:e8:f7:c3:e9:b5:
d0:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:8F:F9:D1:4E:6F:3C:C4:6B:97:C1:D4:51:98:8F:11:81:8A:9E:DA
X509v3 Authority Key Identifier:
keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/AY_50U5vPMRrl8HUUZiPEYGKnto.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
203.119.94.0/24
Signature Algorithm: sha256WithRSAEncryption
92:d9:b2:d3:a4:e4:2d:c5:f8:dd:d7:6a:77:26:ba:78:27:84:
2b:57:d7:ff:6d:fd:bf:5c:a5:76:a5:fb:0e:52:4a:11:e1:e5:
c0:08:28:fa:ee:9a:d8:82:32:66:c0:19:c3:d0:04:19:d2:6b:
64:68:1c:e0:53:af:88:95:7b:02:79:58:59:8f:28:a5:73:da:
38:9e:f3:44:bb:fc:af:12:c5:de:4a:06:ff:a6:85:19:1c:27:
13:38:75:64:25:8c:7c:0e:48:03:dd:8a:55:91:4a:7d:98:90:
00:7e:65:48:f3:bb:6b:8e:b7:e3:53:35:b3:6a:d5:88:26:80:
83:e6:0d:8e:f8:d7:f5:23:e2:23:b3:0c:e5:bd:3a:b2:21:3d:
39:ca:ed:d4:ef:1e:75:29:fc:e2:49:88:c6:92:7e:63:21:e7:
67:86:0e:be:ab:5a:9e:a2:48:ca:b3:db:37:8b:af:4c:99:33:
3b:a3:7e:bf:9b:c1:d1:55:bd:6d:45:cc:71:e9:e9:4b:d3:04:
4e:bb:cf:9c:18:24:a1:f0:2a:7c:48:fe:92:39:db:87:2a:f5:
6d:fa:a6:26:90:e1:10:f8:89:1e:17:ab:59:bf:eb:a9:13:c3:
8b:2a:8e:55:6a:92:fd:f9:bc:33:87:0c:46:c5:3c:c1:e2:62:
f1:ac:4f:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:50:08 2025 by rpki-client