Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/Gtqn1KuKIeNj9uvoBYZcPLXiGpg.roa
File: Gtqn1KuKIeNj9uvoBYZcPLXiGpg.roa (raw, json)
Hash identifier: 5tgJtvPZnn5R2ETtoUyEEB7Mw+nfcTBY+96Xd28Uxh0=
Subject key identifier: 1A:DA:A7:D4:AB:8A:21:E3:63:F6:EB:E8:05:86:5C:3C:B5:E2:1A:98
Certificate issuer: /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial: 0DED
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/Gtqn1KuKIeNj9uvoBYZcPLXiGpg.roa
Signing time: Fri 22 Aug 2025 08:52:11 +0000
ROA not before: Fri 22 Aug 2025 08:52:11 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 18018
IP address blocks: 122.255.94.64/26 maxlen: 26
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3565 (0xded)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Validity
Not Before: Aug 22 08:52:11 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=1ADAA7D4AB8A21E363F6EBE805865C3CB5E21A98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:91:48:8e:a1:bb:49:f8:71:d1:15:0f:58:bd:
fb:64:5a:2a:d3:2d:84:60:cf:7d:20:6f:2b:f3:60:
02:39:c2:d4:57:68:14:3e:04:e1:07:cb:04:ff:c9:
e1:f8:70:63:44:d1:0a:27:b1:38:e7:ae:94:8b:4c:
be:97:fa:3b:52:ec:c7:f1:15:7c:e1:39:c8:2b:44:
e5:ca:04:1b:a5:c5:ff:1c:67:69:b9:a7:64:77:f1:
50:b6:64:d1:2a:8f:af:80:23:6c:a5:3a:59:f0:16:
c8:d9:f3:6e:47:ed:55:d6:d1:84:4f:67:3b:a3:0a:
bc:f8:90:2d:d2:43:ca:a1:20:09:47:8f:00:56:ee:
a0:36:73:2e:d3:b0:24:b3:f0:f5:bb:3e:85:a5:77:
85:40:04:d5:a9:a5:d0:0a:62:9a:0c:84:85:95:2f:
25:c0:f1:1c:19:8f:6b:cd:2e:36:fc:eb:35:c9:9d:
b0:fc:fd:1c:f3:70:30:0b:b1:e3:6a:d8:07:0c:0b:
87:ba:ca:64:b1:09:5c:5f:61:b5:8b:04:32:95:51:
93:66:c3:b2:6b:8e:72:f1:53:77:0b:f1:92:c8:63:
ad:5f:54:d6:b1:14:cd:ee:f7:bb:a3:88:4c:05:1c:
d2:a7:e1:ba:15:9e:cb:fd:99:a9:d0:75:94:00:ce:
4f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:DA:A7:D4:AB:8A:21:E3:63:F6:EB:E8:05:86:5C:3C:B5:E2:1A:98
X509v3 Authority Key Identifier:
keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/Gtqn1KuKIeNj9uvoBYZcPLXiGpg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
122.255.94.64/26
Signature Algorithm: sha256WithRSAEncryption
a6:79:28:16:3c:2f:be:2e:0a:44:4f:29:4a:1e:68:25:16:bb:
42:27:9e:df:4a:48:6f:ad:91:f4:b3:1c:81:d8:b1:dd:81:6f:
b6:74:da:e3:78:6d:65:3e:3b:96:95:06:19:a4:06:42:5e:7e:
31:77:f1:87:75:8c:72:04:f9:f1:8a:6c:b2:6c:d2:3b:ea:1c:
64:5d:47:31:f9:dc:94:f8:9c:fe:b9:4d:0f:23:93:da:6a:f0:
84:0c:ae:c4:73:d8:b6:1a:a3:a5:56:99:8e:a0:99:ca:18:96:
7f:5f:9a:ab:a4:06:a6:84:df:ac:43:02:25:36:87:b9:a5:4b:
b2:c1:2b:74:ab:28:ee:f5:cb:d8:06:04:95:7f:20:9b:82:23:
a0:93:41:97:b7:96:dc:c9:bb:e7:4b:e9:29:0b:82:f0:c2:38:
de:a1:69:54:4f:24:83:a9:84:f8:9f:6a:3c:43:b6:22:28:73:
16:e2:d5:85:ab:41:9a:7a:46:82:43:af:bf:b0:18:09:42:2e:
da:bb:12:54:4a:b8:ff:58:ee:70:2f:3b:f1:0b:3c:37:aa:f9:
4e:c7:16:89:1f:39:66:1b:63:7e:3d:da:00:67:0a:25:d7:27:
92:f3:d0:7f:01:8c:c7:b3:92:68:c5:61:6f:3c:5f:9d:4d:b5:
5a:66:75:00
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICDe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy
Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yNTA4MjIw
ODUyMTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFBREFBN0Q0QUI4QTIx
RTM2M0Y2RUJFODA1ODY1QzNDQjVFMjFBOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCvkUiOobtJ+HHRFQ9YvftkWirTLYRgz30gbyvzYAI5wtRXaBQ+
BOEHywT/yeH4cGNE0QonsTjnrpSLTL6X+jtS7MfxFXzhOcgrROXKBBulxf8cZ2m5
p2R38VC2ZNEqj6+AI2ylOlnwFsjZ825H7VXW0YRPZzujCrz4kC3SQ8qhIAlHjwBW
7qA2cy7TsCSz8PW7PoWld4VABNWppdAKYpoMhIWVLyXA8RwZj2vNLjb86zXJnbD8
/RzzcDALseNq2AcMC4e6ymSxCVxfYbWLBDKVUZNmw7JrjnLxU3cL8ZLIY61fVNax
FM3u97ujiEwFHNKn4boVnsv9manQdZQAzk8zAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUGtqn1KuKIeNj9uvoBYZcPLXiGpgwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe
wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv
bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9HdHFuMUt1S0llTmo5dXZvQlla
Y1BMWGlHcGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUGev9e
QDANBgkqhkiG9w0BAQsFAAOCAQEApnkoFjwvvi4KRE8pSh5oJRa7Qiee30pIb62R
9LMcgdix3YFvtnTa43htZT47lpUGGaQGQl5+MXfxh3WMcgT58YpssmzSO+ocZF1H
MfnclPic/rlNDyOT2mrwhAyuxHPYthqjpVaZjqCZyhiWf1+aq6QGpoTfrEMCJTaH
uaVLssErdKso7vXL2AYElX8gm4IjoJNBl7eW3Mm750vpKQuC8MI43qFpVE8kg6mE
+J9qPEO2IihzFuLVhatBmnpGgkOvv7AYCUIu2rsSVEq4/1jucC878Qs8N6r5TscW
iR85Zhtjfj3aAGcKJdcnkvPQfwGMx7OSaMVhbzxfnU21WmZ1AA==
-----END CERTIFICATE-----
Generated at Mon Oct 20 22:53:08 2025 by rpki-client