Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/qjjaA7Kim5xbaYpSwhM9kvA9sGs.roa
File: qjjaA7Kim5xbaYpSwhM9kvA9sGs.roa (raw, json)
Hash identifier: vuoLMq0AQgEE5kEB2qsd6E/WNx9pIokbjCDd7Y1Fv1c=
Subject key identifier: AA:38:DA:03:B2:A2:9B:9C:5B:69:8A:52:C2:13:3D:92:F0:3D:B0:6B
Certificate issuer: /CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Certificate serial: 0DD1
Authority key identifier: 39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/qjjaA7Kim5xbaYpSwhM9kvA9sGs.roa
Signing time: Fri 22 Aug 2025 08:55:22 +0000
ROA not before: Fri 22 Aug 2025 08:55:22 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 18419
IP address blocks: 103.130.96.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3537 (0xdd1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=390A0412F8B5EC4F3F9FDBB3A61270DBD0EA9E6B
Validity
Not Before: Aug 22 08:55:22 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=AA38DA03B2A29B9C5B698A52C2133D92F03DB06B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:55:b9:7c:74:52:4c:87:8f:a0:b1:17:52:93:
76:3c:ae:d5:4e:0a:57:91:b3:39:85:4e:ae:86:5d:
e4:8c:b7:01:cb:c8:0e:1f:ba:8e:dd:e1:af:4f:c3:
ba:80:e4:bc:fa:6a:cb:bf:47:5b:6e:39:6a:ea:c4:
cd:4f:a1:4a:59:a2:17:d7:15:65:75:3a:04:df:86:
af:06:2b:df:b4:72:79:d2:a7:9e:b0:52:b6:e4:ab:
5a:71:41:bb:dd:03:64:aa:81:17:d5:c3:08:74:e6:
92:ae:1b:31:e5:fd:31:19:0b:94:82:05:8d:04:73:
0f:10:bf:8c:c8:ef:0f:51:c3:99:c9:99:b5:ff:fe:
c2:eb:d3:b7:77:49:7e:1d:b8:05:f5:3d:98:24:86:
a3:e0:94:73:0d:94:23:39:26:67:b7:f9:75:1d:53:
dc:4c:9a:84:27:9e:fe:c4:c8:49:50:dd:bc:ef:64:
cc:0f:41:2d:29:90:00:1f:34:ea:08:c5:7e:61:25:
fa:74:7f:ac:3c:4f:64:fa:2a:8c:90:14:52:98:c4:
96:0a:d1:fc:da:4b:9d:97:fc:e3:d5:2d:e0:7e:7a:
6a:fd:30:a2:ad:ae:61:cb:21:ba:76:3c:e7:78:e7:
1e:45:bc:8b:fb:95:50:13:44:ad:73:44:34:b1:ea:
38:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:38:DA:03:B2:A2:9B:9C:5B:69:8A:52:C2:13:3D:92:F0:3D:B0:6B
X509v3 Authority Key Identifier:
keyid:39:0A:04:12:F8:B5:EC:4F:3F:9F:DB:B3:A6:12:70:DB:D0:EA:9E:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/OQoEEvi17E8_n9uzphJw29Dqnms.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OQoEEvi17E8_n9uzphJw29Dqnms.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UNIGATE/qjjaA7Kim5xbaYpSwhM9kvA9sGs.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.130.96.0/22
Signature Algorithm: sha256WithRSAEncryption
84:5a:cd:b0:41:74:ac:7e:9e:38:21:1f:77:ac:01:11:d8:58:
ac:ef:f6:08:c0:7a:28:3c:62:fc:c8:6c:f2:78:37:7e:b0:3b:
20:19:7b:02:02:f4:f0:6c:8f:11:d5:1d:25:fd:dc:c4:24:c0:
bc:59:e3:4b:c6:9c:0b:b2:97:4a:15:e4:ad:e5:92:57:66:03:
5b:56:9d:fe:bb:9c:d0:0e:70:a0:63:30:b9:7c:16:d3:13:aa:
b7:e5:fd:74:80:dc:ca:eb:b1:5e:52:b2:64:bf:7b:c0:d2:04:
d7:da:25:d1:79:6e:80:4c:e5:d4:5f:ee:cc:45:56:e9:10:b8:
fd:7a:54:dd:b1:84:cb:78:61:f4:0b:26:2b:c0:ce:8b:b8:d3:
23:3c:d0:1e:d2:86:01:1b:39:b9:f3:5a:b1:89:c8:ce:f9:c9:
a3:da:0f:9c:21:68:36:67:f4:f8:80:5f:f5:68:ee:81:dc:a9:
02:6e:e7:ed:49:67:b2:1e:3a:71:ac:e2:2d:35:88:2c:38:d6:
a7:8f:a2:0b:7c:7a:15:29:f4:c1:3e:87:02:7c:a4:64:1b:da:
ff:ad:a9:93:a6:91:9c:20:35:f8:86:ad:54:9a:04:aa:2e:e8:
a9:a7:bb:e1:0d:44:22:73:ee:f5:9f:e4:3a:c8:a6:64:97:d3:
97:ef:fc:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:52:46 2025 by rpki-client