Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WDKING/KEepUPOtKpSzgCa7uYgeZyw3Sv8.roa
File: KEepUPOtKpSzgCa7uYgeZyw3Sv8.roa (raw, json)
Hash identifier: v3z6Wl7JlvGLdFH29HG8oyarKG8P4gnltYpIP1YNO6o=
Subject key identifier: 28:47:A9:50:F3:AD:2A:94:B3:80:26:BB:B9:88:1E:67:2C:37:4A:FF
Certificate issuer: /CN=5CED7FEDF0EC0C7545594CF6E15D9BDEE79651B9
Certificate serial: 022A
Authority key identifier: 5C:ED:7F:ED:F0:EC:0C:75:45:59:4C:F6:E1:5D:9B:DE:E7:96:51:B9
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XO1_7fDsDHVFWUz24V2b3ueWUbk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WDKING/KEepUPOtKpSzgCa7uYgeZyw3Sv8.roa
Signing time: Fri 22 Aug 2025 08:44:02 +0000
ROA not before: Fri 22 Aug 2025 08:44:02 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 150754
IP address blocks: 103.67.72.0/23 maxlen: 23
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 554 (0x22a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5CED7FEDF0EC0C7545594CF6E15D9BDEE79651B9
Validity
Not Before: Aug 22 08:44:02 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=2847A950F3AD2A94B38026BBB9881E672C374AFF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:e5:35:f7:ad:98:54:c5:bc:d3:8f:b0:bd:44:
73:1a:f5:24:f9:a4:68:02:7d:d2:ed:28:f0:ae:ba:
45:24:43:a1:e5:46:2d:0f:0e:b4:55:10:25:c0:9a:
25:f6:10:4e:d8:c0:a1:c9:46:79:a1:1b:92:fd:5a:
a5:10:84:3f:28:21:40:d8:be:a6:24:4e:4b:09:db:
5b:3e:fe:14:81:2f:28:15:77:0e:7f:e5:55:a4:28:
3f:82:6c:f1:88:5a:50:78:61:ec:f3:14:18:3c:5f:
3a:3b:59:bc:e6:c3:4f:01:93:ce:97:37:90:3d:65:
5c:86:f7:f5:1a:13:c6:fb:92:bb:5a:3a:a9:32:92:
ed:a8:e0:de:b2:90:ca:27:fa:45:9b:0a:10:0e:f3:
5f:4c:b9:8c:92:1b:c7:d7:88:ec:6b:1c:68:d9:9f:
60:d9:e3:bc:ed:9f:f6:89:af:02:8c:1e:7c:3e:f4:
75:08:e9:d0:1a:27:d0:22:52:11:ae:ac:b7:41:6b:
12:13:da:97:f8:53:97:19:29:29:99:99:54:9d:15:
62:2c:99:78:90:53:26:92:75:c8:5a:f7:0c:67:e1:
f2:ef:ab:f0:b6:4e:9b:f0:b3:fe:80:40:ff:23:ab:
f9:73:24:85:36:cc:48:6f:77:8b:ef:95:cf:a6:c0:
06:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:47:A9:50:F3:AD:2A:94:B3:80:26:BB:B9:88:1E:67:2C:37:4A:FF
X509v3 Authority Key Identifier:
keyid:5C:ED:7F:ED:F0:EC:0C:75:45:59:4C:F6:E1:5D:9B:DE:E7:96:51:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WDKING/XO1_7fDsDHVFWUz24V2b3ueWUbk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XO1_7fDsDHVFWUz24V2b3ueWUbk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WDKING/KEepUPOtKpSzgCa7uYgeZyw3Sv8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
103.67.72.0/23
Signature Algorithm: sha256WithRSAEncryption
4d:fb:f1:1a:c4:41:3c:cc:09:ed:20:76:69:a1:51:a4:76:5a:
d8:22:4c:d1:44:19:dc:81:04:3a:38:de:70:e9:c8:b5:02:d8:
83:05:81:42:68:d4:0e:e9:76:ad:8e:26:5f:9e:ab:82:02:0f:
3a:96:fc:42:a4:c9:84:ab:f7:88:b9:7f:ee:e2:c2:e0:4b:ed:
0c:62:c8:3e:0f:4b:49:43:86:af:1c:c9:c7:17:9b:bb:7b:7f:
2f:ae:84:39:d1:41:c9:e3:27:9f:93:66:fe:92:39:62:5c:63:
1e:4a:38:ac:e0:f4:3f:63:21:d8:ae:30:c6:0d:49:16:f6:ff:
05:70:cb:6d:66:01:32:53:21:56:e7:b8:e8:c4:4c:45:c3:dc:
51:96:8c:8b:d6:fa:55:a8:db:8c:1d:f5:fe:d6:1a:27:1d:38:
ff:0c:39:49:5f:48:a7:b1:54:07:1d:c1:1f:f7:5c:8d:e1:e5:
0d:30:d6:70:d5:04:4e:5f:ea:91:09:3e:99:d6:31:1e:85:18:
f1:64:d0:7f:30:06:a8:fb:01:2c:31:2c:d3:13:6e:2f:f5:b0:
5f:56:b9:47:15:5d:87:14:17:80:5b:d4:6d:99:e2:eb:2c:dc:
25:b5:33:e2:0e:92:b4:fe:7e:3b:42:6a:56:bb:17:58:2c:c4:
2f:da:f5:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 04:59:00 2025 by rpki-client