Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/eHajrlo7z6lH7awC77fcXY_0djE.roa
File: eHajrlo7z6lH7awC77fcXY_0djE.roa (raw, json)
Hash identifier: nL5vlV0mmaYyOIcfgSiQ+BWk1EmmkxVAiK9ti2D6T84=
Subject key identifier: 78:76:A3:AE:5A:3B:CF:A9:47:ED:AC:02:EF:B7:DC:5D:8F:F4:76:31
Certificate issuer: /CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C
Certificate serial: 8F
Authority key identifier: FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/eHajrlo7z6lH7awC77fcXY_0djE.roa
Signing time: Wed 28 Jan 2026 08:04:51 +0000
ROA not before: Wed 28 Jan 2026 08:04:51 +0000
ROA not after: Wed 30 Dec 2026 15:30:20 +0000
asID: 152612
IP address blocks: 2402:43e0:8::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 143 (0x8f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C
Validity
Not Before: Jan 28 08:04:51 2026 GMT
Not After : Dec 30 15:30:20 2026 GMT
Subject: CN=7876A3AE5A3BCFA947EDAC02EFB7DC5D8FF47631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:db:b2:19:4f:10:fb:00:e6:f6:f8:fe:71:f6:
cc:7e:cc:8c:53:28:2e:27:8c:82:f6:4c:50:1a:8e:
3d:59:33:fe:88:20:cd:db:eb:c8:56:d2:35:93:98:
b2:c0:d1:07:be:b6:ae:c6:5d:61:6a:3f:39:3d:e8:
7d:ff:86:f7:fe:83:d2:03:a7:41:9a:84:0c:b5:3a:
15:2f:2d:f0:57:ea:9b:47:39:be:7d:98:b9:04:90:
c6:89:c4:c5:07:b4:d4:96:c3:bd:79:66:12:d7:50:
dd:76:e4:96:a1:fb:5b:f1:9a:8c:48:43:a3:47:30:
e1:b3:5f:5e:b1:52:33:8d:aa:42:ec:7a:58:10:68:
02:14:ce:fa:4c:fe:34:79:88:1f:16:35:87:bd:8e:
00:16:5d:b9:9e:2f:24:f5:cb:f6:14:2f:7d:b1:5f:
93:c0:8a:ff:7c:04:86:68:0a:ea:9b:b8:2c:60:aa:
ec:85:19:a2:3c:11:e6:41:e8:0f:2d:e8:d0:de:18:
d9:cb:d7:64:ba:9c:a4:b8:22:e8:a5:f6:36:59:f7:
df:47:3b:fe:bc:f2:e1:df:eb:24:6d:60:26:09:c8:
23:52:12:50:4b:15:a5:a6:7b:84:07:7f:96:7a:d8:
84:9d:b7:9a:96:3c:4a:16:ea:00:c3:25:dc:d3:46:
87:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:76:A3:AE:5A:3B:CF:A9:47:ED:AC:02:EF:B7:DC:5D:8F:F4:76:31
X509v3 Authority Key Identifier:
keyid:FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/eHajrlo7z6lH7awC77fcXY_0djE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:43e0:8::/48
Signature Algorithm: sha256WithRSAEncryption
2f:ed:64:d1:1f:4f:b1:66:3e:43:ae:84:3b:1e:6d:8b:3e:ea:
aa:d3:9a:4f:e4:36:ce:0f:44:9d:30:46:33:b6:ac:ed:e0:da:
8d:f3:47:a5:d4:13:4b:6d:7b:99:ca:f2:ea:01:de:21:a3:50:
7a:58:f2:66:de:46:1c:16:de:5f:65:5c:2e:04:b4:c0:9b:28:
71:d1:6f:d5:2b:66:ab:d4:1c:19:3c:4f:3f:ea:0a:4c:aa:dd:
ce:b2:71:c9:08:bb:78:fe:8d:42:6d:34:66:67:dc:f1:0b:bc:
ea:f5:2e:96:ec:bd:e6:4a:2e:21:4a:e2:b2:21:30:42:de:6d:
15:c0:56:01:05:20:47:11:58:c9:a9:d4:a8:87:90:a7:ed:d5:
b2:33:3a:d8:2c:e0:f3:a4:9d:3e:8a:80:e4:ca:09:93:e1:00:
6a:6b:ac:d0:d8:32:7e:b0:bb:c4:b7:a0:73:2c:be:95:d7:05:
78:e5:a4:21:05:41:a6:b9:04:6e:a8:60:02:83:cf:fa:14:7f:
0d:9a:03:c6:c1:96:36:8d:ae:65:62:f5:96:c7:b6:c7:53:55:
d7:9d:a0:94:73:8b:2c:6c:2e:a5:cd:23:bf:53:c5:1d:70:72:
4f:ab:69:22:6b:83:1d:22:04:0a:05:76:c7:16:09:20:74:dd:
65:45:c0:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:08:03 2026 by rpki-client