Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/tig2O7Gwf-1DIg9MCn8shqDHVY4.roa
File: tig2O7Gwf-1DIg9MCn8shqDHVY4.roa (raw, json)
Hash identifier: uhFNZWpMJ2htr5dI+ElHPlR4tPyGLdeTM/NnNY5kLgI=
Subject key identifier: B6:28:36:3B:B1:B0:7F:ED:43:22:0F:4C:0A:7F:2C:86:A0:C7:55:8E
Certificate issuer: /CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C
Certificate serial: 99
Authority key identifier: FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/tig2O7Gwf-1DIg9MCn8shqDHVY4.roa
Signing time: Wed 28 Jan 2026 08:05:58 +0000
ROA not before: Wed 28 Jan 2026 08:05:58 +0000
ROA not after: Wed 30 Dec 2026 15:30:20 +0000
asID: 152612
IP address blocks: 2402:43e0:1::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 153 (0x99)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C
Validity
Not Before: Jan 28 08:05:58 2026 GMT
Not After : Dec 30 15:30:20 2026 GMT
Subject: CN=B628363BB1B07FED43220F4C0A7F2C86A0C7558E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1f:cb:06:95:52:34:a4:ba:d5:6a:0d:e5:b1:
d8:7f:e5:ea:dd:ce:8e:92:df:53:49:cb:c8:5c:09:
03:1a:c4:21:23:a7:93:e4:83:23:ad:e0:d5:ee:fe:
e4:d5:e7:ca:ed:c4:c0:b2:f1:95:cd:07:2a:c5:24:
17:a9:d9:69:4e:6d:2c:db:32:50:21:fe:44:60:9c:
96:bf:d6:e9:a6:1d:75:2d:f1:07:87:44:97:0d:c4:
1d:1f:59:b3:41:22:aa:ef:28:be:cf:60:73:ff:ae:
75:42:26:fd:7d:8f:d3:00:48:84:d0:84:eb:97:9c:
3e:11:df:9a:c6:82:8c:e8:69:13:dd:e2:cc:14:54:
e4:83:9a:71:b2:03:d1:8a:8e:44:dc:77:3d:7d:2c:
e2:41:c3:5c:95:f8:a0:f5:88:d9:00:a0:a8:08:a4:
c9:7d:11:7f:fe:db:7f:43:5e:9c:5a:34:98:86:d2:
54:06:bb:15:f8:01:6e:71:ed:0e:8a:f7:0c:be:d6:
78:5d:dd:65:b2:85:e5:27:f6:e6:9b:80:c1:c6:ef:
5b:37:76:5f:a9:25:62:4f:d5:96:0d:ac:29:b8:06:
33:e5:ec:49:fd:31:89:bc:92:5c:4e:ca:2e:ae:4d:
b9:35:79:57:07:eb:0a:b5:2d:1e:d9:06:f2:60:57:
9b:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:28:36:3B:B1:B0:7F:ED:43:22:0F:4C:0A:7F:2C:86:A0:C7:55:8E
X509v3 Authority Key Identifier:
keyid:FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/tig2O7Gwf-1DIg9MCn8shqDHVY4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:43e0:1::/48
Signature Algorithm: sha256WithRSAEncryption
5c:ec:e4:a1:08:71:e3:7a:60:8e:76:f4:2f:af:f2:b7:d6:55:
19:3f:d4:2d:c9:d3:31:2e:79:95:f4:c8:5b:de:22:62:bd:a7:
5a:dc:2d:16:63:45:9b:fb:29:ca:4f:5d:7f:20:c1:58:59:8f:
f2:03:b4:84:c2:6e:ca:ab:19:a5:e4:39:61:f3:52:3c:0a:f9:
b8:7f:a0:06:c5:b9:93:75:e6:5b:88:61:6d:cf:f4:78:fc:05:
23:43:b8:44:28:fc:6f:df:41:a3:18:2f:ab:a5:bb:d0:20:fa:
66:66:29:f9:81:5d:bb:cd:56:73:cc:d2:92:29:53:67:dc:2e:
81:a9:23:97:db:50:11:82:ce:89:b2:5b:1e:ef:28:71:23:ac:
34:1c:a5:21:95:a6:ed:ea:01:02:8d:e0:a9:b4:1e:f0:f8:af:
3f:28:94:39:ee:c7:fe:08:b8:32:40:18:b3:f2:6c:03:a7:10:
0a:80:45:d9:87:7c:b8:b9:a9:e3:23:ed:0c:82:a3:c8:5c:a5:
89:8b:8f:22:bb:4c:95:b1:fa:a5:49:78:7f:e0:6e:a9:06:8e:
b3:fd:7b:ba:d2:8a:7d:8f:77:39:a5:30:3b:a1:a6:99:cc:f3:
a5:0a:e7:3a:a3:0c:50:db:6b:f6:69:c3:51:8c:af:17:b8:b6:
a6:f8:5b:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:08:13 2026 by rpki-client