Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EMAX/1bdWKd2ISLdQ4gRWPLOqQ_OEk0Q.roa
File: 1bdWKd2ISLdQ4gRWPLOqQ_OEk0Q.roa (raw, json)
Hash identifier: 4wImd78+EeDMJLUUUJgosUnotwi4OgJgBl29OtQRxOM=
Subject key identifier: D5:B7:56:29:DD:88:48:B7:50:E2:04:56:3C:B3:AA:43:F3:84:93:44
Certificate issuer: /CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Certificate serial: 1389
Authority key identifier: 2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/1bdWKd2ISLdQ4gRWPLOqQ_OEk0Q.roa
Signing time: Thu 02 Apr 2026 02:54:54 +0000
ROA not before: Thu 02 Apr 2026 02:54:54 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 9416
IP address blocks: 210.209.128.0/17 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5001 (0x1389)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2A478155382731E5C0F6821DD5389F9E52E1E4D6
Validity
Not Before: Apr 2 02:54:54 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=D5B75629DD8848B750E204563CB3AA43F3849344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ce:18:f6:63:52:49:5f:fa:d0:f5:30:a4:a5:
f5:ee:e4:76:60:32:bf:79:c4:64:a2:f1:2e:d2:e0:
23:a7:0b:fc:c7:65:13:fe:13:13:7a:38:9c:d2:3a:
46:54:10:d6:8c:f5:41:ae:fd:7e:44:af:69:47:1d:
4a:93:e1:86:e4:35:c2:bc:06:a1:a7:75:f7:d5:1d:
b8:77:17:58:97:1e:c9:66:f4:23:f2:a9:7e:8c:c9:
26:3c:4f:b9:98:a3:0c:a9:3a:bb:03:ba:ae:6c:f0:
ae:74:aa:53:8c:d0:e3:81:45:b2:b3:f4:4d:ce:b3:
fe:8a:6d:40:31:a1:c9:3c:ca:93:04:fa:6c:35:35:
a7:9e:7a:c7:bc:17:c8:c9:fa:1c:fa:21:ec:1d:70:
43:e6:14:54:a8:d8:0c:87:df:dc:fb:7a:a1:64:2a:
f2:71:59:44:2d:fb:77:6e:77:d4:24:66:d8:fd:64:
a4:c0:46:c4:26:e8:02:72:fd:b3:5e:87:1b:af:f9:
77:fc:46:60:b4:00:2f:84:f9:df:a2:c7:9f:a0:48:
f8:aa:58:00:74:80:90:56:cc:80:79:0f:a7:85:17:
a9:34:6b:70:b4:b6:a2:76:33:be:77:77:a8:59:98:
01:44:da:5c:29:23:0f:65:2c:98:4b:c2:88:08:a5:
5c:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:B7:56:29:DD:88:48:B7:50:E2:04:56:3C:B3:AA:43:F3:84:93:44
X509v3 Authority Key Identifier:
keyid:2A:47:81:55:38:27:31:E5:C0:F6:82:1D:D5:38:9F:9E:52:E1:E4:D6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/KkeBVTgnMeXA9oId1TifnlLh5NY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KkeBVTgnMeXA9oId1TifnlLh5NY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EMAX/1bdWKd2ISLdQ4gRWPLOqQ_OEk0Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
210.209.128.0/17
Signature Algorithm: sha256WithRSAEncryption
43:7b:29:01:ad:80:8d:cf:12:35:d9:19:11:c3:87:69:c6:09:
3a:ce:0c:d8:5a:1e:16:b8:76:e7:65:b9:ae:de:b3:cb:bd:c3:
9a:c7:3f:cf:28:b3:b2:61:00:c9:d5:51:03:6b:c4:81:cf:91:
63:f6:10:a5:98:fd:ca:78:a8:b4:28:02:2b:6e:61:b7:de:25:
fa:5d:70:fb:99:1f:d5:79:af:b6:ea:35:b2:35:3a:bc:d0:44:
d9:15:12:4d:25:01:5e:10:6b:06:45:87:68:60:9c:f8:39:93:
e7:99:3a:fe:a4:db:e1:e7:28:fb:9d:94:c9:86:12:c8:62:66:
2b:a4:a5:39:eb:9f:c3:68:36:a6:57:27:d7:45:24:07:8d:37:
72:e9:41:b1:2a:ce:49:14:d9:c7:aa:b8:6c:78:9b:01:76:14:
b0:c2:ab:e6:1b:41:a3:36:a0:86:ff:96:27:55:3c:a4:19:33:
7f:4c:50:42:18:04:78:9d:e0:d1:0c:77:73:d5:31:f2:92:f4:
f5:9e:10:5c:32:69:fa:15:19:2c:02:cb:fd:35:8e:73:06:69:
0a:21:8e:3c:a4:6b:79:6e:b9:ae:e0:af:ca:f6:e8:a3:17:6c:
f0:39:bf:7b:ac:a7:9f:40:33:6c:08:92:6a:48:7a:ef:24:53:
82:13:a0:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:02:38 2026 by rpki-client