Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mK-BLDClXWVsOD3EzjigTnkE76k.roa
File: mK-BLDClXWVsOD3EzjigTnkE76k.roa (raw, json)
Hash identifier: ZBWzvGFmpctjwMjXCJ6B8jbN+pjd7agx5x594mq7clI=
Subject key identifier: 98:AF:81:2C:30:A5:5D:65:6C:38:3D:C4:CE:38:A0:4E:79:04:EF:A9
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 1580
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mK-BLDClXWVsOD3EzjigTnkE76k.roa
Signing time: Thu 29 Jan 2026 01:44:51 +0000
ROA not before: Thu 29 Jan 2026 01:44:51 +0000
ROA not after: Sat 22 Aug 2026 08:14:28 +0000
asID: 19551
IP address blocks: 124.108.149.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5504 (0x1580)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Jan 29 01:44:51 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=98AF812C30A55D656C383DC4CE38A04E7904EFA9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:a7:78:8e:d5:fb:5b:2a:2f:de:c6:7b:03:6e:
fe:b6:32:78:e2:52:1f:e6:99:5f:19:6d:88:c0:20:
cd:9a:bb:ba:a4:3b:f2:b3:6f:e6:5f:11:ff:d5:99:
89:5b:2f:4e:04:7c:17:38:c3:8a:2e:b6:2b:98:35:
f4:75:6c:93:4f:88:f4:05:db:fb:f7:ed:f7:22:5a:
98:14:f8:ff:70:72:24:dc:f0:5e:44:2a:8d:cd:bf:
85:89:5b:6f:71:7f:3f:82:e6:3c:1b:5e:f0:00:f9:
b4:18:19:2d:ed:96:da:5e:7f:d3:82:cf:78:a4:2c:
45:41:f5:92:2f:b5:a9:0d:c7:c9:8a:12:2f:76:5a:
09:d8:df:f1:4f:e0:cd:5d:cc:82:74:3a:b1:05:aa:
d3:b8:f7:1e:87:9c:0f:ad:7a:22:f0:cb:9f:13:4d:
6b:ef:e5:5a:b2:54:c4:4c:a1:7e:23:9c:64:8f:9e:
30:2b:98:5c:85:7d:e3:b5:e0:fe:00:88:2e:07:0c:
7e:8f:7c:af:25:a1:76:20:98:bf:11:a2:b3:90:b7:
83:ef:24:0a:cd:39:ed:1c:23:38:1d:c3:50:a2:63:
b7:94:db:70:de:9a:b3:52:29:82:18:69:ca:30:c0:
68:ae:f5:e3:ba:4f:09:f0:70:1c:55:5f:3b:79:d9:
12:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:AF:81:2C:30:A5:5D:65:6C:38:3D:C4:CE:38:A0:4E:79:04:EF:A9
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/mK-BLDClXWVsOD3EzjigTnkE76k.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.149.0/24
Signature Algorithm: sha256WithRSAEncryption
12:0d:36:12:1c:c0:cc:8d:e9:c2:4c:4a:28:39:9a:2e:fa:3b:
78:6e:4e:21:7b:14:77:1f:d7:97:1a:fb:ae:63:ac:ad:43:ec:
64:b4:f5:8c:48:d4:ce:65:d8:b8:1d:15:78:04:c0:2f:56:f0:
03:75:6d:0b:a4:87:bc:6b:f5:82:40:fb:fa:5a:60:a5:07:7c:
33:0b:f1:4e:7e:22:f5:78:39:1e:df:3a:31:39:64:7a:ea:d1:
b1:8c:da:62:94:8b:6f:30:a8:70:a8:11:87:68:be:3a:2e:5e:
ac:c9:d4:4a:f4:4d:da:0c:ce:58:c9:23:fb:74:f8:c4:5a:54:
29:43:7d:9d:ac:6a:fa:be:a9:d4:fe:1c:0d:4a:17:9b:dc:10:
fd:7d:2d:ad:b0:56:ce:e5:1c:b2:b5:8d:d0:90:e5:06:0d:38:
d9:69:00:43:0c:38:c1:38:49:5f:8d:b6:7e:26:83:25:4d:06:
fa:0a:d2:67:2c:8a:fb:90:1c:79:fc:c1:98:ee:c7:d6:e9:39:
df:6f:69:f2:dc:5f:82:82:10:d0:2c:15:56:07:db:a8:1b:f0:
18:fc:72:b8:bb:8d:8a:af:6f:fd:c5:2f:b3:8a:a3:db:97:69:
e8:25:03:87:02:5e:64:7a:f6:e9:29:88:ee:43:60:01:12:bc:
f2:c0:1c:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:22:59 2026 by rpki-client