Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/AOTERNET/0/323430323a343365303a3130303a3a2f34382d3634203d3e203138303430.roa
File: 323430323a343365303a3130303a3a2f34382d3634203d3e203138303430.roa (raw, json)
Hash identifier: h32LALHVFknnmyMLJLFj12rWAKQawmJYg4CLOH4T2X4=
Subject key identifier: 64:95:91:D6:45:26:8A:FF:D5:A2:E3:3F:54:BE:75:BD:F0:23:9F:74
Certificate issuer: /CN=0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78
Certificate serial: 48DA77A1B7B1BAF656D71BA6041CE60B36AEF643
Authority key identifier: 0F:6B:34:27:CD:40:3D:E7:0D:97:CD:DC:AF:A0:BD:BC:16:6C:3E:78
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/AOTERNET/0/323430323a343365303a3130303a3a2f34382d3634203d3e203138303430.roa
Signing time: Mon 11 May 2026 17:58:17 +0000
ROA not before: Mon 11 May 2026 17:53:17 +0000
ROA not after: Mon 10 May 2027 17:58:17 +0000
asID: 18040
IP address blocks: 2402:43e0:100::/48 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:da:77:a1:b7:b1:ba:f6:56:d7:1b:a6:04:1c:e6:0b:36:ae:f6:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78
Validity
Not Before: May 11 17:53:17 2026 GMT
Not After : May 10 17:58:17 2027 GMT
Subject: CN=649591D645268AFFD5A2E33F54BE75BDF0239F74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:98:fb:e2:d0:32:0d:f6:10:e4:bd:ae:d4:48:
7a:a4:4f:ea:b8:7d:2c:33:1c:9d:36:09:9f:d1:83:
e4:77:66:19:5c:f7:b5:8d:75:03:d4:24:b7:cc:8b:
9c:b8:6c:f7:1e:b4:19:c6:b9:95:b7:af:f8:f2:0b:
1a:ae:1d:ab:12:dd:a1:ab:c0:d5:a9:3a:43:f6:eb:
de:50:fb:73:b0:25:12:3e:52:1e:fa:f1:59:52:c4:
60:47:5e:bf:e1:e7:2e:0d:6f:96:15:6e:dd:aa:26:
a8:96:f6:2f:e7:c5:28:48:a2:a9:bb:18:bd:ea:02:
03:a0:0f:76:5a:de:68:e3:21:59:b1:97:ef:30:8f:
2a:18:9e:40:fa:6d:6b:f8:35:bf:5a:e9:f6:1b:0e:
b7:5f:f1:50:34:05:32:f4:cf:ad:4c:a4:c4:0f:66:
a2:9e:66:8f:de:26:44:5a:d4:10:d5:0a:e1:0c:d3:
74:9c:93:b8:06:f0:4a:38:85:a7:6f:c0:5e:79:8e:
72:f4:d9:29:54:b4:e0:ed:83:81:38:39:17:fe:1d:
53:90:d5:55:8a:21:ee:a3:b9:e8:e6:0e:08:43:fa:
db:52:aa:f2:1c:42:e3:8e:82:b8:2a:bd:60:79:94:
ea:e9:48:80:21:a4:94:14:bd:53:63:06:b1:80:f3:
ce:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:95:91:D6:45:26:8A:FF:D5:A2:E3:3F:54:BE:75:BD:F0:23:9F:74
X509v3 Authority Key Identifier:
keyid:0F:6B:34:27:CD:40:3D:E7:0D:97:CD:DC:AF:A0:BD:BC:16:6C:3E:78
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/0/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0F6B3427CD403DE70D97CDDCAFA0BDBC166C3E78.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/0/323430323a343365303a3130303a3a2f34382d3634203d3e203138303430.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:43e0:100::/48
Signature Algorithm: sha256WithRSAEncryption
05:0d:0a:ad:bd:70:82:22:75:52:59:ab:89:21:d4:59:54:0e:
c5:55:61:2a:05:9d:06:b3:c3:e2:a6:39:db:06:c9:ea:16:f1:
fb:96:73:c1:24:39:c5:dc:93:2a:0c:eb:b6:09:1f:8a:00:1b:
63:ef:af:04:34:d8:b0:aa:2a:5c:a3:f8:5a:3f:00:3a:7d:8d:
65:1f:a3:71:fe:3b:06:50:23:56:39:53:14:e5:2e:56:35:4f:
15:18:13:52:61:10:89:d4:9b:b1:17:2d:e7:16:ec:6d:a6:8c:
85:81:86:79:e5:30:0e:e4:5b:02:53:fd:47:73:5a:9f:8e:42:
f4:5d:7e:af:c6:1a:6f:3a:15:6c:88:6f:4b:ce:b5:38:e0:5c:
99:fc:48:1c:e2:bd:62:68:5b:8b:07:3c:fb:ee:77:1e:70:18:
18:f1:86:77:53:61:1d:b1:51:63:b3:5d:92:2a:14:03:98:c6:
07:ed:8a:d9:e3:16:d2:db:e5:80:dc:10:76:a8:c4:87:ec:88:
9d:74:47:c3:03:48:f4:85:69:74:e7:ed:92:24:ec:06:13:33:
d1:c7:a9:80:1f:43:9b:a1:09:da:82:07:fd:51:b2:26:a7:c8:
7f:3c:70:c5:4e:fa:66:b9:8c:f1:3a:96:2b:a0:6a:c1:ef:e4:
fc:cd:79:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:37:41 2026 by rpki-client