Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/ARCHE/1/3135372e31352e33322e302f32332d3234203d3e203138303431.roa
File: 3135372e31352e33322e302f32332d3234203d3e203138303431.roa (raw, json)
Hash identifier: NbJQ5exevbZjAb1JTjXmsBF9cRuA1KI0zVWB1TfI//E=
Subject key identifier: F5:D3:06:48:9A:2D:5A:BC:BF:BF:64:8F:84:55:D3:01:06:F1:36:5F
Certificate issuer: /CN=203A90FB4F5E8AC12A1C8F72215AD26095C49252
Certificate serial: 222D6F816003E1F7F9C6CB53998118EC1FE980B7
Authority key identifier: 20:3A:90:FB:4F:5E:8A:C1:2A:1C:8F:72:21:5A:D2:60:95:C4:92:52
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/203A90FB4F5E8AC12A1C8F72215AD26095C49252.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/ARCHE/1/3135372e31352e33322e302f32332d3234203d3e203138303431.roa
Signing time: Mon 11 May 2026 17:36:09 +0000
ROA not before: Mon 11 May 2026 17:31:09 +0000
ROA not after: Mon 10 May 2027 17:36:09 +0000
asID: 18041
IP address blocks: 157.15.32.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:2d:6f:81:60:03:e1:f7:f9:c6:cb:53:99:81:18:ec:1f:e9:80:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=203A90FB4F5E8AC12A1C8F72215AD26095C49252
Validity
Not Before: May 11 17:31:09 2026 GMT
Not After : May 10 17:36:09 2027 GMT
Subject: CN=F5D306489A2D5ABCBFBF648F8455D30106F1365F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:cc:57:cc:bd:4e:0f:6a:47:3b:1c:a1:5d:10:
67:5b:2c:c8:78:09:d5:6e:68:9e:cf:72:f8:ac:2c:
e9:fb:92:81:b3:77:a8:1f:bd:42:7d:20:ed:8e:8f:
84:e7:a5:4d:ee:cb:10:f6:e0:d4:e1:42:76:22:bc:
5f:61:27:14:53:12:31:d1:c1:49:8b:ae:30:22:3a:
e7:d8:fd:92:2b:d0:83:49:14:43:96:b2:30:da:bc:
fc:c9:6b:15:18:4c:3c:2f:c9:db:3d:da:f0:a2:96:
58:8b:15:4d:86:37:48:80:27:7d:b1:3f:14:f0:c8:
01:3b:47:9d:db:e2:92:f2:41:c6:10:3e:b4:bb:5f:
a8:bc:92:bd:4e:27:ec:24:77:1a:57:7e:d9:b6:44:
a9:6a:aa:34:59:7f:86:e7:80:e4:8f:e4:47:80:23:
80:28:e6:cc:31:37:fa:35:02:10:7e:14:e2:1b:4f:
9b:00:18:02:0a:08:f3:79:71:3f:ce:95:17:2e:fe:
63:cd:13:61:46:d2:b0:e2:99:45:60:3c:81:fd:db:
71:48:67:ea:b5:6e:12:5b:f0:ff:e1:89:83:4a:2f:
16:8e:02:3b:f7:37:ac:06:90:49:51:71:df:da:33:
81:32:33:3d:f6:91:2f:74:67:73:ea:a8:f6:0b:dc:
8b:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D3:06:48:9A:2D:5A:BC:BF:BF:64:8F:84:55:D3:01:06:F1:36:5F
X509v3 Authority Key Identifier:
keyid:20:3A:90:FB:4F:5E:8A:C1:2A:1C:8F:72:21:5A:D2:60:95:C4:92:52
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/ARCHE/1/203A90FB4F5E8AC12A1C8F72215AD26095C49252.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/203A90FB4F5E8AC12A1C8F72215AD26095C49252.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ARCHE/1/3135372e31352e33322e302f32332d3234203d3e203138303431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.15.32.0/23
Signature Algorithm: sha256WithRSAEncryption
64:fd:fd:49:1e:1e:08:62:4c:f2:cc:cf:0e:f7:c3:97:aa:ee:
7d:34:46:65:ee:a6:bf:8a:08:45:47:75:99:c2:f7:66:62:4e:
6d:11:99:98:7a:ac:63:da:aa:61:f8:f6:03:fc:ca:4e:5a:cd:
48:95:51:e9:65:3a:ba:0f:83:26:7c:f8:8a:3e:69:ee:1f:3a:
73:e5:a1:77:0f:bd:5d:c6:d9:c5:b5:94:c2:98:51:91:c8:b7:
65:d9:b6:6e:13:74:e7:2d:4c:82:5f:cf:99:db:b1:41:0d:c9:
a8:16:62:62:95:2f:e1:b0:b5:98:2f:9f:b1:58:93:80:ca:f6:
5e:b3:f0:3f:51:a6:bd:b1:2d:5f:4c:1f:09:94:94:60:fe:b3:
b3:59:6e:eb:7e:cb:13:ae:af:6a:f0:1f:a2:3d:64:d9:e0:c4:
56:5a:d9:81:e9:21:b2:97:f2:56:ce:2e:36:b9:55:87:27:ff:
3d:89:7b:7a:8a:fb:39:ae:1c:00:b5:b4:f2:18:bf:8b:18:7e:
fe:ef:c2:d0:f3:2f:5d:52:b7:92:03:79:5a:5f:0c:36:45:cc:
df:87:6a:83:34:bd:bb:e0:af:33:98:ea:cf:14:87:b2:a6:0e:
a2:e1:20:14:ef:29:0b:1a:eb:be:0c:38:cb:12:d9:ae:84:cb:
24:81:09:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:56:13 2026 by rpki-client