Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CATHDD/0/323430313a636436303a3a2f34302d3430203d3e20323134303330.roa
File: 323430313a636436303a3a2f34302d3430203d3e20323134303330.roa (raw, json)
Hash identifier: 780V3DLt+Fe7Fs8V4ULwUWJozzo56xPXySO9+JGJ2W8=
Subject key identifier: CB:86:F8:7B:EA:7E:23:FA:D1:5A:99:EB:1F:2A:31:0F:38:59:AE:2F
Certificate issuer: /CN=21DBFD1921121F730C614C0DE6212CD6949CD5AF
Certificate serial: 4F2E6F82A5330E8D9B926E5D5D020DFA565C276C
Authority key identifier: 21:DB:FD:19:21:12:1F:73:0C:61:4C:0D:E6:21:2C:D6:94:9C:D5:AF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21DBFD1921121F730C614C0DE6212CD6949CD5AF.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CATHDD/0/323430313a636436303a3a2f34302d3430203d3e20323134303330.roa
Signing time: Mon 11 May 2026 17:39:01 +0000
ROA not before: Mon 11 May 2026 17:34:01 +0000
ROA not after: Mon 10 May 2027 17:39:01 +0000
asID: 214030
IP address blocks: 2401:cd60::/40 maxlen: 40
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:2e:6f:82:a5:33:0e:8d:9b:92:6e:5d:5d:02:0d:fa:56:5c:27:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21DBFD1921121F730C614C0DE6212CD6949CD5AF
Validity
Not Before: May 11 17:34:01 2026 GMT
Not After : May 10 17:39:01 2027 GMT
Subject: CN=CB86F87BEA7E23FAD15A99EB1F2A310F3859AE2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:10:a5:82:ae:8f:ec:27:25:e4:4e:e1:48:f8:
0e:5c:4f:ff:e8:35:09:3f:a5:ca:04:3c:2f:b5:fc:
ea:de:fa:cf:75:3d:e0:02:7d:83:9a:e8:b1:7f:75:
bf:4f:37:23:92:1d:01:e2:00:53:21:96:f3:f5:1b:
97:04:3b:d7:b2:00:e2:6c:a4:1b:e3:a2:6e:ac:c7:
95:23:00:c2:0a:dc:a9:d2:d5:c2:44:6d:9c:8c:ca:
8c:c0:79:9c:ad:91:0b:29:48:60:be:02:d0:96:26:
d9:4b:bb:f2:7b:72:f9:9b:0b:02:0e:75:18:72:a3:
14:40:41:08:9a:40:7b:77:28:8f:d5:15:2f:4e:28:
d9:81:32:a0:9c:21:6c:b0:71:bd:d2:c5:b3:f5:3b:
d5:95:5f:48:34:e3:60:98:62:15:73:79:79:0f:f5:
54:4e:b6:a9:4a:38:e4:f5:54:74:a3:29:d3:6d:61:
a0:8c:e8:2c:9d:ed:2e:6d:f8:1e:ed:a3:30:3f:48:
e6:4d:7a:f6:8a:84:8e:65:15:4a:e3:6a:95:c4:ed:
a9:91:18:f2:3a:f7:a7:a2:c9:e5:78:d1:c2:e9:d1:
0c:99:dd:a7:09:1c:72:ab:a1:85:b6:ef:57:cf:96:
6c:94:ae:66:a2:96:60:86:6b:ea:c0:78:ec:22:ff:
52:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:86:F8:7B:EA:7E:23:FA:D1:5A:99:EB:1F:2A:31:0F:38:59:AE:2F
X509v3 Authority Key Identifier:
keyid:21:DB:FD:19:21:12:1F:73:0C:61:4C:0D:E6:21:2C:D6:94:9C:D5:AF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21DBFD1921121F730C614C0DE6212CD6949CD5AF.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CATHDD/0/323430313a636436303a3a2f34302d3430203d3e20323134303330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:cd60::/40
Signature Algorithm: sha256WithRSAEncryption
c7:00:2d:c5:44:8f:1d:01:f3:ac:81:4c:fd:19:89:5f:c1:72:
a8:ef:3e:86:de:f8:33:2b:38:25:a5:9e:d7:e0:8a:1e:46:a3:
13:31:ca:0e:69:75:da:75:df:9e:23:c4:df:ec:71:5d:6e:87:
9e:7e:be:22:32:12:60:e8:a8:db:b0:f6:3d:6b:9f:a7:d6:70:
0f:66:bd:d5:8c:8d:6f:0b:1c:0d:97:a3:7d:fd:08:31:16:54:
21:6e:6d:ca:04:6d:e7:28:2d:02:49:94:76:08:12:98:2c:c6:
e6:ae:ee:4f:b7:be:87:21:c3:78:69:fe:99:b3:91:d7:bb:63:
35:33:32:ae:7a:12:78:1f:4f:69:f7:33:3c:f4:37:f6:93:98:
14:05:fa:2b:a4:d8:01:6e:6b:d7:b1:f5:c4:cd:12:08:3a:db:
28:17:b9:95:84:0b:b6:5e:37:20:54:56:51:88:3c:24:a0:e4:
61:d8:bb:a6:79:04:00:ad:fb:10:74:34:a5:a5:8c:3d:ed:99:
c5:4f:d3:ce:67:96:e7:92:fc:05:52:9f:86:0c:24:8e:33:e8:
c9:ea:5a:6c:ee:da:26:ed:9c:6e:3c:ea:7f:ba:95:97:7c:56:
0f:99:dc:ec:71:18:d0:1c:af:66:3e:93:7d:18:92:f6:3c:24:
20:59:11:07
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed May 13 02:49:46 2026 by rpki-client