Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CATHDD/1/3136302e3139312e392e302f32342d3332203d3e20313530373636.roa
File: 3136302e3139312e392e302f32342d3332203d3e20313530373636.roa (raw, json)
Hash identifier: iobSCigwHPXsmKPAiv0Cm9wPrYmBsLfhPZWAEKgfxoc=
Subject key identifier: 73:4A:40:16:4E:4C:FD:CA:DB:90:87:F0:14:2F:00:23:B2:BF:01:F2
Certificate issuer: /CN=8242A39E0577E8E82BF863D0124FF5AF2F53C9C8
Certificate serial: 044D29C5A744910103C97411D10594E7E0DFF909
Authority key identifier: 82:42:A3:9E:05:77:E8:E8:2B:F8:63:D0:12:4F:F5:AF:2F:53:C9:C8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/8242A39E0577E8E82BF863D0124FF5AF2F53C9C8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CATHDD/1/3136302e3139312e392e302f32342d3332203d3e20313530373636.roa
Signing time: Mon 11 May 2026 17:38:37 +0000
ROA not before: Mon 11 May 2026 17:33:37 +0000
ROA not after: Mon 10 May 2027 17:38:37 +0000
asID: 150766
IP address blocks: 160.191.9.0/24 maxlen: 32
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:4d:29:c5:a7:44:91:01:03:c9:74:11:d1:05:94:e7:e0:df:f9:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8242A39E0577E8E82BF863D0124FF5AF2F53C9C8
Validity
Not Before: May 11 17:33:37 2026 GMT
Not After : May 10 17:38:37 2027 GMT
Subject: CN=734A40164E4CFDCADB9087F0142F0023B2BF01F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:32:84:c9:58:09:f3:d3:34:d8:2a:09:ef:f2:
f1:5b:e0:d3:ba:59:f4:61:e0:31:4d:ed:98:0e:6a:
b1:c7:18:ae:9c:db:c8:8f:b4:fc:0e:29:dd:e0:7d:
f8:cd:17:53:0b:70:3e:82:59:a1:b0:97:b3:2e:6e:
6e:13:16:ad:ee:41:a7:38:58:58:e3:68:7d:0d:85:
bf:3b:67:cc:14:34:d6:1a:03:b6:94:25:0c:62:6d:
3a:b2:a4:bf:ae:d2:28:82:ba:dc:f7:08:9f:45:d9:
6b:1b:87:a5:98:c4:f6:54:8f:43:20:9d:37:f8:14:
d8:ca:c6:21:86:3e:3f:39:d7:66:84:78:02:71:1b:
35:92:e9:44:26:7d:8a:38:e5:81:5e:8a:3e:b0:58:
5e:a5:ab:8d:f2:1b:a5:ec:87:22:33:01:c1:08:f2:
d3:54:c1:54:eb:40:d9:e3:10:2d:db:15:db:9f:8b:
eb:94:3b:7a:06:e4:6f:b7:14:17:0e:34:55:6e:4a:
fd:2c:ac:92:b7:47:75:e8:7e:06:28:0f:63:5d:50:
03:86:2f:e2:41:44:24:38:71:0a:72:91:bd:04:d4:
14:68:60:e6:85:ab:1a:ed:4a:19:02:ae:48:8c:68:
05:ff:d1:f2:a1:9f:8c:a9:cb:e0:2f:3c:81:a5:78:
95:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:4A:40:16:4E:4C:FD:CA:DB:90:87:F0:14:2F:00:23:B2:BF:01:F2
X509v3 Authority Key Identifier:
keyid:82:42:A3:9E:05:77:E8:E8:2B:F8:63:D0:12:4F:F5:AF:2F:53:C9:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CATHDD/1/8242A39E0577E8E82BF863D0124FF5AF2F53C9C8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/8242A39E0577E8E82BF863D0124FF5AF2F53C9C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CATHDD/1/3136302e3139312e392e302f32342d3332203d3e20313530373636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.191.9.0/24
Signature Algorithm: sha256WithRSAEncryption
66:ed:15:93:a7:03:6d:c7:7a:11:87:04:38:13:34:57:1f:99:
63:9a:dc:85:59:ea:2e:58:d7:5d:f7:26:f6:6b:c0:d8:4f:f9:
6f:f9:ce:1b:0d:d2:35:2f:e9:af:95:d2:07:ab:29:5d:4f:d5:
0d:76:8f:e3:2e:8b:e1:01:f2:c3:d5:7a:4f:fc:65:16:f7:c9:
14:59:9b:7f:e7:90:a1:4c:9f:13:5b:12:7a:63:6d:7a:fb:98:
ed:a9:1b:cc:82:34:5f:c7:24:e5:2b:03:65:94:9e:68:d1:6d:
5c:4f:27:b1:7d:22:ac:f7:66:d6:62:10:b1:41:57:27:55:1a:
8e:66:b4:49:d4:0d:a8:42:01:52:1c:eb:8f:8c:ce:07:d2:d3:
ae:36:5a:d1:4a:36:da:7f:ed:36:a3:40:ee:53:17:b2:02:03:
04:b8:12:62:c9:28:f1:2a:e4:e2:1b:e2:29:58:05:34:26:84:
1a:01:64:43:40:e5:82:5e:77:bc:1b:c5:6e:e2:fa:1c:86:61:
21:89:dc:c1:2a:bf:7c:cb:b9:7d:54:ea:c0:8e:0a:95:38:ab:
07:ef:4f:aa:42:85:c4:62:59:eb:d7:09:a5:87:d9:fe:76:d4:
54:cc:74:c0:b1:7d:b6:70:b4:b0:94:e5:39:74:53:f4:e5:13:
ce:6d:09:70
-----BEGIN CERTIFICATE-----
MIIE2TCCA8GgAwIBAgIUBE0pxadEkQEDyXQR0QWU5+Df+QkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoODI0MkEzOUUwNTc3RThFODJCRjg2M0QwMTI0RkY1QUYy
RjUzQzlDODAeFw0yNjA1MTExNzMzMzdaFw0yNzA1MTAxNzM4MzdaMDMxMTAvBgNV
BAMTKDczNEE0MDE2NEU0Q0ZEQ0FEQjkwODdGMDE0MkYwMDIzQjJCRjAxRjIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyMoTJWAnz0zTYKgnv8vFb4NO6
WfRh4DFN7ZgOarHHGK6c28iPtPwOKd3gffjNF1MLcD6CWaGwl7Mubm4TFq3uQac4
WFjjaH0Nhb87Z8wUNNYaA7aUJQxibTqypL+u0iiCutz3CJ9F2Wsbh6WYxPZUj0Mg
nTf4FNjKxiGGPj8512aEeAJxGzWS6UQmfYo45YFeij6wWF6lq43yG6XshyIzAcEI
8tNUwVTrQNnjEC3bFdufi+uUO3oG5G+3FBcONFVuSv0srJK3R3XofgYoD2NdUAOG
L+JBRCQ4cQpykb0E1BRoYOaFqxrtShkCrkiMaAX/0fKhn4ypy+AvPIGleJUbAgMB
AAGjggHjMIIB3zAdBgNVHQ4EFgQUc0pAFk5M/crbkIfwFC8AI7K/AfIwHwYDVR0j
BBgwFoAUgkKjngV36Ogr+GPQEk/1ry9TycgwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud
HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FUSERE
LzEvODI0MkEzOUUwNTc3RThFODJCRjg2M0QwMTI0RkY1QUYyRjUzQzlDOC5jcmww
bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p
Yy50dy9ycGtpL1RXTklDQ0EvMC84MjQyQTM5RTA1NzdFOEU4MkJGODYzRDAxMjRG
RjVBRjJGNTNDOUM4LmNlcjB8BggrBgEFBQcBCwRwMG4wbAYIKwYBBQUHMAuGYHJz
eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FUSERELzEvMzEzNjMwMmUzMTM5
MzEyZTM5MmUzMDJmMzIzNDJkMzMzMjIwM2QzZTIwMzEzNTMwMzczNjM2LnJvYTAY
BgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIA
ATAGAwQAoL8JMA0GCSqGSIb3DQEBCwUAA4IBAQBm7RWTpwNtx3oRhwQ4EzRXH5lj
mtyFWeouWNdd9yb2a8DYT/lv+c4bDdI1L+mvldIHqyldT9UNdo/jLovhAfLD1XpP
/GUW98kUWZt/55ChTJ8TWxJ6Y216+5jtqRvMgjRfxyTlKwNllJ5o0W1cTyexfSKs
92bWYhCxQVcnVRqOZrRJ1A2oQgFSHOuPjM4H0tOuNlrRSjbaf+02o0DuUxeyAgME
uBJiySjxKuTiG+IpWAU0JoQaAWRDQOWCXne8G8Vu4vochmEhidzBKr98y7l9VOrA
jgqVOKsH70+qQoXEYlnr1wmlh9n+dtRUzHTAsX22cLSwlOU5dFP05RPObQlw
-----END CERTIFICATE-----
Generated at Wed May 13 02:13:18 2026 by rpki-client