Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CHIEF-TW/0/AS131596.roa
File: AS131596.roa (raw, json)
Hash identifier: rDMwBtuoUrFSw4uCROJpFSHT6GaQFwx2GO67xaLVrX0=
Subject key identifier: B8:00:60:DD:66:68:33:4D:80:55:EA:04:DF:F5:82:68:42:6B:1F:5F
Certificate issuer: /CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314
Certificate serial: 1ABC0A095A4A5FD1A04E07FF8707B88F4E972339
Authority key identifier: 33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS131596.roa
Signing time: Mon 11 May 2026 17:58:01 +0000
ROA not before: Mon 11 May 2026 17:53:01 +0000
ROA not after: Mon 10 May 2027 17:58:01 +0000
asID: 131596
IP address blocks: 203.163.215.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:bc:0a:09:5a:4a:5f:d1:a0:4e:07:ff:87:07:b8:8f:4e:97:23:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=33CA4B5F4295B6812127AF5761C6D7353D1F0314
Validity
Not Before: May 11 17:53:01 2026 GMT
Not After : May 10 17:58:01 2027 GMT
Subject: CN=B80060DD6668334D8055EA04DFF58268426B1F5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:af:82:02:43:ac:39:6f:28:3a:31:21:5e:d3:
ba:7c:1b:bc:20:b1:bd:03:19:38:da:c7:b0:82:48:
aa:7d:61:39:83:da:b4:a4:61:3d:29:c9:08:fc:c9:
b5:02:dc:c2:82:64:c6:af:07:96:2f:2f:1c:dd:83:
3c:69:83:fb:79:5e:9f:48:72:fe:19:c9:06:2d:4c:
6c:ce:8e:ac:29:db:24:43:a5:a0:c5:36:ec:c9:c6:
fa:0f:67:ca:4e:0e:4f:c2:b6:c8:65:57:24:d5:2b:
d8:f6:24:98:1a:8a:de:61:e5:ca:9c:75:35:fb:9f:
61:76:05:0c:ad:d4:ef:93:0f:b5:66:3b:b8:99:61:
6d:fc:d1:eb:d6:6f:d2:b0:a7:87:8d:49:87:19:7a:
43:03:8d:16:27:d3:97:ee:ce:58:94:97:a8:8d:da:
ce:ce:c9:e0:69:8c:24:db:1c:a0:c5:eb:c8:23:33:
f3:3a:03:9d:a5:d6:3c:6d:45:cc:9c:f9:82:62:4d:
78:41:f8:77:41:32:2b:38:fe:0a:fe:83:19:ef:c9:
a8:fe:bb:41:62:88:d7:a0:ad:93:c3:5d:59:5b:54:
96:12:07:ed:70:70:33:ce:f8:cc:59:60:77:81:82:
44:fe:f9:73:1b:bd:59:4d:9d:a3:9e:a0:59:80:cc:
e8:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:00:60:DD:66:68:33:4D:80:55:EA:04:DF:F5:82:68:42:6B:1F:5F
X509v3 Authority Key Identifier:
keyid:33:CA:4B:5F:42:95:B6:81:21:27:AF:57:61:C6:D7:35:3D:1F:03:14
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/33CA4B5F4295B6812127AF5761C6D7353D1F0314.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/33CA4B5F4295B6812127AF5761C6D7353D1F0314.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHIEF-TW/0/AS131596.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.163.215.0/24
Signature Algorithm: sha256WithRSAEncryption
c2:e4:02:ca:d2:bb:4d:9e:c9:94:16:94:66:bd:ec:a3:71:aa:
ab:26:81:ea:1a:69:91:8f:2a:83:70:bd:49:7e:19:fe:8a:e8:
ff:07:6e:88:4e:f2:86:e0:27:88:13:2f:7b:8e:9c:c1:bd:b4:
ff:a1:65:be:5b:f6:89:f2:ac:9a:6c:a3:46:7d:5a:e4:99:4c:
40:53:d3:3c:99:ba:55:c1:d3:4a:e8:9c:57:91:c1:c0:c9:2c:
cf:97:3b:d6:bc:5e:db:03:35:6d:04:3c:49:e3:5e:2b:3f:34:
cd:c4:32:96:b2:75:f5:8b:0a:e5:48:1b:11:c1:07:af:fe:bd:
82:c4:d1:19:2a:a2:c5:3e:fd:6a:ff:7a:eb:34:3b:a0:bd:15:
d0:d0:24:f7:f2:5f:47:13:49:2b:3a:f0:30:82:e5:bd:a6:3c:
86:51:bc:83:6e:ba:68:c0:48:b4:4f:a6:f5:bd:50:0f:bd:c7:
7f:ca:7c:96:e9:9e:2c:9d:10:0a:0a:c5:13:69:be:03:73:65:
7e:6d:75:a2:16:d0:75:ac:64:50:b1:6f:a8:8c:ee:b6:e9:75:
0c:c3:46:44:94:1d:f9:f2:a2:39:60:bd:ae:97:7c:21:5c:26:
fb:4a:09:ee:60:d3:95:67:b8:1e:df:c2:1a:3d:0b:2b:a9:e0:
a7:a1:10:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:48:50 2026 by rpki-client