Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CKMATES/0/3130332e3131392e3231342e302f32342d3234203d3e20313331363239.roa
File: 3130332e3131392e3231342e302f32342d3234203d3e20313331363239.roa (raw, json)
Hash identifier: ATTGrI+LdxvHy7tZZvIf74Pi92V/OccZmHc6iAFqFXM=
Subject key identifier: 5E:34:13:4C:41:A9:38:ED:8D:B8:BA:1D:70:7D:81:CD:99:BD:B2:59
Certificate issuer: /CN=3D576C4841082805B3CDBD7337F3963A8833174B
Certificate serial: 40FDC16F46F6C6E348810DFC674C554DCFAAC5E9
Authority key identifier: 3D:57:6C:48:41:08:28:05:B3:CD:BD:73:37:F3:96:3A:88:33:17:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CKMATES/0/3130332e3131392e3231342e302f32342d3234203d3e20313331363239.roa
Signing time: Mon 11 May 2026 17:58:18 +0000
ROA not before: Mon 11 May 2026 17:53:18 +0000
ROA not after: Mon 10 May 2027 17:58:18 +0000
asID: 131629
IP address blocks: 103.119.214.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:fd:c1:6f:46:f6:c6:e3:48:81:0d:fc:67:4c:55:4d:cf:aa:c5:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3D576C4841082805B3CDBD7337F3963A8833174B
Validity
Not Before: May 11 17:53:18 2026 GMT
Not After : May 10 17:58:18 2027 GMT
Subject: CN=5E34134C41A938ED8DB8BA1D707D81CD99BDB259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:d2:e6:c1:38:12:f2:a0:19:62:9b:b5:5f:9a:
c8:f3:de:56:5d:44:fe:d5:63:5c:84:26:4b:62:e0:
39:4d:a3:29:20:4b:bb:8a:04:50:95:47:06:87:c7:
80:01:ff:8c:dc:70:f7:0e:7f:30:a1:e4:c7:04:1d:
78:ac:d9:0d:af:fd:4c:34:76:cf:16:f8:e3:c2:9a:
04:db:cb:29:1f:bb:e4:d2:b0:3e:96:69:42:fd:7a:
f9:b4:7e:86:f9:b1:6b:15:66:fe:46:c0:78:0a:1c:
6e:fd:79:e2:e1:b0:0a:70:20:5f:83:98:0b:07:43:
96:d3:dd:c4:77:de:6b:f5:73:78:85:63:2f:2f:9a:
fc:2f:4e:c7:55:fd:cd:2b:01:93:66:5d:c4:56:50:
25:8d:9e:c8:e0:4f:4a:8e:e4:a4:cf:aa:e1:7f:57:
f8:8d:a5:79:e6:b9:80:e1:8c:b4:3e:da:de:4a:9a:
88:e0:94:02:47:a5:04:44:e4:4c:22:bd:13:cb:4c:
a8:93:29:54:e2:c8:66:4d:5a:64:6c:cf:83:72:64:
80:f8:74:5c:e9:c7:58:b1:23:38:ca:bc:01:8b:82:
bd:46:03:fc:93:c2:27:51:26:da:a0:6d:83:ba:46:
1c:2f:e9:01:70:b0:3b:2f:5d:d0:75:75:fe:63:bc:
df:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:34:13:4C:41:A9:38:ED:8D:B8:BA:1D:70:7D:81:CD:99:BD:B2:59
X509v3 Authority Key Identifier:
keyid:3D:57:6C:48:41:08:28:05:B3:CD:BD:73:37:F3:96:3A:88:33:17:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CKMATES/0/3130332e3131392e3231342e302f32342d3234203d3e20313331363239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.119.214.0/24
Signature Algorithm: sha256WithRSAEncryption
25:de:51:0f:2a:1f:67:6b:e6:18:6e:38:bf:ff:b6:8b:ce:c6:
ed:b6:ff:64:5e:00:e9:68:e3:fa:38:9f:ba:55:54:d3:0c:e6:
e1:48:ca:4d:d8:b3:3b:a7:b6:48:29:8f:24:e9:8f:dc:26:aa:
bb:26:68:de:47:ad:29:c0:3a:93:71:d5:a9:5c:09:1a:4e:d7:
48:02:66:4b:4a:30:1a:1c:83:0a:44:84:16:94:ef:15:b4:d3:
00:28:17:ab:83:e6:c5:92:9e:02:67:70:3e:d0:31:fa:4a:30:
22:e2:c1:62:67:22:23:34:d1:42:6c:7c:a5:12:4f:8d:5f:8c:
a0:7a:69:12:85:b7:a2:ab:a5:59:95:b8:f3:ea:ae:74:81:2e:
e6:64:28:2d:c9:c3:04:81:84:3a:79:c8:bc:85:47:d2:bb:01:
00:1a:f6:e8:e6:8d:7b:68:b9:0c:11:2b:61:81:62:e9:19:60:
d2:a7:31:d8:12:59:16:07:04:8b:b8:de:09:4f:67:de:b8:e5:
4b:e2:ba:66:ec:70:07:99:81:b8:9d:45:37:c1:47:85:cf:2a:
23:d2:80:06:e2:5c:db:1e:6f:c8:4b:9e:48:b8:9c:f0:6c:25:
2f:be:0b:2b:1b:ef:d4:80:b5:1e:ad:32:49:1c:15:a1:43:8e:
16:80:33:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:17:10 2026 by rpki-client