Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/GAMBESON/1/3136352e3130312e3135322e302f32332d3234203d3e20313334383233.roa
File: 3136352e3130312e3135322e302f32332d3234203d3e20313334383233.roa (raw, json)
Hash identifier: kxyxCW3V2gaGnnDYD9cbiTDaL6NE6NvCZZRwhoM7WZw=
Subject key identifier: 2A:2A:2E:F0:7E:B5:EA:49:6A:FB:86:95:CA:4C:74:77:0C:B1:AC:F7
Certificate issuer: /CN=43A480538BE8801E606CB416A45E3AA47153C1FC
Certificate serial: 167B7995FAA341CB0FBAFBA37481BF9EA49ED520
Authority key identifier: 43:A4:80:53:8B:E8:80:1E:60:6C:B4:16:A4:5E:3A:A4:71:53:C1:FC
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/43A480538BE8801E606CB416A45E3AA47153C1FC.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/GAMBESON/1/3136352e3130312e3135322e302f32332d3234203d3e20313334383233.roa
Signing time: Mon 11 May 2026 17:40:36 +0000
ROA not before: Mon 11 May 2026 17:35:36 +0000
ROA not after: Mon 10 May 2027 17:40:36 +0000
asID: 134823
IP address blocks: 165.101.152.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
16:7b:79:95:fa:a3:41:cb:0f:ba:fb:a3:74:81:bf:9e:a4:9e:d5:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=43A480538BE8801E606CB416A45E3AA47153C1FC
Validity
Not Before: May 11 17:35:36 2026 GMT
Not After : May 10 17:40:36 2027 GMT
Subject: CN=2A2A2EF07EB5EA496AFB8695CA4C74770CB1ACF7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:88:6d:d2:a7:c0:ee:dd:7e:03:17:76:5d:57:
c8:dd:f5:61:1f:f9:2d:8c:2c:42:e5:bc:0e:bf:70:
44:36:7c:ec:93:33:4e:05:75:a8:21:02:76:d5:a0:
f3:0e:d0:8b:15:b8:e3:a7:49:ea:f3:bb:bf:8c:08:
da:8b:b5:ee:6b:48:2f:20:cf:69:f3:ca:e0:74:35:
b1:42:0b:29:c1:87:c2:7d:eb:a5:e5:f5:99:21:1d:
d6:20:00:7a:b2:68:e7:f4:d2:ff:0c:ed:eb:b5:65:
5e:ac:53:f7:68:ea:c0:e6:2c:25:3d:29:b0:67:c7:
3e:5a:52:94:32:4a:86:5b:75:40:84:5d:4c:d2:a8:
27:44:53:0c:9c:cd:d6:a3:ee:56:48:2f:1e:b5:dc:
e0:cb:4b:af:70:d5:c9:33:2b:9a:63:0b:77:7e:29:
45:e9:52:3f:43:1e:c9:bd:ad:75:b9:51:d5:38:bb:
a9:e4:ed:3d:32:44:eb:4b:d0:34:ee:f0:0d:e3:eb:
eb:e8:44:bc:45:09:fc:4e:04:2f:e5:09:c1:9c:a1:
ed:77:79:97:12:a7:d1:f3:45:b6:6c:72:47:20:30:
46:f6:1f:50:b3:93:f3:5b:4c:78:27:47:dd:60:1c:
c6:cb:0c:4f:35:c9:bf:a7:07:cf:a7:d0:99:c8:15:
da:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:2A:2E:F0:7E:B5:EA:49:6A:FB:86:95:CA:4C:74:77:0C:B1:AC:F7
X509v3 Authority Key Identifier:
keyid:43:A4:80:53:8B:E8:80:1E:60:6C:B4:16:A4:5E:3A:A4:71:53:C1:FC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/1/43A480538BE8801E606CB416A45E3AA47153C1FC.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/43A480538BE8801E606CB416A45E3AA47153C1FC.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/1/3136352e3130312e3135322e302f32332d3234203d3e20313334383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
165.101.152.0/23
Signature Algorithm: sha256WithRSAEncryption
81:38:a6:db:92:5f:48:58:6d:26:76:a6:bb:e9:8a:e9:f5:36:
b3:7c:b5:29:74:d6:1c:a3:1a:9f:af:d9:81:3d:71:aa:29:f7:
dc:b1:df:2f:c4:f5:ea:c1:aa:90:77:c8:ec:66:ce:7d:e9:f1:
ca:11:ea:08:7e:b3:5e:6e:a2:8f:88:a4:d8:69:f9:75:70:9a:
19:7e:c0:8e:62:4a:ea:2b:f5:bd:ef:fe:0a:ad:01:94:b2:21:
a7:6a:d1:61:04:88:24:17:22:d3:bb:22:13:fd:5b:49:98:70:
0f:cb:d2:cb:8e:fa:7d:68:d3:21:84:5c:4f:13:5b:d7:11:4d:
ba:de:1f:f3:bc:bc:dd:50:8e:7e:da:88:f4:41:81:e1:97:30:
cd:25:1e:c9:78:15:f2:83:2e:fe:78:e3:df:b5:29:7b:1b:6a:
d6:39:94:3f:74:e3:e6:e7:e0:04:dd:17:fd:b1:b3:29:d7:fd:
28:fb:f9:05:12:48:f4:7c:c4:29:60:00:f4:cb:98:22:f4:6e:
6b:38:9b:b7:e0:6f:61:1e:71:bf:f0:33:05:2d:e1:be:c9:e6:
e3:11:23:9e:e4:f1:ee:5c:72:6f:fd:2d:37:d1:c7:56:7b:d6:
49:36:17:d0:ec:97:42:b2:89:71:29:71:aa:fb:ed:d7:4e:e5:
ac:35:55:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:51:19 2026 by rpki-client