Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/HOSTIN/1/322e35382e3234332e302f32342d3234203d3e2039363738.roa
File: 322e35382e3234332e302f32342d3234203d3e2039363738.roa (raw, json)
Hash identifier: R7ZTnM2GzL6tGXWETAhZV1QG0NLgjbwtPX+n/Lsjjmg=
Subject key identifier: 38:8D:CF:8E:B9:7E:4A:64:0D:5A:0E:FE:12:E5:B9:1B:3C:24:A8:78
Certificate issuer: /CN=BDC7715D29F4E43198D59315B71674EE9F648F6D
Certificate serial: 236480DF1EAB1C6B317CD2251D0AE4B2CCA0F708
Authority key identifier: BD:C7:71:5D:29:F4:E4:31:98:D5:93:15:B7:16:74:EE:9F:64:8F:6D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BDC7715D29F4E43198D59315B71674EE9F648F6D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/HOSTIN/1/322e35382e3234332e302f32342d3234203d3e2039363738.roa
Signing time: Mon 11 May 2026 17:39:09 +0000
ROA not before: Mon 11 May 2026 17:34:09 +0000
ROA not after: Mon 10 May 2027 17:39:09 +0000
asID: 9678
IP address blocks: 2.58.243.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
23:64:80:df:1e:ab:1c:6b:31:7c:d2:25:1d:0a:e4:b2:cc:a0:f7:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDC7715D29F4E43198D59315B71674EE9F648F6D
Validity
Not Before: May 11 17:34:09 2026 GMT
Not After : May 10 17:39:09 2027 GMT
Subject: CN=388DCF8EB97E4A640D5A0EFE12E5B91B3C24A878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:55:14:33:2a:79:5d:1f:59:07:72:50:7c:50:
97:50:d8:32:ef:22:78:31:70:ed:49:9c:5d:61:d3:
73:3e:27:54:78:60:45:da:0c:98:b0:45:86:23:2e:
0b:22:98:53:7a:e9:71:99:66:05:c9:1d:0a:58:93:
6b:0b:bc:b3:d9:24:ba:b3:dc:cb:c3:bd:84:1b:13:
98:7e:7b:00:4d:58:46:f1:7b:c2:9a:bc:b6:7e:c0:
48:ba:67:cb:d9:a4:62:37:7e:2e:d2:df:e2:ad:fd:
4d:90:6c:4e:8c:62:29:c5:95:41:1c:e2:c2:07:cd:
68:75:aa:b7:cc:b8:57:a3:dc:5c:dc:90:12:d1:97:
77:a0:06:7d:50:b1:97:82:d1:1e:30:58:97:cb:49:
57:f7:c2:c3:21:74:d9:a4:be:cf:02:ee:b4:d4:b5:
f2:70:5f:44:bc:c3:13:02:57:8d:da:67:37:c1:15:
05:b1:6e:3e:55:b0:37:ef:fa:4e:b9:81:7c:be:f3:
55:9f:0f:e0:6a:a6:a8:8a:c3:08:a1:78:27:7c:03:
c3:12:86:83:97:60:b4:45:51:6b:ad:73:50:0e:ae:
e6:aa:a3:c2:b5:ab:98:e6:7e:8e:93:b7:b7:a1:5e:
b6:47:0a:6a:a6:e7:e8:95:55:2b:88:fb:c2:8d:c2:
28:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:8D:CF:8E:B9:7E:4A:64:0D:5A:0E:FE:12:E5:B9:1B:3C:24:A8:78
X509v3 Authority Key Identifier:
keyid:BD:C7:71:5D:29:F4:E4:31:98:D5:93:15:B7:16:74:EE:9F:64:8F:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/HOSTIN/1/BDC7715D29F4E43198D59315B71674EE9F648F6D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BDC7715D29F4E43198D59315B71674EE9F648F6D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HOSTIN/1/322e35382e3234332e302f32342d3234203d3e2039363738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.243.0/24
Signature Algorithm: sha256WithRSAEncryption
82:30:e8:fa:be:4b:f0:b1:91:db:f0:e5:c9:86:01:80:fd:99:
e1:62:b0:db:8c:95:ba:13:48:f2:ec:95:3f:76:39:17:54:75:
b7:be:64:a4:a3:09:20:5b:8f:be:e9:78:c5:85:56:9b:11:b1:
b4:c0:d1:15:82:4e:06:af:8f:ea:43:12:49:a7:9a:22:8e:23:
ed:46:54:00:4f:f8:d5:8b:c4:23:54:82:64:7c:7a:b7:ae:18:
b2:32:a1:ef:61:c1:1b:fd:88:29:d0:81:62:6b:69:11:cd:47:
07:0b:40:03:9a:30:03:c8:06:7a:ba:ce:a6:67:f4:14:03:15:
bd:c3:c4:8f:3a:03:b5:07:08:2f:93:26:e6:ae:12:d8:a6:ae:
2c:15:6c:4c:ba:08:0b:68:32:e3:a6:c4:3d:fb:bb:5e:39:01:
4b:8a:2e:b6:2a:b2:d6:1b:f8:fa:96:4d:bf:67:ec:af:71:4e:
97:17:9a:47:0b:d5:2b:3c:42:50:96:9c:b5:b2:ad:2a:f5:04:
ae:c2:0d:fc:f8:d7:a5:b6:c3:a4:cd:13:83:a3:66:40:cc:51:
f7:ef:da:18:99:c0:99:c9:62:e3:08:48:60:90:80:5d:ac:fe:
f0:79:b0:98:00:61:1f:ef:67:a7:b3:1a:5f:96:4e:59:0b:9c:
8e:a4:1a:e6
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIUI2SA3x6rHGsxfNIlHQrkssyg9wgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkRDNzcxNUQyOUY0RTQzMTk4RDU5MzE1QjcxNjc0RUU5
RjY0OEY2RDAeFw0yNjA1MTExNzM0MDlaFw0yNzA1MTAxNzM5MDlaMDMxMTAvBgNV
BAMTKDM4OERDRjhFQjk3RTRBNjQwRDVBMEVGRTEyRTVCOTFCM0MyNEE4NzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGVRQzKnldH1kHclB8UJdQ2DLv
IngxcO1JnF1h03M+J1R4YEXaDJiwRYYjLgsimFN66XGZZgXJHQpYk2sLvLPZJLqz
3MvDvYQbE5h+ewBNWEbxe8KavLZ+wEi6Z8vZpGI3fi7S3+Kt/U2QbE6MYinFlUEc
4sIHzWh1qrfMuFej3FzckBLRl3egBn1QsZeC0R4wWJfLSVf3wsMhdNmkvs8C7rTU
tfJwX0S8wxMCV43aZzfBFQWxbj5VsDfv+k65gXy+81WfD+BqpqiKwwiheCd8A8MS
hoOXYLRFUWutc1AOruaqo8K1q5jmfo6Tt7ehXrZHCmqm5+iVVSuI+8KNwiglAgMB
AAGjggHdMIIB2TAdBgNVHQ4EFgQUOI3Pjrl+SmQNWg7+EuW5GzwkqHgwHwYDVR0j
BBgwFoAUvcdxXSn05DGY1ZMVtxZ07p9kj20wDgYDVR0PAQH/BAQDAgeAMGMGA1Ud
HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSE9TVElO
LzEvQkRDNzcxNUQyOUY0RTQzMTk4RDU5MzE1QjcxNjc0RUU5RjY0OEY2RC5jcmww
bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p
Yy50dy9ycGtpL1RXTklDQ0EvMy9CREM3NzE1RDI5RjRFNDMxOThENTkzMTVCNzE2
NzRFRTlGNjQ4RjZELmNlcjB2BggrBgEFBQcBCwRqMGgwZgYIKwYBBQUHMAuGWnJz
eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSE9TVElOLzEvMzIyZTM1MzgyZTMy
MzQzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDM5MzYzNzM4LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
AjrzMA0GCSqGSIb3DQEBCwUAA4IBAQCCMOj6vkvwsZHb8OXJhgGA/ZnhYrDbjJW6
E0jy7JU/djkXVHW3vmSkowkgW4++6XjFhVabEbG0wNEVgk4Gr4/qQxJJp5oijiPt
RlQAT/jVi8QjVIJkfHq3rhiyMqHvYcEb/Ygp0IFia2kRzUcHC0ADmjADyAZ6us6m
Z/QUAxW9w8SPOgO1BwgvkybmrhLYpq4sFWxMuggLaDLjpsQ9+7teOQFLii62KrLW
G/j6lk2/Z+yvcU6XF5pHC9UrPEJQlpy1sq0q9QSuwg38+NeltsOkzRODo2ZAzFH3
79oYmcCZyWLjCEhgkIBdrP7webCYAGEf72ensxpflk5ZC5yOpBrm
-----END CERTIFICATE-----
Generated at Wed May 13 02:51:40 2026 by rpki-client