Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/HYA/0/3131342e32392e3234302e302f32322d3234203d3e2034373830.roa
File: 3131342e32392e3234302e302f32322d3234203d3e2034373830.roa (raw, json)
Hash identifier: KC1g1qM879l4ds0q/ydW26xvU61SJGGDoYP8GsPifjc=
Subject key identifier: 51:3F:C8:D8:56:04:BE:DE:87:CD:E5:A2:12:62:7F:79:25:58:70:1D
Certificate issuer: /CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A
Certificate serial: 6AEFD2BF3FD399F3D6F24D18038D2722097E466C
Authority key identifier: 72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/HYA/0/3131342e32392e3234302e302f32322d3234203d3e2034373830.roa
Signing time: Mon 11 May 2026 17:38:56 +0000
ROA not before: Mon 11 May 2026 17:33:56 +0000
ROA not after: Mon 10 May 2027 17:38:56 +0000
asID: 4780
IP address blocks: 114.29.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6a:ef:d2:bf:3f:d3:99:f3:d6:f2:4d:18:03:8d:27:22:09:7e:46:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A
Validity
Not Before: May 11 17:33:56 2026 GMT
Not After : May 10 17:38:56 2027 GMT
Subject: CN=513FC8D85604BEDE87CDE5A212627F792558701D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:25:a2:88:72:06:34:64:ad:04:28:3d:8f:f2:
b2:ef:ad:70:d3:43:e6:dc:b0:78:7e:08:fa:5a:92:
14:cb:58:16:4f:1a:16:a1:2e:09:5b:1f:18:82:c2:
fd:e9:5f:b6:94:61:dd:76:80:b7:72:e3:0b:28:82:
1c:ae:04:31:4d:17:a0:90:98:40:f7:f1:e6:0f:aa:
b4:50:c3:75:16:87:09:35:9e:01:6a:0d:e1:94:26:
44:7a:65:57:f7:2f:0c:ce:1f:12:84:b3:aa:fc:e6:
86:b3:41:71:83:35:c7:27:f2:5a:e6:b8:47:fc:19:
bb:9a:9c:c2:71:2c:80:f0:b6:c3:6d:ed:b2:1d:ce:
83:70:d9:85:67:c5:90:9c:b1:ae:73:4f:93:d4:24:
28:9a:50:00:ed:a7:b8:a3:68:aa:e4:4c:b4:38:63:
cc:9b:64:7e:a7:b2:4c:aa:b0:59:0b:1f:82:8c:1c:
81:ab:9d:51:47:b6:b2:17:28:e9:b2:37:de:f5:cf:
e5:15:f2:cd:1e:f6:88:3e:d2:ae:39:02:60:df:c3:
de:02:a7:48:53:92:67:08:11:d6:6a:26:0e:08:03:
97:e1:cc:96:81:99:0d:4c:8f:7d:a5:e3:f3:01:4f:
65:b9:02:c0:1b:4d:d0:d8:68:ca:22:5b:3a:36:f3:
e9:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:3F:C8:D8:56:04:BE:DE:87:CD:E5:A2:12:62:7F:79:25:58:70:1D
X509v3 Authority Key Identifier:
keyid:72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HYA/0/3131342e32392e3234302e302f32322d3234203d3e2034373830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.29.240.0/22
Signature Algorithm: sha256WithRSAEncryption
15:71:8e:3c:96:25:fb:c2:2b:31:ea:2c:fb:a4:4a:1c:5d:2c:
59:68:aa:ee:78:ee:7d:e1:86:e3:d3:12:f3:83:79:2b:b4:4c:
de:22:30:a0:61:55:1f:4d:58:08:b0:b4:95:95:a6:f6:b0:ea:
b5:1b:9f:c8:2b:27:c9:09:32:a2:29:6c:23:c1:6f:d3:ec:6c:
08:cc:73:b7:57:ef:2b:85:21:3a:96:87:84:00:94:7c:a7:99:
23:f0:d5:67:7f:e3:93:79:6b:ff:b3:f2:1c:88:7f:25:da:7d:
05:78:a3:25:d8:6f:0c:d5:53:4a:9e:cc:89:26:2b:80:88:f6:
0a:e6:eb:d3:37:a4:a1:b1:ed:56:e1:8f:78:dc:02:5b:a4:01:
5d:61:99:aa:83:5f:cf:d3:7c:2a:b2:be:aa:43:de:27:0a:28:
28:09:3b:ee:83:3e:2c:80:ba:3c:2e:ad:d9:db:e0:b6:41:d0:
d4:75:34:e8:47:9b:54:a7:9c:27:ae:f7:a0:01:f8:cb:74:c9:
69:36:a6:9c:9b:e2:00:e6:97:59:09:ba:6b:bf:ec:f6:e3:86:
90:7e:aa:3b:cf:9c:db:80:89:29:04:ee:36:35:fa:55:7b:de:
a8:9d:87:16:38:12:a0:6b:d1:bb:54:33:50:02:cc:87:c0:ae:
8e:6d:27:03
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgIUau/Svz/TmfPW8k0YA40nIgl+RmwwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNzI0ODdFMTdDMjQwRDU1QzE2RThGRTVCMEI3MUQ0NDk4
REQzMDk5QTAeFw0yNjA1MTExNzMzNTZaFw0yNzA1MTAxNzM4NTZaMDMxMTAvBgNV
BAMTKDUxM0ZDOEQ4NTYwNEJFREU4N0NERTVBMjEyNjI3Rjc5MjU1ODcwMUQwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRJaKIcgY0ZK0EKD2P8rLvrXDT
Q+bcsHh+CPpakhTLWBZPGhahLglbHxiCwv3pX7aUYd12gLdy4wsoghyuBDFNF6CQ
mED38eYPqrRQw3UWhwk1ngFqDeGUJkR6ZVf3LwzOHxKEs6r85oazQXGDNccn8lrm
uEf8GbuanMJxLIDwtsNt7bIdzoNw2YVnxZCcsa5zT5PUJCiaUADtp7ijaKrkTLQ4
Y8ybZH6nskyqsFkLH4KMHIGrnVFHtrIXKOmyN971z+UV8s0e9og+0q45AmDfw94C
p0hTkmcIEdZqJg4IA5fhzJaBmQ1Mj32l4/MBT2W5AsAbTdDYaMoiWzo28+m5AgMB
AAGjggHbMIIB1zAdBgNVHQ4EFgQUUT/I2FYEvt6HzeWiEmJ/eSVYcB0wHwYDVR0j
BBgwFoAUckh+F8JA1VwW6P5bC3HUSY3TCZowDgYDVR0PAQH/BAQDAgeAMGAGA1Ud
HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFlBLzAv
NzI0ODdFMTdDMjQwRDU1QzE2RThGRTVCMEI3MUQ0NDk4REQzMDk5QS5jcmwwbwYI
KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50
dy9ycGtpL1RXTklDQ0EvMS83MjQ4N0UxN0MyNDBENTVDMTZFOEZFNUIwQjcxRDQ0
OThERDMwOTlBLmNlcjB3BggrBgEFBQcBCwRrMGkwZwYIKwYBBQUHMAuGW3JzeW5j
Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSFlBLzAvMzEzMTM0MmUzMjM5MmUzMjM0
MzAyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM3MzgzMC5yb2EwGAYDVR0gAQH/
BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAnId
8DANBgkqhkiG9w0BAQsFAAOCAQEAFXGOPJYl+8IrMeos+6RKHF0sWWiq7njufeGG
49MS84N5K7RM3iIwoGFVH01YCLC0lZWm9rDqtRufyCsnyQkyoilsI8Fv0+xsCMxz
t1fvK4UhOpaHhACUfKeZI/DVZ3/jk3lr/7PyHIh/Jdp9BXijJdhvDNVTSp7MiSYr
gIj2Cubr0zekobHtVuGPeNwCW6QBXWGZqoNfz9N8KrK+qkPeJwooKAk77oM+LIC6
PC6t2dvgtkHQ1HU06EebVKecJ673oAH4y3TJaTamnJviAOaXWQm6a7/s9uOGkH6q
O8+c24CJKQTuNjX6VXveqJ2HFjgSoGvRu1QzUALMh8Cujm0nAw==
-----END CERTIFICATE-----
Generated at Wed May 13 03:17:14 2026 by rpki-client