Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/M2NIM/1/3135372e32302e3133352e302f32342d3234203d3e20313339333538.roa
File: 3135372e32302e3133352e302f32342d3234203d3e20313339333538.roa (raw, json)
Hash identifier: NLBte/Xngt5YiZc1cKE0ofpG8JJd20KTmhuGOcBYInE=
Subject key identifier: 26:BF:E4:68:E7:14:50:29:74:36:51:0F:E4:57:96:20:65:B5:CB:08
Certificate issuer: /CN=B5BCB843FC62D50C018D67AAECEC768693B898BB
Certificate serial: 47BF4D7AE521261837E6EAEE61BB2B38FB70D80F
Authority key identifier: B5:BC:B8:43:FC:62:D5:0C:01:8D:67:AA:EC:EC:76:86:93:B8:98:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B5BCB843FC62D50C018D67AAECEC768693B898BB.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/M2NIM/1/3135372e32302e3133352e302f32342d3234203d3e20313339333538.roa
Signing time: Mon 11 May 2026 17:36:43 +0000
ROA not before: Mon 11 May 2026 17:31:43 +0000
ROA not after: Mon 10 May 2027 17:36:43 +0000
asID: 139358
IP address blocks: 157.20.135.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:bf:4d:7a:e5:21:26:18:37:e6:ea:ee:61:bb:2b:38:fb:70:d8:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B5BCB843FC62D50C018D67AAECEC768693B898BB
Validity
Not Before: May 11 17:31:43 2026 GMT
Not After : May 10 17:36:43 2027 GMT
Subject: CN=26BFE468E71450297436510FE457962065B5CB08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:35:56:ed:05:f2:ac:1e:70:aa:a4:0e:44:b8:
c1:96:6b:09:36:df:67:c5:75:dc:4c:14:07:e3:cf:
de:aa:f1:40:ec:15:b9:92:89:c3:d7:b1:95:ba:4c:
7b:50:06:34:ec:58:e8:a4:d9:91:9f:8e:3c:ba:b9:
f2:8d:eb:e6:a6:d8:c0:05:cc:83:82:ec:76:91:f0:
7a:fc:33:9a:81:5d:67:c0:e3:6a:7e:92:7a:21:5b:
74:b6:84:6e:38:44:79:44:f8:2d:fd:84:d1:ec:b7:
f8:e1:42:3b:66:ff:a9:be:cb:5d:ac:4a:34:9e:20:
ad:eb:77:db:b5:c6:57:78:ad:55:67:10:55:3b:26:
51:30:80:ac:0d:bd:77:b8:4f:b3:55:c0:b2:43:73:
bd:2d:df:9e:1c:e6:fe:52:09:bd:d9:a9:01:4e:67:
7e:28:bf:58:c3:13:23:d3:1d:0e:18:c5:a5:60:3c:
d1:52:a9:3d:a0:d0:a3:06:2c:41:f8:67:6c:46:66:
d8:ab:8a:74:8c:7f:0a:c4:3f:43:2f:4a:71:9d:bb:
c9:8d:ef:1f:05:f9:22:5b:40:eb:73:48:0b:48:a6:
3c:fd:23:8e:10:ee:7d:35:cd:e3:50:5f:c5:b8:3d:
89:39:0c:3e:bc:41:bb:1c:2c:62:4e:0e:29:f0:10:
58:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:BF:E4:68:E7:14:50:29:74:36:51:0F:E4:57:96:20:65:B5:CB:08
X509v3 Authority Key Identifier:
keyid:B5:BC:B8:43:FC:62:D5:0C:01:8D:67:AA:EC:EC:76:86:93:B8:98:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/M2NIM/1/B5BCB843FC62D50C018D67AAECEC768693B898BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B5BCB843FC62D50C018D67AAECEC768693B898BB.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/M2NIM/1/3135372e32302e3133352e302f32342d3234203d3e20313339333538.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.135.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:a6:7c:3a:fc:2d:73:e7:8e:1d:df:f5:a9:4c:b2:5e:19:57:
77:63:11:40:ad:7f:c4:e1:b2:72:0f:c5:30:61:95:07:56:50:
61:59:1e:22:f3:03:4a:a5:fa:30:c3:89:ea:3b:33:67:70:fa:
af:3e:97:c0:8b:7a:01:0c:4d:49:62:78:e7:37:c2:05:fe:09:
2a:98:7d:6a:23:b6:7c:c8:73:82:3b:46:26:2d:70:a2:98:ac:
ee:46:3d:29:3f:c3:0e:b1:78:35:cd:c9:88:4a:60:d1:4d:61:
5f:70:97:ec:75:e3:11:4c:ca:53:7b:56:25:e2:d8:01:a4:3a:
43:6e:cb:a1:bc:92:c2:cd:7e:5d:86:01:9c:30:32:a0:68:43:
d2:f6:4d:84:25:2e:63:0c:30:ab:28:67:86:6d:f2:7b:57:9e:
96:18:6c:4c:71:c6:0e:8d:d9:f1:ec:93:0f:e4:eb:b0:65:dc:
02:aa:90:ff:c9:1e:64:4d:98:49:bd:35:6b:be:3d:a5:28:2d:
96:20:bd:ea:0a:40:c0:31:7e:24:37:02:79:e7:07:53:1f:60:
cd:89:3d:fb:65:c4:a0:20:77:2e:c5:9b:43:4f:8f:23:0d:e1:
08:f3:6b:e7:5f:8b:3a:a6:b2:bb:7d:24:f7:53:57:db:a7:08:
ff:42:37:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:12:26 2026 by rpki-client