Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/OPENRICH/0/323430353a623863303a3a2f33322d3634203d3e20313331363737.roa
File: 323430353a623863303a3a2f33322d3634203d3e20313331363737.roa (raw, json)
Hash identifier: AnPDeDj6hR2bEdYvy6SAFA3A/pHmArnFaxzCcI0NAKA=
Subject key identifier: B1:18:68:9A:E4:CA:B6:0F:8B:B3:A5:03:4C:A8:90:24:7F:A9:69:A7
Certificate issuer: /CN=61F2C234A51074E0978404BDC79AA79130040B00
Certificate serial: 7DA03688BA6AC6AEB38885CA43F77C5384DD1C86
Authority key identifier: 61:F2:C2:34:A5:10:74:E0:97:84:04:BD:C7:9A:A7:91:30:04:0B:00
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/OPENRICH/0/323430353a623863303a3a2f33322d3634203d3e20313331363737.roa
Signing time: Mon 11 May 2026 17:09:17 +0000
ROA not before: Mon 11 May 2026 17:04:17 +0000
ROA not after: Mon 10 May 2027 17:09:17 +0000
asID: 131677
IP address blocks: 2405:b8c0::/32 maxlen: 64
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:a0:36:88:ba:6a:c6:ae:b3:88:85:ca:43:f7:7c:53:84:dd:1c:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61F2C234A51074E0978404BDC79AA79130040B00
Validity
Not Before: May 11 17:04:17 2026 GMT
Not After : May 10 17:09:17 2027 GMT
Subject: CN=B118689AE4CAB60F8BB3A5034CA890247FA969A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:52:f1:89:3d:66:1b:ea:83:c1:0e:81:6e:95:
29:a4:42:3f:4d:18:02:e0:21:e2:82:a0:3d:be:82:
9e:d1:f0:87:1f:29:cd:d1:29:2f:fb:90:cb:60:3f:
b7:fd:98:4e:95:d8:f2:9f:48:68:08:74:af:a8:9a:
d2:7f:cd:e8:d9:a1:f9:15:9f:19:b8:a2:98:31:e8:
fc:53:d0:ce:79:a8:73:c9:9a:bd:2d:f8:dc:0d:d7:
54:59:bb:8e:2f:ab:9e:44:c7:92:b3:f2:56:ad:8d:
f2:71:f8:3c:63:e0:b6:0f:3a:cd:ee:7a:00:f5:ee:
ad:ec:02:95:14:de:07:5f:43:1e:2b:f7:6a:82:2f:
2f:9e:95:ec:8e:e8:1b:78:b1:c8:98:73:b0:51:b8:
c1:ef:bc:74:68:63:82:36:e4:df:aa:22:62:a8:7d:
d8:10:cd:21:50:fc:22:d3:0e:0d:61:63:7b:54:82:
2e:ca:d0:96:1e:05:fa:f5:e6:e6:8c:86:7d:9f:f3:
82:59:a3:51:28:6e:e7:7e:2d:95:8a:96:d2:a1:f2:
3e:c5:f8:e5:96:34:fe:9e:90:e3:d6:f8:2c:5d:c8:
33:bf:ff:cf:15:96:3d:05:78:92:01:ce:0b:cf:e0:
f3:ab:54:a9:28:81:d8:f9:d1:d0:26:03:b0:81:b0:
2d:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:18:68:9A:E4:CA:B6:0F:8B:B3:A5:03:4C:A8:90:24:7F:A9:69:A7
X509v3 Authority Key Identifier:
keyid:61:F2:C2:34:A5:10:74:E0:97:84:04:BD:C7:9A:A7:91:30:04:0B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/OPENRICH/0/323430353a623863303a3a2f33322d3634203d3e20313331363737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
93:ef:3e:81:94:fd:db:31:e6:b5:ab:96:be:f4:5a:3b:1c:a6:
1b:20:4e:01:5f:04:24:e7:8c:10:1c:88:05:24:8e:b4:a6:1e:
f3:00:d5:8c:f8:d0:84:f3:d8:cf:34:de:3a:5e:f8:c7:c4:d0:
c8:3b:fc:82:cd:de:70:ca:01:2a:12:a1:29:5b:65:8d:34:6e:
0a:78:5d:da:7b:b7:ce:e7:a1:67:14:09:38:b8:bb:03:bc:24:
98:28:f1:da:f4:7d:06:b9:67:f1:01:03:58:c6:e9:ad:10:0a:
b3:1f:1e:7d:11:ef:07:1f:0c:e7:10:2c:10:06:05:37:b8:ca:
c2:04:4d:a3:a4:8d:cd:5f:45:55:dc:4c:e0:ce:e1:6d:da:6e:
74:26:1b:36:9b:a3:c2:54:38:ef:8c:65:52:5f:c0:21:8a:d2:
58:e8:b9:a9:84:58:ae:2a:c1:6c:09:52:08:b6:07:d5:e9:3d:
cc:58:31:63:69:30:37:04:1e:ab:3d:47:c6:30:22:02:f4:dc:
aa:c0:df:fb:5d:c3:a4:51:93:f5:13:62:ed:ac:a7:82:5e:83:
33:66:ad:07:9a:66:97:f7:1f:a1:9e:d5:53:df:b4:ef:f9:20:
fe:41:6c:8c:52:3e:4c:e8:b4:e8:80:61:58:1e:af:9c:41:59:
b5:83:1e:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:50:35 2026 by rpki-client