Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33332e302f32342d3234203d3e203338383433.roa
File: 3232332e32372e33332e302f32342d3234203d3e203338383433.roa (raw, json)
Hash identifier: iHBwGEcq/Toxs0xqrQqekg2RJ0LsdlJYQvYmHH854FQ=
Subject key identifier: 69:7A:A5:40:14:E6:41:3A:5C:9F:50:43:DE:02:95:0F:3A:4F:70:68
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 45C446EF6DDA79F0D8B91E7D7BDC213CBD73BD40
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33332e302f32342d3234203d3e203338383433.roa
Signing time: Mon 11 May 2026 17:08:22 +0000
ROA not before: Mon 11 May 2026 17:03:22 +0000
ROA not after: Mon 10 May 2027 17:08:22 +0000
asID: 38843
IP address blocks: 223.27.33.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
45:c4:46:ef:6d:da:79:f0:d8:b9:1e:7d:7b:dc:21:3c:bd:73:bd:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:03:22 2026 GMT
Not After : May 10 17:08:22 2027 GMT
Subject: CN=697AA54014E6413A5C9F5043DE02950F3A4F7068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ee:20:32:bc:9e:8f:75:28:90:cc:6f:f8:73:
96:39:48:db:48:e4:ac:db:2c:ec:78:7d:bd:79:9e:
89:65:4e:00:38:f1:bb:67:6d:99:3f:44:af:13:b9:
31:aa:b6:50:fa:ba:e9:d0:ff:b5:fe:5e:58:3b:f4:
1a:93:dd:8c:1c:59:89:2e:60:94:07:48:3c:ea:1d:
77:aa:17:94:d4:f6:89:7a:ac:55:be:19:9a:c4:40:
5d:22:f0:82:56:6f:2b:fe:73:5b:16:6d:f7:18:fe:
08:1b:55:40:9f:a3:dd:12:7e:78:0c:00:8a:5a:51:
52:6b:c9:7c:ce:3c:68:c4:b3:b3:c7:48:0e:3f:6f:
e8:b2:02:93:fa:44:43:f2:63:a0:92:83:70:16:71:
2a:fd:a9:aa:36:af:61:7e:41:65:2e:28:cf:77:53:
41:5e:dc:49:92:7c:2d:98:af:0c:0d:96:7c:cd:1b:
1c:f2:93:23:7d:aa:82:1e:61:87:71:a7:92:d8:7f:
c1:06:5b:74:68:80:1d:49:c6:53:36:78:40:e6:7a:
45:4c:fa:77:dd:10:4e:51:74:ac:2f:b9:84:19:aa:
9c:14:d6:d6:43:cc:21:2c:60:04:fa:d7:84:15:dd:
80:93:c9:2d:77:5c:af:c3:ae:81:fd:e0:b7:58:df:
fc:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:7A:A5:40:14:E6:41:3A:5C:9F:50:43:DE:02:95:0F:3A:4F:70:68
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33332e302f32342d3234203d3e203338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.27.33.0/24
Signature Algorithm: sha256WithRSAEncryption
61:c9:98:e2:cb:07:82:cc:39:a7:d7:c8:5f:c2:e5:b0:8c:41:
57:72:41:2c:3c:af:84:be:81:53:9e:ed:c5:b2:e4:d0:1a:86:
f4:9e:eb:3d:a0:57:22:7a:c8:41:c5:96:e5:25:46:f8:e3:25:
18:f4:24:5d:9b:94:0d:6f:fd:a6:26:17:81:36:12:27:29:fa:
d6:f7:cc:6b:f7:90:3e:65:16:06:0b:aa:d2:50:e6:57:fa:24:
7c:7e:00:ec:c7:cf:b2:3e:62:f8:e6:4e:dd:0c:37:ae:c6:68:
5e:fc:a6:57:82:ea:c6:cf:7e:75:ae:f8:ae:82:e1:a2:d0:5b:
92:f1:4c:47:32:6c:5c:7a:7a:4e:f7:3d:e4:f5:8f:8e:b6:fe:
74:aa:2e:08:35:dc:04:ba:de:30:30:7b:c6:13:68:7a:7a:0b:
d3:ca:3d:8b:53:2b:f5:1a:50:81:33:95:82:3c:69:5a:74:23:
62:da:8f:73:41:b3:0c:58:00:b2:0c:5c:02:09:9b:35:a7:10:
c3:32:5a:7e:10:67:9a:07:ea:58:cb:9e:14:da:9a:88:54:a7:
2e:d1:52:99:2a:9c:7c:17:97:37:bc:da:1a:ed:28:36:ed:a1:
41:60:ec:04:c5:3d:38:6d:06:61:60:d3:c4:4c:55:4b:ec:f1:
c8:df:33:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:37:14 2026 by rpki-client