Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33362e302f32322d3234203d3e203338383433.roa
File: 3232332e32372e33362e302f32322d3234203d3e203338383433.roa (raw, json)
Hash identifier: NIMXuMPvugc8pLEHkl94+xb7dBfEG7U6VOOCOtq+iY0=
Subject key identifier: 78:1D:20:75:FE:C9:62:E9:F4:5B:8E:83:9B:B7:71:E6:A1:75:E0:FB
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 20A734E6787A21EC0346616CBB61C9D285254831
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33362e302f32322d3234203d3e203338383433.roa
Signing time: Mon 11 May 2026 17:11:17 +0000
ROA not before: Mon 11 May 2026 17:06:17 +0000
ROA not after: Mon 10 May 2027 17:11:17 +0000
asID: 38843
IP address blocks: 223.27.36.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
20:a7:34:e6:78:7a:21:ec:03:46:61:6c:bb:61:c9:d2:85:25:48:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:06:17 2026 GMT
Not After : May 10 17:11:17 2027 GMT
Subject: CN=781D2075FEC962E9F45B8E839BB771E6A175E0FB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:b0:58:bc:8e:d4:23:72:0d:f9:f0:04:4b:c9:
4d:d9:b8:34:f0:a1:3b:1f:63:e2:a2:82:f1:37:2d:
6b:fa:bf:c3:15:80:05:0a:95:5e:83:53:ee:46:8a:
d5:3d:a2:3e:09:38:d7:d0:df:70:e9:2f:55:1b:0c:
7c:5b:53:6f:77:24:a2:f9:1a:29:62:b3:a5:a3:8d:
08:2c:4a:87:01:51:66:f1:43:1c:52:58:a1:ff:b9:
ee:47:e5:fb:56:60:05:1b:23:e6:f1:17:e4:56:ee:
d1:3d:e5:91:b4:a8:4a:0e:06:e2:00:ce:68:30:1e:
96:ef:41:fa:c2:77:d9:df:c0:4a:fc:53:53:00:ae:
e3:d3:a8:69:21:93:20:f8:8b:80:3c:cd:de:4b:9a:
0b:98:e9:b6:92:07:87:a7:b9:3a:fb:6a:e9:0a:66:
ec:93:44:db:0b:2b:7f:1d:13:d4:13:e8:58:14:4b:
08:01:1f:13:17:c3:e8:d2:36:9c:45:b0:de:2c:6f:
6c:02:85:8a:b4:46:aa:7e:d1:9b:f3:09:19:df:6d:
fd:f0:11:ad:11:4d:8b:e8:5e:12:65:ba:1a:24:3d:
ba:e0:93:36:24:c4:84:88:17:2f:82:f1:2b:ed:25:
cc:f8:30:ad:ba:03:2c:bd:95:f2:81:7a:27:0d:db:
f0:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:1D:20:75:FE:C9:62:E9:F4:5B:8E:83:9B:B7:71:E6:A1:75:E0:FB
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33362e302f32322d3234203d3e203338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.27.36.0/22
Signature Algorithm: sha256WithRSAEncryption
50:c3:52:80:79:7c:4b:ea:dd:0e:46:2f:86:ad:60:cb:9d:84:
44:d3:7e:e5:4d:2e:ce:59:cd:e2:d0:0e:54:45:a0:80:4e:42:
67:10:e7:25:c4:87:9f:89:6d:9e:34:2d:d2:eb:f5:c0:62:2c:
a7:d8:9d:c0:20:57:96:aa:20:81:2a:42:70:d0:97:7e:f4:a0:
c1:cb:7a:56:26:85:d8:1c:66:b2:3e:23:fb:00:e5:4b:2c:f9:
9c:a3:03:f9:cd:61:af:b4:9a:64:2c:3b:ce:83:e8:59:81:0a:
80:a3:27:5c:77:53:70:cb:a7:92:03:65:e6:d9:26:11:e6:fe:
08:12:78:f5:9f:13:e0:22:f6:10:b1:95:28:a3:63:a8:60:4e:
da:ca:f7:76:40:42:39:99:68:a1:d8:6d:d9:cf:48:1f:aa:59:
81:d6:99:3e:c4:0b:90:b5:41:8a:35:87:9c:0d:fb:4c:39:40:
6e:84:46:e4:9e:a2:34:c3:12:d9:52:7c:fd:44:c0:df:6e:e9:
b6:98:76:59:1a:41:64:53:63:bb:cc:2e:29:26:54:03:e2:e2:
7e:3d:54:75:71:26:b9:33:e5:46:cc:45:1b:d9:6c:e6:88:95:
70:50:43:db:3f:10:f2:25:d8:e3:a0:e8:33:60:10:e4:55:25:
e3:ad:7a:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:50:59 2026 by rpki-client