Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34302e302f32312d3234203d3e203338383433.roa
File: 3232332e32372e34302e302f32312d3234203d3e203338383433.roa (raw, json)
Hash identifier: VSXXvQjdW+TuFtVEtH0mFIYNRKxbP6je5uC3Qd9gqGo=
Subject key identifier: 4D:78:F9:3B:74:F7:F8:1C:85:C6:F3:C9:12:25:BE:5A:00:0E:E6:27
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 0477B094A66278CBEA5A1F991D90C4CDAB3B5269
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34302e302f32312d3234203d3e203338383433.roa
Signing time: Mon 11 May 2026 17:11:18 +0000
ROA not before: Mon 11 May 2026 17:06:18 +0000
ROA not after: Mon 10 May 2027 17:11:18 +0000
asID: 38843
IP address blocks: 223.27.40.0/21 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:77:b0:94:a6:62:78:cb:ea:5a:1f:99:1d:90:c4:cd:ab:3b:52:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:06:18 2026 GMT
Not After : May 10 17:11:18 2027 GMT
Subject: CN=4D78F93B74F7F81C85C6F3C91225BE5A000EE627
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b6:dc:ff:cc:ff:b3:b2:31:f3:22:e8:ef:eb:
0f:5a:c3:08:8e:e9:c0:ae:09:25:d1:9c:0d:fd:60:
f1:54:cc:21:ef:cd:48:78:13:38:e9:77:30:55:c1:
13:9b:5a:73:e0:af:72:4a:d7:cf:ce:04:1c:b0:41:
92:9b:7e:f9:88:94:06:e6:b0:ba:0d:35:62:64:d0:
68:a8:bc:e9:53:2a:20:80:0a:e9:4e:e0:d1:84:e6:
9c:61:d5:89:a9:3a:93:a2:bc:3a:2a:84:12:8c:6e:
64:d4:e7:b1:ab:a7:fa:2e:3c:52:11:45:d0:c5:c8:
8a:b8:6d:38:07:86:4d:7c:36:38:60:8e:41:19:82:
b6:0f:d0:81:a0:46:e7:69:b9:fa:cc:06:44:93:db:
3d:87:4d:af:8e:17:bd:81:23:4c:e1:1f:c3:4e:25:
5c:ab:74:d2:78:83:f4:f7:05:4d:18:9d:06:63:af:
d3:14:3c:5f:8f:06:21:6d:6f:be:cb:ab:01:e9:ca:
98:71:5e:2b:97:7d:b7:9c:3a:4b:71:58:a1:c0:cc:
c4:fc:71:eb:32:e9:c4:68:96:fc:d5:14:3d:d5:6c:
b0:7e:d0:72:1a:5b:d5:96:f4:7f:0c:f9:63:c5:92:
0f:84:72:85:f4:18:5a:52:7d:9b:b7:cf:6a:1d:73:
0c:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:78:F9:3B:74:F7:F8:1C:85:C6:F3:C9:12:25:BE:5A:00:0E:E6:27
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34302e302f32312d3234203d3e203338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.27.40.0/21
Signature Algorithm: sha256WithRSAEncryption
86:a8:d0:a8:1a:62:a7:6e:c9:b4:ae:b3:03:01:d7:8f:e1:ab:
12:ba:99:da:c0:ae:5a:e9:62:7b:3e:0d:0a:30:05:e8:b4:6d:
fa:9e:3c:5d:45:8b:94:bd:19:da:13:96:62:08:ff:33:12:a6:
8a:1a:b6:b3:aa:c7:ad:cd:45:0d:8f:59:33:5e:a5:fa:56:8d:
48:fa:de:b9:c3:51:82:c3:a1:72:b1:e8:2a:20:43:6f:62:d0:
4f:f6:81:ab:70:61:00:1b:8e:f0:87:4e:43:4a:45:35:36:4e:
1a:5b:9f:80:fd:2a:27:8b:67:9c:e2:93:f4:79:e1:4a:9a:ce:
01:c2:05:50:de:12:41:d6:c3:0b:96:9c:a7:b4:2e:0c:49:ad:
84:90:bd:7c:12:c4:76:f4:61:5e:f7:8f:cf:d7:a3:b8:68:e1:
9a:7c:87:1c:f2:74:38:9a:11:29:0a:f4:f5:09:57:8d:04:9b:
63:3b:d5:10:99:e5:93:cb:98:c5:91:37:29:dd:51:37:5e:c5:
35:43:49:5b:ca:4a:de:12:ac:8d:54:79:1e:4b:45:4d:3f:96:
88:93:55:2b:b5:3a:7e:5c:60:3c:13:50:df:94:91:70:f4:df:
e6:80:5a:d7:cd:59:14:39:87:2e:6c:04:fe:8c:e8:c9:28:fb:
36:15:e1:e2
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIUBHewlKZieMvqWh+ZHZDEzas7UmkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw
ODJDMTc5MTAeFw0yNjA1MTExNzA2MThaFw0yNzA1MTAxNzExMThaMDMxMTAvBgNV
BAMTKDRENzhGOTNCNzRGN0Y4MUM4NUM2RjNDOTEyMjVCRTVBMDAwRUU2MjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvttz/zP+zsjHzIujv6w9awwiO
6cCuCSXRnA39YPFUzCHvzUh4EzjpdzBVwRObWnPgr3JK18/OBBywQZKbfvmIlAbm
sLoNNWJk0GiovOlTKiCACulO4NGE5pxh1YmpOpOivDoqhBKMbmTU57Grp/ouPFIR
RdDFyIq4bTgHhk18NjhgjkEZgrYP0IGgRudpufrMBkST2z2HTa+OF72BI0zhH8NO
JVyrdNJ4g/T3BU0YnQZjr9MUPF+PBiFtb77LqwHpyphxXiuXfbecOktxWKHAzMT8
cesy6cRolvzVFD3VbLB+0HIaW9WW9H8M+WPFkg+EcoX0GFpSfZu3z2odcwz7AgMB
AAGjggHdMIIB2TAdBgNVHQ4EFgQUTXj5O3T3+ByFxvPJEiW+WgAO5icwHwYDVR0j
BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud
HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w
LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G
CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu
dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy
QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu
YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTM0
MzAyZTMwMmYzMjMxMmQzMjM0MjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD
3xsoMA0GCSqGSIb3DQEBCwUAA4IBAQCGqNCoGmKnbsm0rrMDAdeP4asSupnawK5a
6WJ7Pg0KMAXotG36njxdRYuUvRnaE5ZiCP8zEqaKGrazqsetzUUNj1kzXqX6Vo1I
+t65w1GCw6FysegqIENvYtBP9oGrcGEAG47wh05DSkU1Nk4aW5+A/Soni2ec4pP0
eeFKms4BwgVQ3hJB1sMLlpyntC4MSa2EkL18EsR29GFe94/P16O4aOGafIcc8nQ4
mhEpCvT1CVeNBJtjO9UQmeWTy5jFkTcp3VE3XsU1Q0lbykreEqyNVHkeS0VNP5aI
k1UrtTp+XGA8E1DflJFw9N/mgFrXzVkUOYcubAT+jOjJKPs2FeHi
-----END CERTIFICATE-----
Generated at Wed May 13 02:37:34 2026 by rpki-client