Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34362e302f32342d3234203d3e203338383433.roa
File: 3232332e32372e34362e302f32342d3234203d3e203338383433.roa (raw, json)
Hash identifier: a2hrjD66ZdhlBljvVwvvFiVAzI1QlTFtrEh4Vn1VumI=
Subject key identifier: 2F:97:46:16:53:BD:E7:78:29:3D:8D:82:01:B3:35:C3:A6:C8:E4:81
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 04B9CD6BC682AC55FD9F6608E951AFF7D532DB1A
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34362e302f32342d3234203d3e203338383433.roa
Signing time: Mon 11 May 2026 17:08:27 +0000
ROA not before: Mon 11 May 2026 17:03:27 +0000
ROA not after: Mon 10 May 2027 17:08:27 +0000
asID: 38843
IP address blocks: 223.27.46.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
04:b9:cd:6b:c6:82:ac:55:fd:9f:66:08:e9:51:af:f7:d5:32:db:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:03:27 2026 GMT
Not After : May 10 17:08:27 2027 GMT
Subject: CN=2F97461653BDE778293D8D8201B335C3A6C8E481
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:3f:52:f5:6e:dd:9c:41:f0:97:4c:9f:b1:00:
b6:54:c0:01:d0:a9:3b:46:52:91:83:97:e6:f9:0a:
36:5d:98:71:b9:5c:f9:e8:0b:6d:30:58:62:6d:4a:
08:4a:8b:b5:d1:2c:42:0c:b7:b8:14:e0:cf:bd:f4:
1f:86:09:a3:fb:74:67:3f:7f:21:49:ca:23:7d:60:
83:07:c7:fd:fb:e7:22:da:e7:aa:5a:46:e2:e9:1a:
23:70:3f:0c:77:a4:31:4f:0b:07:99:bb:33:5e:0d:
f9:7c:40:38:9b:51:25:ff:f6:82:33:1c:8f:2a:2d:
99:be:5a:da:96:70:f9:3d:a9:f3:b6:53:b2:eb:b9:
a5:f6:cb:d0:1a:a7:76:58:a7:ad:45:05:d3:06:bc:
2b:db:9b:a3:65:d7:dd:99:54:cd:c4:16:21:5a:3f:
af:8a:2a:9b:d1:0b:81:1c:e5:4f:66:58:57:bd:0c:
a2:96:16:3d:35:a8:8d:04:df:46:96:e1:14:db:0d:
c5:51:e5:f0:66:16:aa:3c:20:e3:eb:7b:fa:e4:ad:
bd:b3:60:b4:70:96:18:47:f8:6f:64:d8:d5:02:5f:
82:3e:9c:bf:04:4b:7b:9f:a1:29:e0:d1:a0:6c:3f:
be:ba:f3:1b:83:9c:47:5b:4d:ec:ac:18:d2:a6:98:
53:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:97:46:16:53:BD:E7:78:29:3D:8D:82:01:B3:35:C3:A6:C8:E4:81
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34362e302f32342d3234203d3e203338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.27.46.0/24
Signature Algorithm: sha256WithRSAEncryption
a3:5d:29:4f:b9:43:2e:9b:e2:ab:16:ad:96:54:75:6e:ab:f6:
7f:b2:5d:d4:36:13:0e:6d:5e:fd:10:98:8c:48:87:87:e1:7d:
94:26:6d:c1:63:11:6f:2b:dc:e5:c9:2a:3f:71:4f:42:0e:56:
8a:82:e0:0e:4a:17:70:b8:94:77:40:07:37:03:43:76:89:89:
b6:5a:fd:83:d9:79:03:08:04:9a:80:07:6c:e0:99:66:53:97:
a1:62:3b:44:7b:5a:a2:4a:00:73:84:1f:fa:0a:d8:64:8c:fa:
cd:eb:08:33:7f:c2:8b:e4:72:2f:d1:a7:04:20:61:f3:6d:02:
3b:db:60:d8:e8:69:d8:50:44:03:8c:a1:c0:4c:aa:d7:ac:88:
a7:07:66:97:48:9f:80:40:ea:45:6e:25:c5:50:84:59:09:0f:
29:3b:17:8d:bc:16:bf:34:4f:52:35:e4:3b:02:7f:a5:07:ac:
bb:ee:b5:f1:c2:df:43:a3:48:c9:75:54:97:fe:92:4f:18:ea:
c1:3f:3d:2f:db:bb:27:10:c3:89:7a:f2:91:92:0e:8f:2d:6a:
f6:51:13:2c:74:3e:cc:ea:4c:af:0e:37:58:67:3e:11:83:c2:
ab:4e:e1:4e:c6:72:17:ec:19:3f:1d:2c:0f:cd:cb:43:bd:44:
7b:3a:bd:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:36:32 2026 by rpki-client