Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34382e302f32302d3230203d3e203133333335.roa
File: 3232332e32372e34382e302f32302d3230203d3e203133333335.roa (raw, json)
Hash identifier: pfZSy4RcmNZUO+lLNar8b4LCwsdShd8UQXha52Zq8Uo=
Subject key identifier: 82:CD:B5:0D:C0:0A:17:B6:A2:77:97:C1:6B:C4:09:3A:CC:3B:AA:A5
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 6508BC5FF4D92FB2894B9AFC779709698518BF55
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34382e302f32302d3230203d3e203133333335.roa
Signing time: Mon 11 May 2026 17:11:28 +0000
ROA not before: Mon 11 May 2026 17:06:28 +0000
ROA not after: Mon 10 May 2027 17:11:28 +0000
asID: 13335
IP address blocks: 223.27.48.0/20 maxlen: 20
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
65:08:bc:5f:f4:d9:2f:b2:89:4b:9a:fc:77:97:09:69:85:18:bf:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:06:28 2026 GMT
Not After : May 10 17:11:28 2027 GMT
Subject: CN=82CDB50DC00A17B6A27797C16BC4093ACC3BAAA5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a0:61:ac:c3:71:66:c5:2b:41:a1:e5:ab:d3:
82:33:8c:82:68:11:74:e4:be:ef:e6:40:08:95:ad:
7a:d5:53:21:c3:0d:0a:9e:fc:53:cf:3a:bc:34:21:
d4:81:01:f2:0c:79:28:e2:d6:2c:c9:b7:95:f4:90:
e0:b4:b3:e1:78:82:01:6b:48:71:ad:cc:b6:f8:25:
a6:e2:0d:ad:24:5c:48:b1:fd:56:cc:6d:c8:32:c0:
f2:37:75:ae:c6:5a:a2:e3:17:73:ee:a3:be:1c:fd:
ff:ba:31:f8:ac:5c:ab:e5:59:d3:f9:4a:c0:ea:3b:
5c:c0:0e:b2:5d:87:e4:82:18:0a:61:5b:14:23:2d:
93:7b:8a:6b:c7:12:36:43:c7:93:cf:a5:04:ae:7c:
9b:45:1d:1f:70:99:29:45:6c:d1:3d:28:3a:98:44:
ee:d4:6f:65:81:ad:0a:1d:ef:9a:07:81:ce:c5:bb:
85:18:16:5c:10:4e:0d:c2:15:c8:94:85:27:5a:ba:
1a:a9:54:dd:98:24:cd:61:39:77:c6:a1:a9:43:ed:
d5:d7:02:23:5c:a8:b1:3c:bc:a8:2d:2b:da:b9:ec:
3c:89:9b:4b:43:24:a6:a8:61:62:f7:a0:c7:02:1f:
ec:90:85:97:2a:56:4c:95:fa:43:db:71:6f:11:17:
67:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:CD:B5:0D:C0:0A:17:B6:A2:77:97:C1:6B:C4:09:3A:CC:3B:AA:A5
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34382e302f32302d3230203d3e203133333335.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/20
Signature Algorithm: sha256WithRSAEncryption
14:bd:62:ae:a8:1b:bd:b8:42:07:1d:29:00:e8:64:e0:be:c5:
dd:a8:ca:1a:92:4e:12:c8:b7:28:56:76:e5:ab:27:d6:a9:63:
b6:79:32:73:2f:9a:2f:44:47:3e:84:5d:b1:1c:04:4b:0a:cd:
6b:c2:d3:27:23:17:04:9e:58:bf:ee:06:db:72:dc:9d:cf:5c:
74:31:89:e4:1e:4b:a9:51:b3:58:7c:01:ef:97:b3:52:28:28:
dc:0d:ec:0e:0b:fd:76:92:bd:6f:2b:02:dc:ba:2b:d5:4d:19:
26:62:32:44:1e:42:da:59:41:7e:44:dc:83:56:50:1f:36:35:
bc:cb:9c:9b:43:47:dd:93:1c:31:79:8b:98:cb:d0:af:15:0c:
ca:f1:03:cf:01:33:3f:0e:de:9c:6b:6c:a4:2d:fc:51:8e:17:
df:41:45:ba:66:c5:b2:7b:8f:05:91:fb:61:c7:28:3f:f7:28:
01:76:d3:5b:65:0f:0c:7a:ec:c3:7d:12:76:44:27:54:fb:e4:
0a:29:91:a5:a8:0f:c0:6a:07:29:94:6d:98:56:6f:62:d5:c6:
5d:a8:4d:cb:bb:1e:bc:15:51:75:6a:74:0e:90:3e:1a:68:18:
4e:92:ed:11:02:0d:ef:63:65:0d:6a:75:2f:21:e3:2b:c9:29:
37:34:3e:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:36:46 2026 by rpki-client