Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34392e302f32342d3234203d3e203338383433.roa
File: 3232332e32372e34392e302f32342d3234203d3e203338383433.roa (raw, json)
Hash identifier: pUUC9KljeNsuI0n2sKbkGlB9AGTcVRjhiHbyS4e3+ao=
Subject key identifier: 02:88:BE:D8:0D:C1:FD:EB:CD:C9:09:63:39:F6:B4:94:A1:9D:42:43
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 4B254D302F0717467F01C60F614D6EE052C0C9A6
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34392e302f32342d3234203d3e203338383433.roa
Signing time: Mon 11 May 2026 17:11:21 +0000
ROA not before: Mon 11 May 2026 17:06:21 +0000
ROA not after: Mon 10 May 2027 17:11:21 +0000
asID: 38843
IP address blocks: 223.27.49.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4b:25:4d:30:2f:07:17:46:7f:01:c6:0f:61:4d:6e:e0:52:c0:c9:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:06:21 2026 GMT
Not After : May 10 17:11:21 2027 GMT
Subject: CN=0288BED80DC1FDEBCDC9096339F6B494A19D4243
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:65:59:06:2d:e0:6f:ea:21:3b:29:37:f2:05:
0c:fa:a8:ca:60:90:bb:39:2c:19:83:e8:cd:4f:bc:
e6:c5:21:87:b5:15:8f:1b:9a:76:a3:76:01:5d:b7:
59:df:3a:f7:a0:a8:48:1d:65:9c:2a:62:c6:dd:19:
fc:ab:f3:84:de:51:a0:11:b1:9d:5b:d7:2e:07:44:
74:07:db:9b:e2:99:e2:40:50:06:0c:6e:82:91:51:
ec:c4:1d:47:b0:bc:b3:41:bc:d5:4f:98:28:d0:07:
3a:40:91:9e:69:a7:4f:ee:b9:19:4b:41:c8:74:ed:
10:c6:0b:c3:87:4f:70:91:78:91:88:a9:04:ba:35:
2c:82:56:85:f2:c0:fb:09:a9:3b:be:a7:ef:66:b3:
8e:5a:fa:63:1b:fa:33:83:3d:df:f6:27:45:4d:de:
72:76:c9:ba:0a:06:22:d7:27:18:8f:6e:f4:23:dc:
53:c2:37:45:4e:91:a6:18:e5:46:fb:8b:bc:b6:f9:
95:fa:e6:40:ec:28:02:54:da:73:93:4a:1e:08:d8:
4d:b2:52:93:dd:b7:d2:ff:48:56:51:28:af:c1:f1:
e6:7e:9c:76:ee:07:90:73:25:f0:d6:3d:89:36:8a:
d5:ee:fd:e8:94:14:6e:d5:94:a8:9a:c7:45:2c:af:
1d:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:88:BE:D8:0D:C1:FD:EB:CD:C9:09:63:39:F6:B4:94:A1:9D:42:43
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34392e302f32342d3234203d3e203338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.27.49.0/24
Signature Algorithm: sha256WithRSAEncryption
4d:e6:c3:70:51:ab:12:96:37:b8:79:db:2d:d2:02:78:67:73:
a2:84:74:1b:a0:87:55:37:b9:74:62:fc:86:72:a6:da:c0:b6:
6a:fb:63:a2:42:48:18:f2:17:d1:77:67:f4:97:76:92:06:87:
e4:89:cc:31:3a:2b:5d:52:15:57:04:ae:f8:82:98:1b:9b:ed:
b1:cc:8e:83:52:62:10:b4:b3:26:c3:a5:52:9d:17:63:38:89:
64:a4:5f:da:63:52:3c:61:1a:cd:4c:a5:e2:1b:7d:f5:d9:f4:
df:da:86:15:02:76:32:70:7d:20:f7:84:7f:33:da:29:8e:fd:
d5:2c:10:79:88:26:69:36:64:c4:d1:9e:70:54:c7:92:74:38:
e5:3c:a3:3a:4f:b6:33:09:e3:9b:a6:47:0f:f3:11:67:e5:7f:
59:8f:15:22:df:e3:f0:3e:fc:da:a4:73:29:28:d3:e1:ed:34:
21:7a:91:5d:66:bb:6d:d2:98:01:e9:51:98:71:8f:49:50:b8:
cc:64:b5:9d:3e:1e:91:1c:30:85:46:93:bf:44:1b:1f:b2:53:
ac:cb:2d:a2:77:2f:da:f6:54:d1:89:0a:9f:4a:85:dc:96:00:
ab:b0:c5:6d:42:cc:79:f9:87:e7:28:8f:ba:a4:9c:17:bb:cf:
6a:7e:a6:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:49:31 2026 by rpki-client