Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e36302e302f32322d3234203d3e203338383433.roa
File: 3232332e32372e36302e302f32322d3234203d3e203338383433.roa (raw, json)
Hash identifier: Iu4kXW2mIvv/rtarl5r24OA1cGkwlakapbEmYLOqCEw=
Subject key identifier: 64:F0:35:CF:47:E8:BA:ED:79:CD:D8:B3:E4:7B:70:68:41:94:83:44
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 7D54F36FC06B56C0F4FAA23F31E69D19E5AE25CF
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e36302e302f32322d3234203d3e203338383433.roa
Signing time: Mon 11 May 2026 17:11:28 +0000
ROA not before: Mon 11 May 2026 17:06:28 +0000
ROA not after: Mon 10 May 2027 17:11:28 +0000
asID: 38843
IP address blocks: 223.27.60.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7d:54:f3:6f:c0:6b:56:c0:f4:fa:a2:3f:31:e6:9d:19:e5:ae:25:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:06:28 2026 GMT
Not After : May 10 17:11:28 2027 GMT
Subject: CN=64F035CF47E8BAED79CDD8B3E47B706841948344
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2c:d8:7b:60:72:25:d9:ba:8e:c5:92:65:01:
59:6d:1e:28:ae:f5:b0:b6:3b:13:ed:ca:08:bd:16:
b0:c7:6c:40:e5:f0:2d:63:b9:b7:ff:b2:49:d7:8e:
98:d7:35:5d:b9:72:97:73:73:45:4d:3f:e3:ed:0b:
6b:54:55:13:87:c7:b9:d5:6e:7d:2c:57:db:13:14:
33:d8:d6:ca:fa:f1:75:f8:0a:3d:0b:b6:04:d8:bd:
75:06:6d:de:3b:7c:86:8a:97:fc:07:45:ee:39:4c:
f5:7f:41:1a:8e:c4:5c:b6:2e:51:f1:59:5d:e0:11:
59:77:d6:83:aa:39:35:44:4f:75:41:a6:35:db:bf:
c3:c9:b1:04:a9:f8:c0:08:af:a5:a5:37:25:1b:fb:
cf:6e:4b:de:63:57:d4:c6:20:a5:6a:ce:22:e9:a9:
09:fd:5f:a0:23:2f:2f:64:93:ca:25:f8:25:d2:59:
ff:ee:0e:41:e9:42:87:66:0b:f5:bb:ec:3b:ca:83:
e6:84:b4:05:83:1b:2c:f6:fd:5b:8d:da:c0:9b:a4:
c2:55:86:be:8e:cd:51:62:4e:be:cc:f2:a9:d9:33:
ab:5c:a6:d5:7d:d5:89:59:c9:57:1e:7b:3e:81:b4:
2a:a8:87:c2:70:fd:41:cf:b7:a5:76:16:e9:1d:17:
f7:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:F0:35:CF:47:E8:BA:ED:79:CD:D8:B3:E4:7B:70:68:41:94:83:44
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e36302e302f32322d3234203d3e203338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.27.60.0/22
Signature Algorithm: sha256WithRSAEncryption
ac:79:25:c2:0a:05:5c:c2:51:4c:fc:8c:fe:1d:f3:57:b7:d4:
de:ca:03:af:f8:fd:c5:e7:2c:09:35:e6:31:ac:34:3e:ea:11:
69:40:dd:8a:36:57:96:1c:77:f0:0a:2e:3a:85:f8:d0:6f:04:
7b:fe:77:90:a7:1b:61:7c:ef:6e:47:ba:74:52:06:40:50:be:
9b:83:f7:73:5b:4a:67:d9:56:2d:53:34:35:2f:1d:2f:80:78:
0c:6b:32:b5:04:9a:34:71:b3:6b:0d:c5:45:32:64:4a:0e:36:
b3:b5:3b:c4:c8:8f:fc:ec:56:c0:74:e6:92:de:f2:47:6e:ff:
8c:73:05:15:43:b0:9f:ff:49:f4:d4:46:72:20:3c:bf:14:1d:
47:b1:67:c5:5a:33:5c:d9:b2:ca:4c:82:2f:5e:03:f4:7c:60:
54:b2:83:0f:8f:20:14:d9:fb:6c:33:6b:01:23:21:6e:a7:c7:
9e:1b:59:1f:84:a1:d0:73:1d:16:00:01:af:80:95:df:b2:31:
ec:6c:17:b5:e4:78:f3:dd:cf:03:88:d6:ae:53:8a:a1:3b:c0:
20:14:be:91:19:11:a5:bb:37:14:5a:fc:3e:7d:87:e3:38:93:
ce:40:da:29:ad:9f:67:ab:44:77:49:9d:82:50:85:91:71:b1:
08:6e:8a:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:51:01 2026 by rpki-client