Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SDCL-TW/0/3230322e3134382e3232302e302f32332d3234203d3e20313334383233.roa
File: 3230322e3134382e3232302e302f32332d3234203d3e20313334383233.roa (raw, json)
Hash identifier: jOramKZ+p8IwNeLLsXerl9TVbe7RADM835SAcBWesfU=
Subject key identifier: 91:18:61:0E:30:1B:1D:9E:94:21:39:C3:8A:8D:9A:4A:56:46:DC:D0
Certificate issuer: /CN=CE11BDD44F66776624C4D9BE145C499FD144FEAE
Certificate serial: 4C8776C121D116BED58B761F33BF94DED085A9FE
Authority key identifier: CE:11:BD:D4:4F:66:77:66:24:C4:D9:BE:14:5C:49:9F:D1:44:FE:AE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE11BDD44F66776624C4D9BE145C499FD144FEAE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/3230322e3134382e3232302e302f32332d3234203d3e20313334383233.roa
Signing time: Mon 11 May 2026 17:55:51 +0000
ROA not before: Mon 11 May 2026 17:50:51 +0000
ROA not after: Mon 10 May 2027 17:55:51 +0000
asID: 134823
IP address blocks: 202.148.220.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:87:76:c1:21:d1:16:be:d5:8b:76:1f:33:bf:94:de:d0:85:a9:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE11BDD44F66776624C4D9BE145C499FD144FEAE
Validity
Not Before: May 11 17:50:51 2026 GMT
Not After : May 10 17:55:51 2027 GMT
Subject: CN=9118610E301B1D9E942139C38A8D9A4A5646DCD0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:c1:05:6f:f0:c0:72:73:a4:56:1a:66:57:56:
c6:4a:e8:be:5d:ef:4f:88:df:76:0a:d9:1b:59:6c:
8b:84:70:93:27:88:76:55:3d:ee:ab:36:4e:c0:f8:
bc:15:76:4e:38:0b:f6:9c:69:b7:70:e8:76:31:5d:
e2:ba:69:52:be:a2:6f:92:6e:e5:78:8f:f9:ce:ae:
10:22:af:aa:58:84:ec:3f:d8:25:a5:6a:41:7e:d9:
63:a5:87:b3:a0:2a:a3:24:2b:87:97:4e:17:57:ee:
cb:2c:65:30:a6:dc:e6:7e:3d:2c:4b:93:43:a3:77:
f3:ed:67:7f:04:ee:bd:95:dc:37:6f:88:af:0f:05:
09:63:68:3f:87:7b:1c:45:75:71:3f:fc:40:7c:de:
e7:e5:03:5d:e1:2e:1e:10:97:08:18:5c:bf:52:8e:
ee:13:9c:bc:cf:65:bd:04:75:02:6b:2d:72:45:7f:
2a:63:d2:14:fa:cf:6f:03:1b:0c:c4:e1:d0:d6:7e:
3a:70:b3:0d:61:a0:bc:c2:6b:82:07:47:54:a2:61:
c7:31:7a:97:64:b7:3a:dc:da:a4:5c:c2:fe:4f:77:
48:35:64:e6:43:08:95:55:76:78:62:65:9a:1b:7e:
d2:4c:62:9f:84:14:9b:b1:ff:61:76:52:d7:02:7f:
40:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:18:61:0E:30:1B:1D:9E:94:21:39:C3:8A:8D:9A:4A:56:46:DC:D0
X509v3 Authority Key Identifier:
keyid:CE:11:BD:D4:4F:66:77:66:24:C4:D9:BE:14:5C:49:9F:D1:44:FE:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/CE11BDD44F66776624C4D9BE145C499FD144FEAE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE11BDD44F66776624C4D9BE145C499FD144FEAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/3230322e3134382e3232302e302f32332d3234203d3e20313334383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.148.220.0/23
Signature Algorithm: sha256WithRSAEncryption
48:98:a3:c2:7e:e8:c9:f3:46:ac:9d:29:33:75:b6:24:c3:05:
9d:9a:cc:7a:ab:c0:de:b5:4b:71:16:7f:89:50:6c:75:66:15:
bf:8f:6c:73:b5:61:1c:9a:39:bc:9b:7c:73:57:b0:5e:46:34:
6e:d6:07:f5:c9:fa:bd:e4:a6:35:28:c1:d9:5e:3a:f5:4f:1a:
1c:9e:da:07:d6:5f:14:2f:27:bb:eb:19:21:c3:df:43:55:0f:
d1:d3:30:98:e0:d6:63:06:14:1a:bf:7d:45:ef:6d:7c:1d:83:
38:8d:82:bd:80:db:5c:4b:82:ba:da:42:ba:d1:6d:44:04:8e:
70:aa:38:bf:22:5a:c7:41:05:d3:37:a9:d8:75:ae:50:85:67:
d2:ba:78:bf:aa:3d:fd:f6:71:ee:5e:4b:3e:69:9d:ad:fa:cc:
86:ba:53:c7:d5:46:95:a5:4c:95:87:d0:37:c3:dd:7d:6d:f7:
0c:3c:41:18:44:da:cc:df:ff:6f:d6:b5:fa:0c:b8:a4:b2:b4:
96:11:33:10:ed:c1:0f:a4:50:0e:88:aa:c2:8f:c3:c7:68:e1:
5d:00:a5:e2:0b:65:9d:e0:9d:3f:a8:01:49:c5:25:8a:c8:e9:
eb:f4:54:c1:5e:a1:2e:ad:d1:0d:fb:95:4a:ab:42:b8:57:1d:
30:03:e7:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:58:49 2026 by rpki-client