Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SDCL-TW/0/3231312e37362e3138362e302f32332d3234203d3e203338303432.roa
File: 3231312e37362e3138362e302f32332d3234203d3e203338303432.roa (raw, json)
Hash identifier: 3Ay4JL1xheIDlwalZgSaaVSELk/2rTlAgpIQb9jIwnE=
Subject key identifier: CB:BF:20:64:83:5E:EE:8D:A5:02:C5:71:F5:49:76:EC:E1:39:4D:F0
Certificate issuer: /CN=CE11BDD44F66776624C4D9BE145C499FD144FEAE
Certificate serial: 1E8F7053A0E247E7A17D621F4B404C75E923ABE1
Authority key identifier: CE:11:BD:D4:4F:66:77:66:24:C4:D9:BE:14:5C:49:9F:D1:44:FE:AE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE11BDD44F66776624C4D9BE145C499FD144FEAE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/3231312e37362e3138362e302f32332d3234203d3e203338303432.roa
Signing time: Mon 11 May 2026 17:57:44 +0000
ROA not before: Mon 11 May 2026 17:52:44 +0000
ROA not after: Mon 10 May 2027 17:57:44 +0000
asID: 38042
IP address blocks: 211.76.186.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1e:8f:70:53:a0:e2:47:e7:a1:7d:62:1f:4b:40:4c:75:e9:23:ab:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE11BDD44F66776624C4D9BE145C499FD144FEAE
Validity
Not Before: May 11 17:52:44 2026 GMT
Not After : May 10 17:57:44 2027 GMT
Subject: CN=CBBF2064835EEE8DA502C571F54976ECE1394DF0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:da:ca:fb:12:da:c3:19:7c:1a:d5:cc:bf:32:
3b:e4:a5:b2:9b:86:89:1c:34:23:1a:b9:04:61:4a:
58:01:ff:9c:d4:1b:22:fc:69:34:6a:fc:49:17:ff:
c8:5e:d3:f8:3f:82:e7:c9:88:58:b4:1f:50:31:fe:
5c:ec:97:13:51:93:89:4a:bb:b5:15:d8:d4:33:30:
f8:fa:5c:1d:dd:be:14:9d:cb:f4:e7:48:d6:2a:bb:
33:96:ce:1a:1e:d1:cc:dd:17:35:8b:62:9d:8c:24:
d6:dc:93:35:89:8f:da:02:9f:f0:4e:ca:e1:34:3d:
0a:13:36:6c:23:be:00:73:62:a2:ce:4b:8d:fc:83:
30:53:88:10:21:9b:76:bc:60:80:51:29:05:a3:6b:
44:16:a2:8d:3e:db:1d:05:11:a5:12:4e:7c:89:f2:
92:08:3c:00:e0:5f:7e:cd:ba:7e:68:e0:3b:bd:ee:
d4:4f:33:b9:1c:89:49:12:00:e0:93:ef:4f:0c:93:
bc:29:86:5e:7b:b2:c7:a4:cb:46:e8:a1:b7:21:cf:
ce:99:a6:b9:7e:f8:0b:9b:6a:4a:96:9b:aa:ed:80:
10:e4:82:60:9d:3f:34:b8:a9:bf:13:72:f9:fc:2a:
4f:e5:54:ca:6c:b9:95:94:f6:5d:0a:b0:f8:fd:c4:
d3:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:BF:20:64:83:5E:EE:8D:A5:02:C5:71:F5:49:76:EC:E1:39:4D:F0
X509v3 Authority Key Identifier:
keyid:CE:11:BD:D4:4F:66:77:66:24:C4:D9:BE:14:5C:49:9F:D1:44:FE:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/CE11BDD44F66776624C4D9BE145C499FD144FEAE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE11BDD44F66776624C4D9BE145C499FD144FEAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/3231312e37362e3138362e302f32332d3234203d3e203338303432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
211.76.186.0/23
Signature Algorithm: sha256WithRSAEncryption
7b:d2:0d:ef:7b:03:60:7d:5a:56:b6:9a:0c:fc:a3:43:3c:cf:
f8:c6:98:fb:a6:6c:c8:b3:19:a1:f7:2a:8a:8f:6a:2e:81:7f:
7c:b1:76:6b:03:4d:78:55:17:8e:3e:ce:71:40:d8:af:93:05:
65:18:08:b3:51:f3:bc:01:68:ea:2e:57:d8:6a:00:a2:ee:36:
a4:7b:8e:ca:83:08:38:c5:96:fb:31:06:bf:cd:b3:84:b6:70:
9b:06:fd:b5:fe:40:c7:74:1e:98:00:bd:ec:1a:98:c0:30:06:
9a:cd:1c:d4:8d:2f:62:a1:19:86:51:62:55:da:6f:fa:f4:d6:
89:ea:b8:35:4d:63:a7:4d:da:cb:17:11:b6:69:4c:87:8b:c2:
a6:f8:37:22:4c:f0:a6:21:59:df:61:db:d2:bb:25:7f:4e:ec:
f3:40:22:21:f6:a1:99:12:78:34:ea:31:d6:c0:2d:ff:7f:5d:
cc:55:b9:c3:f8:10:3c:d4:58:9f:54:e3:7c:d5:7e:42:2d:03:
f2:de:6f:fb:51:15:a6:d9:28:23:d7:cb:6e:1d:87:a4:b4:8a:
c7:88:fe:3a:42:82:be:68:dd:ff:ab:38:c3:85:e2:c1:57:ed:
01:c7:07:f2:a5:30:6d:04:02:ec:e5:e2:99:bb:be:4e:05:0b:
b5:3e:14:b0
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed May 13 02:33:53 2026 by rpki-client