Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SIMPLE/0/323430313a626136303a3a2f33322d3438203d3e2039393233.roa
File: 323430313a626136303a3a2f33322d3438203d3e2039393233.roa (raw, json)
Hash identifier: 5TVrVE33kIL0XhQaO3gte1KLCXkOhF1o3uG63J4/55s=
Subject key identifier: D6:AF:B5:1A:EC:66:45:5A:E3:5E:B9:10:AE:E8:C6:25:07:26:3B:9F
Certificate issuer: /CN=5407824F2094BDB5E96C450A4F36563A73225CCB
Certificate serial: 226B72C31B81316439A22DD1C9C162D1E3FE5C6D
Authority key identifier: 54:07:82:4F:20:94:BD:B5:E9:6C:45:0A:4F:36:56:3A:73:22:5C:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5407824F2094BDB5E96C450A4F36563A73225CCB.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SIMPLE/0/323430313a626136303a3a2f33322d3438203d3e2039393233.roa
Signing time: Mon 11 May 2026 17:39:36 +0000
ROA not before: Mon 11 May 2026 17:34:36 +0000
ROA not after: Mon 10 May 2027 17:39:36 +0000
asID: 9923
IP address blocks: 2401:ba60::/32 maxlen: 48
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:6b:72:c3:1b:81:31:64:39:a2:2d:d1:c9:c1:62:d1:e3:fe:5c:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5407824F2094BDB5E96C450A4F36563A73225CCB
Validity
Not Before: May 11 17:34:36 2026 GMT
Not After : May 10 17:39:36 2027 GMT
Subject: CN=D6AFB51AEC66455AE35EB910AEE8C62507263B9F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:3e:f7:00:2e:40:d9:45:b6:a5:b4:c9:c0:23:
39:a1:89:fb:4b:6c:45:d0:9f:fb:82:f2:9c:ed:25:
36:2a:56:2e:9f:4c:c2:6e:6e:fc:4a:ea:c1:12:26:
09:5c:ca:3d:be:33:03:4c:91:c0:20:9f:5d:fe:c1:
79:df:96:3f:93:58:fe:39:d3:f8:2b:50:a8:eb:b0:
6e:10:5b:f9:2d:d9:bc:a3:33:3e:86:0b:dd:cb:a8:
90:68:74:c8:92:f8:0d:0e:7d:a4:4a:19:1c:96:aa:
af:d1:81:78:b1:df:c5:d6:78:8c:1c:1b:8a:57:13:
a0:dc:e2:c2:0d:1f:ac:dd:76:69:f7:90:bc:cf:17:
6c:36:9e:23:e0:4a:9f:e5:31:b8:b5:c5:4b:b0:a5:
6a:8c:d7:63:b4:4c:40:3d:c6:b2:e1:0e:91:4e:7e:
05:bc:b3:3c:3c:7a:e7:9d:4b:28:9e:af:16:8e:84:
47:33:a2:c2:9a:5b:c5:50:f1:1a:3b:05:59:bc:96:
98:15:e7:42:0e:1e:27:4b:af:97:5a:d4:fc:a6:5a:
75:34:31:c7:8f:7c:d2:c0:f3:e9:f4:a3:98:46:0b:
1e:f9:c4:bb:33:90:aa:cb:91:d1:23:90:c9:7c:89:
d3:7a:5e:95:7f:9d:9d:eb:a4:1a:28:2a:19:ac:30:
bb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:AF:B5:1A:EC:66:45:5A:E3:5E:B9:10:AE:E8:C6:25:07:26:3B:9F
X509v3 Authority Key Identifier:
keyid:54:07:82:4F:20:94:BD:B5:E9:6C:45:0A:4F:36:56:3A:73:22:5C:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SIMPLE/0/5407824F2094BDB5E96C450A4F36563A73225CCB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5407824F2094BDB5E96C450A4F36563A73225CCB.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SIMPLE/0/323430313a626136303a3a2f33322d3438203d3e2039393233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2401:ba60::/32
Signature Algorithm: sha256WithRSAEncryption
98:07:d5:2c:14:a4:6b:6d:46:5c:a5:a1:c0:c9:46:c3:a9:58:
45:c1:56:45:c6:5e:75:c3:23:26:0a:08:38:3e:65:c6:03:33:
24:36:da:81:44:b5:ce:d8:07:58:ff:3c:a3:81:15:66:e9:35:
d0:51:ae:e1:2e:d6:22:8e:4c:6c:5e:c8:3b:fb:43:74:8d:a4:
e8:d8:1a:59:e9:d4:56:46:d1:96:53:88:1d:0c:2e:f4:8c:53:
fc:02:74:1e:e7:c5:91:57:00:99:07:18:3f:7a:ea:46:81:b9:
62:97:03:58:2f:46:23:75:d5:d9:5c:c8:c7:3f:ee:ec:b8:5a:
d0:c0:a7:3a:0e:95:6d:1b:ac:a5:62:d4:f9:b6:8c:24:07:d4:
39:e4:72:93:41:52:75:32:38:d4:91:19:84:03:6f:5a:0e:7b:
af:1e:bc:d4:78:7b:82:65:be:e6:4b:54:5a:83:58:52:dd:10:
38:f9:b6:51:02:90:80:60:1d:23:00:08:99:6b:df:65:87:9a:
d4:3f:2d:bf:a6:e3:b7:b5:9d:4a:f0:83:ab:b7:af:63:1c:55:
20:7f:ab:0c:dc:47:5b:a3:2c:80:fc:40:90:a1:4c:b1:7d:19:
19:3b:76:ff:96:8c:86:1f:cf:20:95:cf:fa:66:45:56:84:83:
18:c2:e0:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:40:49 2026 by rpki-client