Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TANET/0/AS18177.roa
File: AS18177.roa (raw, json)
Hash identifier: fxlV5+GVr2otH1tYq4wDBYNDHzH9J2LM+ShVYw3RZos=
Subject key identifier: C1:68:B3:1E:DF:B1:F2:FC:1F:03:3D:AC:61:4F:0C:03:17:FE:73:A0
Certificate issuer: /CN=6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD
Certificate serial: 14E5FB92CDDFB3FCE3D076D7D92CC900600CA963
Authority key identifier: 6E:9C:32:26:68:2A:EF:A8:D6:7B:8A:C6:08:CC:CF:C8:A0:96:10:CD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TANET/0/AS18177.roa
Signing time: Tue 12 May 2026 01:50:23 +0000
ROA not before: Tue 12 May 2026 01:45:23 +0000
ROA not after: Tue 11 May 2027 01:50:23 +0000
asID: 18177
IP address blocks: 120.114.0.0/16 maxlen: 16
120.115.0.0/16 maxlen: 16
120.116.0.0/16 maxlen: 16
120.117.0.0/16 maxlen: 16
163.26.0.0/16 maxlen: 16
163.28.112.0/20 maxlen: 20
203.64.18.0/23 maxlen: 23
203.64.20.0/23 maxlen: 23
203.64.53.0/24 maxlen: 24
203.64.230.0/23 maxlen: 23
203.64.232.0/22 maxlen: 22
203.64.236.0/23 maxlen: 23
203.68.23.0/24 maxlen: 24
203.68.26.0/23 maxlen: 23
203.68.74.0/24 maxlen: 24
203.68.102.0/24 maxlen: 24
203.68.156.0/22 maxlen: 22
203.68.160.0/22 maxlen: 22
203.68.164.0/24 maxlen: 24
203.68.179.0/24 maxlen: 24
203.68.180.0/22 maxlen: 22
203.68.184.0/23 maxlen: 23
203.68.191.0/24 maxlen: 24
203.71.52.0/23 maxlen: 23
203.71.54.0/24 maxlen: 24
203.71.76.0/24 maxlen: 24
203.71.96.0/24 maxlen: 24
203.71.112.0/22 maxlen: 22
203.71.116.0/23 maxlen: 23
203.71.176.0/24 maxlen: 24
203.71.220.0/22 maxlen: 22
203.72.21.0/24 maxlen: 24
203.72.42.0/24 maxlen: 24
203.72.191.0/24 maxlen: 24
203.72.206.0/23 maxlen: 23
203.72.208.0/24 maxlen: 24
210.59.12.0/22 maxlen: 22
210.59.16.0/22 maxlen: 22
210.59.20.0/23 maxlen: 23
210.59.35.0/24 maxlen: 24
210.59.92.0/24 maxlen: 24
210.59.95.0/24 maxlen: 24
210.59.96.0/23 maxlen: 23
210.59.98.0/24 maxlen: 24
210.60.2.0/23 maxlen: 23
210.60.4.0/22 maxlen: 22
210.60.36.0/24 maxlen: 24
210.60.50.0/23 maxlen: 23
210.60.73.0/24 maxlen: 24
210.60.74.0/23 maxlen: 23
210.60.136.0/22 maxlen: 22
210.60.165.0/24 maxlen: 24
210.60.224.0/24 maxlen: 24
210.60.246.0/24 maxlen: 24
210.60.253.0/24 maxlen: 24
210.70.37.0/24 maxlen: 24
210.70.111.0/24 maxlen: 24
210.70.112.0/22 maxlen: 22
210.70.137.0/24 maxlen: 24
210.70.138.0/24 maxlen: 24
210.70.145.0/24 maxlen: 24
210.70.146.0/23 maxlen: 23
210.70.148.0/22 maxlen: 22
210.70.152.0/21 maxlen: 21
210.70.160.0/20 maxlen: 20
210.70.176.0/21 maxlen: 21
210.70.250.0/23 maxlen: 23
210.71.26.0/23 maxlen: 23
210.71.31.0/24 maxlen: 24
210.71.80.0/23 maxlen: 23
210.71.82.0/24 maxlen: 24
210.71.102.0/24 maxlen: 24
210.71.109.0/24 maxlen: 24
210.71.112.0/23 maxlen: 23
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.crl
rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.mft
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:30:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:e5:fb:92:cd:df:b3:fc:e3:d0:76:d7:d9:2c:c9:00:60:0c:a9:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD
Validity
Not Before: May 12 01:45:23 2026 GMT
Not After : May 11 01:50:23 2027 GMT
Subject: CN=C168B31EDFB1F2FC1F033DAC614F0C0317FE73A0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:74:56:e9:9c:4c:c5:54:af:01:9c:61:3a:bf:
7a:88:c5:ed:51:a7:ff:57:d2:61:e3:6c:06:5c:d3:
bc:08:27:ec:c4:39:a2:e2:fe:69:28:27:ca:a0:7c:
f3:a2:3d:e2:43:99:79:67:4b:60:1c:5f:2c:6b:67:
5e:88:d3:81:dc:bb:d2:fe:56:0d:8f:c6:5e:67:fa:
c7:48:a4:6e:e2:d2:e0:84:74:5e:17:b8:fd:3b:15:
22:46:b6:ce:53:c3:3e:42:c7:a1:31:74:d4:a2:b3:
98:ff:30:53:a7:d8:d6:d2:73:84:96:fb:3a:dc:f6:
f8:f2:e7:8c:73:33:97:33:b4:ac:5d:e4:ae:ee:e8:
48:ed:3e:41:95:96:bd:f6:1c:86:ef:77:c2:d6:3d:
6c:b7:05:55:c9:a5:ee:d1:f9:3d:a7:41:96:2c:90:
a5:32:9c:f4:41:bb:44:f8:a5:2f:f5:16:b4:2a:42:
2b:60:01:b8:43:70:79:0a:a5:dc:57:d2:be:02:7f:
3f:27:4e:fd:f7:7d:6e:0e:98:b8:32:f5:ea:f9:11:
9f:f2:db:1e:d6:a0:dc:b1:8d:49:54:13:3c:6f:63:
db:66:53:8b:f2:f6:9c:51:f9:45:3c:80:01:ad:b5:
ea:a1:03:b6:be:7e:30:27:cd:c3:62:00:f2:20:b4:
88:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:68:B3:1E:DF:B1:F2:FC:1F:03:3D:AC:61:4F:0C:03:17:FE:73:A0
X509v3 Authority Key Identifier:
keyid:6E:9C:32:26:68:2A:EF:A8:D6:7B:8A:C6:08:CC:CF:C8:A0:96:10:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TANET/0/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6E9C3226682AEFA8D67B8AC608CCCFC8A09610CD.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TANET/0/AS18177.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
120.114.0.0-120.117.255.255
163.26.0.0/16
163.28.112.0/20
203.64.18.0-203.64.21.255
203.64.53.0/24
203.64.230.0-203.64.237.255
203.68.23.0/24
203.68.26.0/23
203.68.74.0/24
203.68.102.0/24
203.68.156.0-203.68.164.255
203.68.179.0-203.68.185.255
203.68.191.0/24
203.71.52.0-203.71.54.255
203.71.76.0/24
203.71.96.0/24
203.71.112.0-203.71.117.255
203.71.176.0/24
203.71.220.0/22
203.72.21.0/24
203.72.42.0/24
203.72.191.0/24
203.72.206.0-203.72.208.255
210.59.12.0-210.59.21.255
210.59.35.0/24
210.59.92.0/24
210.59.95.0-210.59.98.255
210.60.2.0-210.60.7.255
210.60.36.0/24
210.60.50.0/23
210.60.73.0-210.60.75.255
210.60.136.0/22
210.60.165.0/24
210.60.224.0/24
210.60.246.0/24
210.60.253.0/24
210.70.37.0/24
210.70.111.0-210.70.115.255
210.70.137.0-210.70.138.255
210.70.145.0-210.70.183.255
210.70.250.0/23
210.71.26.0/23
210.71.31.0/24
210.71.80.0-210.71.82.255
210.71.102.0/24
210.71.109.0/24
210.71.112.0/23
Signature Algorithm: sha256WithRSAEncryption
a2:f9:0b:ac:1d:c4:f5:4d:ad:b0:61:64:68:ec:65:8d:64:b4:
d1:9a:f8:8a:60:bd:7e:93:8d:e3:37:ab:cc:aa:5f:b0:c7:fa:
a9:88:71:0a:27:7e:61:7c:0f:a8:99:a2:48:98:81:5d:a6:2c:
b2:58:f7:7e:40:ac:3a:3b:8c:34:24:72:ee:1f:4b:d7:dd:f5:
4c:9c:83:2c:c0:ff:41:45:01:42:6a:02:83:6f:6b:de:18:b5:
13:e7:29:78:8a:79:60:b4:de:49:67:fd:92:81:85:77:87:ab:
ff:7f:ed:4d:ea:8b:82:57:93:86:93:da:04:c9:6e:44:41:e6:
66:8c:26:99:5c:59:ee:6a:94:08:27:79:58:49:35:b7:51:df:
e0:e8:f5:4f:42:39:a1:f4:8e:10:48:6f:b8:85:4d:98:85:d1:
7c:b6:1d:d7:f6:94:55:0a:1a:f9:6a:81:48:58:0a:24:e6:ea:
39:c7:ab:66:1d:61:2e:38:42:c4:7a:66:84:33:3a:62:9f:5e:
15:0d:3b:ed:81:5d:a1:b5:1a:f3:80:a7:2a:06:94:e2:83:99:
15:62:62:3c:7d:1c:93:ca:ae:08:a5:bc:6c:40:44:1d:6f:c9:
92:d4:d7:23:1c:1f:ed:44:73:3f:dc:10:f4:31:60:ec:8c:e4:
53:cc:fc:c3
-----BEGIN CERTIFICATE-----
MIIGQzCCBSugAwIBAgIUFOX7ks3fs/zj0HbX2SzJAGAMqWMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNkU5QzMyMjY2ODJBRUZBOEQ2N0I4QUM2MDhDQ0NGQzhB
MDk2MTBDRDAeFw0yNjA1MTIwMTQ1MjNaFw0yNzA1MTEwMTUwMjNaMDMxMTAvBgNV
BAMTKEMxNjhCMzFFREZCMUYyRkMxRjAzM0RBQzYxNEYwQzAzMTdGRTczQTAwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCVdFbpnEzFVK8BnGE6v3qIxe1R
p/9X0mHjbAZc07wIJ+zEOaLi/mkoJ8qgfPOiPeJDmXlnS2AcXyxrZ16I04Hcu9L+
Vg2Pxl5n+sdIpG7i0uCEdF4XuP07FSJGts5Twz5Cx6ExdNSis5j/MFOn2NbSc4SW
+zrc9vjy54xzM5cztKxd5K7u6EjtPkGVlr32HIbvd8LWPWy3BVXJpe7R+T2nQZYs
kKUynPRBu0T4pS/1FrQqQitgAbhDcHkKpdxX0r4Cfz8nTv33fW4OmLgy9er5EZ/y
2x7WoNyxjUlUEzxvY9tmU4vy9pxR+UU8gAGtteqhA7a+fjAnzcNiAPIgtIgZAgMB
AAGjggNNMIIDSTAdBgNVHQ4EFgQUwWizHt+x8vwfAz2sYU8MAxf+c6AwHwYDVR0j
BBgwFoAUbpwyJmgq76jWe4rGCMzPyKCWEM0wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud
HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVEFORVQv
MC82RTlDMzIyNjY4MkFFRkE4RDY3QjhBQzYwOENDQ0ZDOEEwOTYxMENELmNybDBv
BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS8xLzZFOUMzMjI2NjgyQUVGQThENjdCOEFDNjA4Q0ND
RkM4QTA5NjEwQ0QuY2VyMEwGCCsGAQUFBwELBEAwPjA8BggrBgEFBQcwC4YwcnN5
bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UQU5FVC8wL0FTMTgxNzcucm9hMBgG
A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwggG4BggrBgEFBQcBBwEB/wSCAacwggGj
MIIBnwQCAAEwggGXMAoDAwF4cgMDAXh0AwMAoxoDBASjHHAwDAMEActAEgMEActA
FAMEAMtANTAMAwQBy0DmAwQBy0DsAwQAy0QXAwQBy0QaAwQAy0RKAwQAy0RmMAwD
BALLRJwDBADLRKQwDAMEAMtEswMEActEuAMEAMtEvzAMAwQCy0c0AwQAy0c2AwQA
y0dMAwQAy0dgMAwDBATLR3ADBAHLR3QDBADLR7ADBALLR9wDBADLSBUDBADLSCoD
BADLSL8wDAMEActIzgMEAMtI0DAMAwQC0jsMAwQB0jsUAwQA0jsjAwQA0jtcMAwD
BADSO18DBADSO2IwDAMEAdI8AgMEA9I8AAMEANI8JAMEAdI8MjAMAwQA0jxJAwQC
0jxIAwQC0jyIAwQA0jylAwQA0jzgAwQA0jz2AwQA0jz9AwQA0kYlMAwDBADSRm8D
BALSRnAwDAMEANJGiQMEANJGijAMAwQA0kaRAwQD0kawAwQB0kb6AwQB0kcaAwQA
0kcfMAwDBATSR1ADBADSR1IDBADSR2YDBADSR20DBAHSR3AwDQYJKoZIhvcNAQEL
BQADggEBAKL5C6wdxPVNrbBhZGjsZY1ktNGa+IpgvX6TjeM3q8yqX7DH+qmIcQon
fmF8D6iZokiYgV2mLLJY935ArDo7jDQkcu4fS9fd9UycgyzA/0FFAUJqAoNva94Y
tRPnKXiKeWC03kln/ZKBhXeHq/9/7U3qi4JXk4aT2gTJbkRB5maMJplcWe5qlAgn
eVhJNbdR3+Do9U9COaH0jhBIb7iFTZiF0Xy2Hdf2lFUKGvlqgUhYCiTm6jnHq2Yd
YS44QsR6ZoQzOmKfXhUNO+2BXaG1GvOApyoGlOKDmRViYjx9HJPKrgilvGxARB1v
yZLU1yMcH+1Ecz/cEPQxYOyM5FPM/MM=
-----END CERTIFICATE-----
Generated at Tue May 12 23:00:49 2026 by rpki-client