Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TBCOM/0/36312e35372e36342e302f31382d3234203d3e203137373039.roa
File: 36312e35372e36342e302f31382d3234203d3e203137373039.roa (raw, json)
Hash identifier: PJaOrbO9glmEYvcWWe4QaEdXQU7JFoL2KdDxPZm2kMY=
Subject key identifier: C8:5F:F5:4E:FC:3E:0E:7C:FB:26:A4:CA:78:70:43:5E:3D:1C:8B:14
Certificate issuer: /CN=C0ACF76C345159D3241315F2997526806968CB40
Certificate serial: 441E4F628BA47083773A0929FBF2A9FDC7390199
Authority key identifier: C0:AC:F7:6C:34:51:59:D3:24:13:15:F2:99:75:26:80:69:68:CB:40
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C0ACF76C345159D3241315F2997526806968CB40.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TBCOM/0/36312e35372e36342e302f31382d3234203d3e203137373039.roa
Signing time: Mon 11 May 2026 17:37:07 +0000
ROA not before: Mon 11 May 2026 17:32:07 +0000
ROA not after: Mon 10 May 2027 17:37:07 +0000
asID: 17709
IP address blocks: 61.57.64.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:1e:4f:62:8b:a4:70:83:77:3a:09:29:fb:f2:a9:fd:c7:39:01:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C0ACF76C345159D3241315F2997526806968CB40
Validity
Not Before: May 11 17:32:07 2026 GMT
Not After : May 10 17:37:07 2027 GMT
Subject: CN=C85FF54EFC3E0E7CFB26A4CA7870435E3D1C8B14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:b9:e5:3a:9c:38:d8:ce:59:e0:f7:dd:34:73:
d7:95:a9:95:80:89:e9:99:24:07:85:5a:c2:28:4b:
24:46:a2:e4:f3:a6:b2:c4:0a:31:d4:0e:56:68:27:
13:6a:bf:64:f5:1b:1a:ee:8b:fe:23:04:74:ff:12:
28:6a:28:59:35:13:4c:a8:b0:6d:bb:22:89:89:f4:
24:cd:d5:09:da:46:d6:b5:6e:52:45:b4:c7:97:ef:
e8:12:dc:34:a8:15:f2:56:33:e1:5d:40:24:c7:1f:
3d:5e:36:e1:1a:3b:66:5b:dd:70:9a:0b:cc:59:36:
51:ab:eb:35:37:3d:23:c6:45:93:7f:0b:a5:59:bb:
78:cd:7e:82:98:08:25:9a:81:a5:77:8b:20:79:54:
50:63:ae:6b:9d:26:f0:c9:b3:9d:a8:9d:a5:d8:b1:
ba:e1:2a:57:0b:d3:f9:ae:b2:7d:dd:7b:f0:aa:53:
bf:74:86:e0:ca:ef:27:1d:ea:29:18:fb:40:23:ad:
c3:fc:54:56:8c:dc:a1:f6:3a:86:e1:18:f5:99:c3:
4a:6a:90:05:2f:4b:d3:c6:10:3a:4e:23:d5:e3:bc:
ba:03:b1:81:10:fb:4a:a2:1c:a6:24:45:10:da:e0:
dd:e8:2a:77:5e:c0:2e:ea:ec:3f:7d:b5:f9:7f:1f:
10:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:5F:F5:4E:FC:3E:0E:7C:FB:26:A4:CA:78:70:43:5E:3D:1C:8B:14
X509v3 Authority Key Identifier:
keyid:C0:AC:F7:6C:34:51:59:D3:24:13:15:F2:99:75:26:80:69:68:CB:40
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TBCOM/0/C0ACF76C345159D3241315F2997526806968CB40.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C0ACF76C345159D3241315F2997526806968CB40.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TBCOM/0/36312e35372e36342e302f31382d3234203d3e203137373039.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
61.57.64.0/18
Signature Algorithm: sha256WithRSAEncryption
aa:52:34:2b:34:23:39:11:75:2a:2c:36:38:55:47:47:61:3c:
06:2a:67:f9:4f:36:9d:99:09:ad:fe:69:b0:d8:10:2d:68:39:
3b:f0:10:5b:ea:9c:77:b1:25:eb:31:12:92:95:69:c8:16:61:
24:9b:22:87:58:d6:b9:0a:24:fb:e5:d0:1f:0a:55:7e:d0:a4:
a4:49:56:3d:2f:06:cb:15:d3:2a:2e:20:8f:fd:da:c4:ed:2c:
e4:df:63:65:dd:e5:5d:54:4c:62:c4:92:fc:ee:c2:39:74:2b:
39:cd:45:c9:07:a4:f2:1e:77:f1:d0:c9:e1:ac:40:0c:fa:9c:
da:bd:37:09:56:71:71:ee:f0:dc:49:2a:c7:67:43:7f:fa:39:
6b:e3:09:a4:ff:1c:82:ee:b3:db:42:4d:0a:78:8c:ae:42:9f:
ae:9c:b9:4f:51:2c:96:d8:dc:5d:5e:36:f0:e8:ab:91:82:6f:
af:2d:e2:29:cc:50:c5:d5:92:8d:c8:b4:64:14:54:de:1d:b1:
4e:02:56:34:68:23:c9:6f:03:5d:68:14:2a:83:2b:ba:5b:2a:
7b:66:da:fc:47:9a:42:3f:26:1c:8b:19:f3:8a:a9:b3:ce:9a:
79:82:0b:c8:37:94:61:b0:e1:67:dd:88:ef:6e:b5:d1:7c:7f:
88:1b:3b:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:48:15 2026 by rpki-client