Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWDS/0/3231312e37362e3138302e302f32332d3234203d3e203138303431.roa
File: 3231312e37362e3138302e302f32332d3234203d3e203138303431.roa (raw, json)
Hash identifier: bbxNqJpcFoKQB8YEZ9k9dbWZhlMmSJIxxEto4IGtK6w=
Subject key identifier: EB:33:10:1D:1E:8F:6B:DF:42:42:D8:AF:0E:71:0E:E7:69:2B:02:9A
Certificate issuer: /CN=432734F40920205CA6443A3B99308DD718E70D42
Certificate serial: 15569A3CA2A0349F66D92EF94D5AD364714492B6
Authority key identifier: 43:27:34:F4:09:20:20:5C:A6:44:3A:3B:99:30:8D:D7:18:E7:0D:42
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432734F40920205CA6443A3B99308DD718E70D42.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWDS/0/3231312e37362e3138302e302f32332d3234203d3e203138303431.roa
Signing time: Mon 11 May 2026 17:40:29 +0000
ROA not before: Mon 11 May 2026 17:35:29 +0000
ROA not after: Mon 10 May 2027 17:40:29 +0000
asID: 18041
IP address blocks: 211.76.180.0/23 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:56:9a:3c:a2:a0:34:9f:66:d9:2e:f9:4d:5a:d3:64:71:44:92:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432734F40920205CA6443A3B99308DD718E70D42
Validity
Not Before: May 11 17:35:29 2026 GMT
Not After : May 10 17:40:29 2027 GMT
Subject: CN=EB33101D1E8F6BDF4242D8AF0E710EE7692B029A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8b:b9:d7:92:da:72:5a:f4:42:84:31:ef:e4:
c5:20:e4:12:86:1f:81:13:3b:2e:7c:cb:ca:23:34:
bf:d2:77:78:f4:d3:ca:c6:6b:98:6a:b9:c5:28:fe:
da:fd:09:d1:be:b3:dd:7e:d4:cf:51:f8:b6:7f:a7:
21:e9:fa:36:bf:19:79:0d:be:89:fc:d1:ef:6e:e2:
b2:5a:91:99:88:95:5e:d0:fc:33:f9:17:a4:ce:62:
5c:0d:c3:42:ab:24:1e:3a:46:59:43:87:e2:b8:d2:
d3:f0:8e:5a:be:eb:b7:0f:99:a5:33:eb:29:96:3f:
d6:8b:59:2a:c4:e9:ab:c1:9f:89:a5:50:11:64:51:
7c:e0:53:56:50:21:4e:97:2a:d4:91:13:a5:2c:c1:
56:97:cf:9f:df:2f:e2:1f:61:77:39:6d:ea:9e:e9:
08:72:ce:c4:f7:48:6b:9d:f6:0b:f7:ef:16:cf:44:
52:a9:1e:a6:e1:74:83:92:a3:b5:6c:53:98:f5:95:
0a:52:ba:87:0a:80:6c:df:d9:49:06:09:a8:00:d0:
51:53:f5:66:44:5c:a2:16:69:b8:c2:d4:8f:c3:e4:
1b:85:2f:24:f7:f0:15:96:d6:43:9c:67:cd:ef:2b:
60:82:d2:b2:5f:be:29:f6:80:79:0e:23:80:3f:c4:
bd:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:33:10:1D:1E:8F:6B:DF:42:42:D8:AF:0E:71:0E:E7:69:2B:02:9A
X509v3 Authority Key Identifier:
keyid:43:27:34:F4:09:20:20:5C:A6:44:3A:3B:99:30:8D:D7:18:E7:0D:42
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWDS/0/432734F40920205CA6443A3B99308DD718E70D42.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432734F40920205CA6443A3B99308DD718E70D42.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWDS/0/3231312e37362e3138302e302f32332d3234203d3e203138303431.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
211.76.180.0/23
Signature Algorithm: sha256WithRSAEncryption
44:5a:71:a7:09:0b:09:97:6e:78:37:b2:b6:b1:8e:f1:48:7c:
1c:62:4c:af:67:4f:e3:31:41:25:65:15:af:58:43:a5:32:86:
51:c0:b3:fb:5c:e2:93:43:de:72:00:c7:de:48:e1:1e:a9:5e:
9b:37:df:e2:86:bb:b2:63:19:34:ef:3e:aa:b3:f2:97:c8:21:
81:a2:75:68:ce:58:d8:b7:7b:d7:b6:60:a2:de:92:98:09:b9:
10:5d:04:21:77:f5:fc:1c:48:63:b0:37:44:4e:de:29:6f:46:
d8:79:cc:72:29:7f:39:26:aa:20:a7:fc:38:c2:57:7b:40:57:
38:c8:c8:88:10:95:58:7c:7e:c2:27:de:b0:a9:76:66:35:e3:
24:eb:2f:32:b5:ef:6d:db:57:62:62:88:68:4b:b1:5e:32:73:
ed:f8:46:a1:43:18:a0:49:20:35:4f:4a:1c:7b:b9:77:3a:6e:
b4:63:61:a7:d9:bb:9b:6f:a3:8c:ee:81:4d:ad:ff:a9:78:f7:
b2:76:0b:15:b4:17:4c:b8:f1:4f:9e:1e:5f:65:d5:26:62:f5:
ff:c5:40:3c:91:ab:af:50:af:5c:7c:29:bb:b7:c3:e7:c6:b6:
5f:14:0a:c0:d4:84:86:ea:b4:4d:9d:ca:e6:5d:67:38:c1:6f:
b7:f6:8b:2e
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgIUFVaaPKKgNJ9m2S75TVrTZHFEkrYwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNDMyNzM0RjQwOTIwMjA1Q0E2NDQzQTNCOTkzMDhERDcx
OEU3MEQ0MjAeFw0yNjA1MTExNzM1MjlaFw0yNzA1MTAxNzQwMjlaMDMxMTAvBgNV
BAMTKEVCMzMxMDFEMUU4RjZCREY0MjQyRDhBRjBFNzEwRUU3NjkyQjAyOUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCii7nXktpyWvRChDHv5MUg5BKG
H4ETOy58y8ojNL/Sd3j008rGa5hqucUo/tr9CdG+s91+1M9R+LZ/pyHp+ja/GXkN
von80e9u4rJakZmIlV7Q/DP5F6TOYlwNw0KrJB46RllDh+K40tPwjlq+67cPmaUz
6ymWP9aLWSrE6avBn4mlUBFkUXzgU1ZQIU6XKtSRE6UswVaXz5/fL+IfYXc5beqe
6QhyzsT3SGud9gv37xbPRFKpHqbhdIOSo7VsU5j1lQpSuocKgGzf2UkGCagA0FFT
9WZEXKIWabjC1I/D5BuFLyT38BWW1kOcZ83vK2CC0rJfvin2gHkOI4A/xL0TAgMB
AAGjggHfMIIB2zAdBgNVHQ4EFgQU6zMQHR6Pa99CQtivDnEO52krApowHwYDVR0j
BBgwFoAUQyc09AkgIFymRDo7mTCN1xjnDUIwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud
HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdEUy8w
LzQzMjczNEY0MDkyMDIwNUNBNjQ0M0EzQjk5MzA4REQ3MThFNzBENDIuY3JsMG8G
CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu
dHcvcnBraS9UV05JQ0NBLzEvNDMyNzM0RjQwOTIwMjA1Q0E2NDQzQTNCOTkzMDhE
RDcxOEU3MEQ0Mi5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3lu
YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXRFMvMC8zMjMxMzEyZTM3MzYyZTMx
MzgzMDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzgzMDM0MzEucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAHTTLQwDQYJKoZIhvcNAQELBQADggEBAERacacJCwmXbng3sraxjvFIfBxiTK9n
T+MxQSVlFa9YQ6UyhlHAs/tc4pND3nIAx95I4R6pXps33+KGu7JjGTTvPqqz8pfI
IYGidWjOWNi3e9e2YKLekpgJuRBdBCF39fwcSGOwN0RO3ilvRth5zHIpfzkmqiCn
/DjCV3tAVzjIyIgQlVh8fsIn3rCpdmY14yTrLzK1723bV2JiiGhLsV4yc+34RqFD
GKBJIDVPShx7uXc6brRjYafZu5tvo4zugU2t/6l497J2CxW0F0y48U+eHl9l1SZi
9f/FQDyRq69Qr1x8Kbu3w+fGtl8UCsDUhIbqtE2dyuZdZzjBb7f2iy4=
-----END CERTIFICATE-----
Generated at Wed May 13 03:16:23 2026 by rpki-client