Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/UBBNET/0/AS24165.roa
File: AS24165.roa (raw, json)
Hash identifier: 3tMmuZ9HrkmbB39XK4WylKBdU/A8HnyG0MnIgl7Oyb8=
Subject key identifier: F8:33:01:9F:41:C7:EA:50:76:F1:CD:B3:57:14:48:4E:0C:BA:94:4F
Certificate issuer: /CN=704404201DFE2DEA001DB9D48001735C8BEE3A0E
Certificate serial: 339394EDC5B78E5B8870B96D8A89C5BD72303966
Authority key identifier: 70:44:04:20:1D:FE:2D:EA:00:1D:B9:D4:80:01:73:5C:8B:EE:3A:0E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/704404201DFE2DEA001DB9D48001735C8BEE3A0E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/UBBNET/0/AS24165.roa
Signing time: Tue 12 May 2026 01:48:54 +0000
ROA not before: Tue 12 May 2026 01:43:54 +0000
ROA not after: Tue 11 May 2027 01:48:54 +0000
asID: 24165
IP address blocks: 45.64.34.0/24 maxlen: 24
49.158.0.0/15 maxlen: 24
49.158.128.0/22 maxlen: 22
49.158.132.0/22 maxlen: 22
49.158.220.0/22 maxlen: 22
49.158.224.0/21 maxlen: 21
49.158.232.0/23 maxlen: 23
49.158.240.0/21 maxlen: 22
49.159.68.0/22 maxlen: 22
49.159.72.0/22 maxlen: 22
49.159.76.0/22 maxlen: 22
49.159.208.0/22 maxlen: 22
49.159.212.0/22 maxlen: 22
49.159.218.0/23 maxlen: 23
49.159.220.0/22 maxlen: 22
49.159.248.0/22 maxlen: 22
49.159.252.0/22 maxlen: 22
61.58.112.0/21 maxlen: 21
61.58.112.0/21 maxlen: 22
61.58.120.0/22 maxlen: 22
61.58.124.0/22 maxlen: 22
61.60.215.128/25 maxlen: 25
61.61.208.0/24 maxlen: 29
61.61.213.0/24 maxlen: 24
61.61.213.0/25 maxlen: 25
61.61.228.0/24 maxlen: 24
61.64.8.0/21 maxlen: 21
61.64.8.0/22 maxlen: 22
61.64.12.0/22 maxlen: 22
61.64.16.0/21 maxlen: 21
103.225.0.0/22 maxlen: 24
114.198.160.0/20 maxlen: 24
114.198.176.0/20 maxlen: 24
115.165.192.0/18 maxlen: 24
115.165.232.0/22 maxlen: 22
119.77.128.0/17 maxlen: 24
122.100.64.0/18 maxlen: 24
122.100.96.0/21 maxlen: 21
122.254.0.0/21 maxlen: 21
122.254.8.0/21 maxlen: 21
122.254.16.0/21 maxlen: 21
122.254.24.0/21 maxlen: 21
122.254.32.0/21 maxlen: 21
122.254.32.0/22 maxlen: 22
122.254.48.0/21 maxlen: 21
124.6.0.0/21 maxlen: 21
124.6.8.0/21 maxlen: 21
124.6.12.0/22 maxlen: 22
124.6.16.0/22 maxlen: 22
180.218.40.0/22 maxlen: 22
180.218.44.0/22 maxlen: 22
180.218.80.0/22 maxlen: 22
180.218.88.0/22 maxlen: 22
180.218.96.0/22 maxlen: 22
180.218.100.0/22 maxlen: 22
180.218.104.0/21 maxlen: 21
180.218.104.0/22 maxlen: 22
180.218.112.0/21 maxlen: 21
180.218.112.0/22 maxlen: 22
180.218.120.0/22 maxlen: 22
2407:4b00::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/UBBNET/0/704404201DFE2DEA001DB9D48001735C8BEE3A0E.crl
rsync://rpkica.twnic.tw/rpki/UBBNET/0/704404201DFE2DEA001DB9D48001735C8BEE3A0E.mft
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/704404201DFE2DEA001DB9D48001735C8BEE3A0E.cer
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 13 May 2026 02:14:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:93:94:ed:c5:b7:8e:5b:88:70:b9:6d:8a:89:c5:bd:72:30:39:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=704404201DFE2DEA001DB9D48001735C8BEE3A0E
Validity
Not Before: May 12 01:43:54 2026 GMT
Not After : May 11 01:48:54 2027 GMT
Subject: CN=F833019F41C7EA5076F1CDB35714484E0CBA944F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:53:71:02:e1:a9:bb:18:db:79:9c:12:b5:65:
5e:bd:dc:d1:f6:fe:c1:2b:6e:80:e4:36:da:dd:e2:
e7:07:08:3b:4a:3c:e2:5f:a1:df:76:c5:9a:fe:65:
63:b8:34:76:71:e1:54:f7:1f:53:93:52:48:0b:3a:
21:8d:bf:18:b8:e3:4d:10:e9:47:f0:be:94:a2:96:
b4:9b:6e:b4:a6:e6:16:40:d0:19:53:f7:3f:d5:a4:
f0:28:94:d6:f9:1d:2f:60:af:fe:f8:b0:84:e0:07:
0b:07:ea:99:22:56:51:af:e6:62:1f:ad:17:e1:7e:
7c:57:10:ba:77:51:ce:08:17:a2:7d:ad:e0:66:bb:
fa:4d:66:0c:4f:e3:80:3e:d5:c4:e2:ac:41:90:02:
ec:b6:6a:5d:28:95:4e:8f:6c:d1:fd:14:41:9d:ac:
c8:24:e4:56:e0:c0:f5:33:a6:4a:cf:f2:59:74:82:
81:a7:36:33:39:74:d7:c9:50:38:ff:cc:48:e0:31:
7e:c4:85:b6:6c:40:d9:00:ef:e3:5a:68:06:4e:43:
5c:6b:9a:83:0d:e7:68:d4:51:d0:be:40:69:f8:50:
06:71:58:53:6e:68:7d:71:c4:cb:86:85:e8:c8:e8:
58:d6:cd:03:2a:b5:bb:59:8b:83:c4:bc:46:2c:d6:
08:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:33:01:9F:41:C7:EA:50:76:F1:CD:B3:57:14:48:4E:0C:BA:94:4F
X509v3 Authority Key Identifier:
keyid:70:44:04:20:1D:FE:2D:EA:00:1D:B9:D4:80:01:73:5C:8B:EE:3A:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/UBBNET/0/704404201DFE2DEA001DB9D48001735C8BEE3A0E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/704404201DFE2DEA001DB9D48001735C8BEE3A0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/UBBNET/0/AS24165.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.64.34.0/24
49.158.0.0/15
61.58.112.0/20
61.60.215.128/25
61.61.208.0/24
61.61.213.0/24
61.61.228.0/24
61.64.8.0-61.64.23.255
103.225.0.0/22
114.198.160.0/19
115.165.192.0/18
119.77.128.0/17
122.100.64.0/18
122.254.0.0-122.254.39.255
122.254.48.0/21
124.6.0.0-124.6.19.255
180.218.40.0/21
180.218.80.0/22
180.218.88.0/22
180.218.96.0-180.218.123.255
IPv6:
2407:4b00::/32
Signature Algorithm: sha256WithRSAEncryption
ae:7b:de:e1:08:30:36:97:81:80:aa:c7:37:aa:34:27:86:7b:
b6:fc:48:87:7e:52:e1:ec:b6:18:1f:14:a5:91:40:cf:73:e9:
22:6b:6f:57:f4:7d:bc:90:e9:f9:a1:ae:ff:e4:44:06:98:32:
78:74:80:1b:34:80:76:3d:53:2d:d0:79:d8:1a:97:b6:bf:22:
8a:d8:c4:55:d8:7d:27:55:32:d0:0e:f9:09:1b:ed:05:5f:5e:
d2:63:c7:6e:cb:64:31:94:ba:05:4e:14:53:4a:d5:31:f9:89:
97:b3:2a:6b:f8:1b:e7:1f:a3:07:e3:d5:4a:3f:15:24:5e:e9:
79:df:48:fe:79:04:19:bc:29:dd:5a:06:6c:13:b7:3a:68:df:
0b:4d:5c:4c:55:14:67:c2:43:e9:62:63:ea:01:46:dd:ad:14:
cc:d6:91:23:7c:4c:1b:a4:87:bf:d8:bd:8c:3d:c0:7f:4d:e0:
da:59:3e:47:d1:23:80:2e:25:e2:24:25:96:ec:75:88:1f:fb:
84:27:d4:42:02:fe:09:12:5f:99:76:72:cd:87:95:a8:1d:2f:
3d:86:4b:45:09:e8:6a:ba:e5:f7:34:89:ce:2f:28:06:60:0e:
6f:9f:19:e5:db:f4:96:00:e1:e9:10:1a:4e:2e:b6:66:b3:13:
da:e6:d6:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:12:05 2026 by rpki-client