Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/UBBNET/0/AS24163.roa
File: AS24163.roa (raw, json)
Hash identifier: OWbvhoRY5zy3ESQoCDYHmvYMcD23zu2mtSNG2tJQho4=
Subject key identifier: 18:06:74:77:D3:6E:0C:0D:1F:FD:96:BE:2F:50:78:53:37:AE:F2:76
Certificate issuer: /CN=704404201DFE2DEA001DB9D48001735C8BEE3A0E
Certificate serial: 66C17AC63D516CE1CDA6692CEA9B81B51C169509
Authority key identifier: 70:44:04:20:1D:FE:2D:EA:00:1D:B9:D4:80:01:73:5C:8B:EE:3A:0E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/704404201DFE2DEA001DB9D48001735C8BEE3A0E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/UBBNET/0/AS24163.roa
Signing time: Tue 12 May 2026 01:48:56 +0000
ROA not before: Tue 12 May 2026 01:43:56 +0000
ROA not after: Tue 11 May 2027 01:48:56 +0000
asID: 24163
IP address blocks: 45.64.35.0/24 maxlen: 24
49.158.0.0/15 maxlen: 24
49.158.148.0/22 maxlen: 22
49.158.152.0/21 maxlen: 22
49.158.192.0/20 maxlen: 22
49.158.192.0/21 maxlen: 22
49.158.192.0/22 maxlen: 22
49.158.196.0/22 maxlen: 22
49.158.200.0/21 maxlen: 21
49.159.64.0/22 maxlen: 22
49.159.80.0/20 maxlen: 22
49.159.92.0/22 maxlen: 22
49.159.176.0/20 maxlen: 22
49.159.192.0/20 maxlen: 22
61.56.160.0/19 maxlen: 22
61.56.160.0/20 maxlen: 22
61.56.176.0/20 maxlen: 22
61.58.96.0/20 maxlen: 22
61.60.215.0/24 maxlen: 24
61.60.215.128/25 maxlen: 25
61.61.208.0/21 maxlen: 21
61.61.209.0/24 maxlen: 25
61.61.212.0/27 maxlen: 27
61.61.216.0/22 maxlen: 22
61.61.220.0/22 maxlen: 22
61.61.227.0/24 maxlen: 24
61.61.236.0/22 maxlen: 22
103.225.0.0/22 maxlen: 24
114.198.160.0/20 maxlen: 24
114.198.176.0/20 maxlen: 24
115.165.192.0/18 maxlen: 24
119.77.128.0/17 maxlen: 24
119.77.132.0/22 maxlen: 22
119.77.136.0/22 maxlen: 22
119.77.140.0/22 maxlen: 22
122.100.64.0/18 maxlen: 24
122.100.64.0/22 maxlen: 22
122.100.96.0/19 maxlen: 19
122.100.104.0/21 maxlen: 21
122.100.112.0/21 maxlen: 21
122.100.120.0/22 maxlen: 22
123.0.44.0/22 maxlen: 22
180.218.0.0/16 maxlen: 16
180.218.108.0/22 maxlen: 22
180.218.124.0/22 maxlen: 22
180.218.224.0/21 maxlen: 24
180.218.232.0/21 maxlen: 21
180.218.240.0/20 maxlen: 20
180.218.240.0/21 maxlen: 24
180.218.248.0/21 maxlen: 24
211.76.32.0/21 maxlen: 21
211.76.44.0/22 maxlen: 24
211.76.44.0/23 maxlen: 23
211.76.46.0/23 maxlen: 23
211.76.48.0/22 maxlen: 22
211.76.52.0/23 maxlen: 23
211.76.54.0/24 maxlen: 24
211.76.72.0/22 maxlen: 22
211.76.76.0/24 maxlen: 24
2407:4b00::/32 maxlen: 36
2407:4b00::/32 maxlen: 48
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/UBBNET/0/704404201DFE2DEA001DB9D48001735C8BEE3A0E.crl
rsync://rpkica.twnic.tw/rpki/UBBNET/0/704404201DFE2DEA001DB9D48001735C8BEE3A0E.mft
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/704404201DFE2DEA001DB9D48001735C8BEE3A0E.cer
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 14 May 2026 14:05:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
66:c1:7a:c6:3d:51:6c:e1:cd:a6:69:2c:ea:9b:81:b5:1c:16:95:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=704404201DFE2DEA001DB9D48001735C8BEE3A0E
Validity
Not Before: May 12 01:43:56 2026 GMT
Not After : May 11 01:48:56 2027 GMT
Subject: CN=18067477D36E0C0D1FFD96BE2F50785337AEF276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:8f:6a:8c:00:d4:54:98:99:fe:1b:d3:84:02:
ee:09:8c:28:59:92:2f:be:61:08:56:6d:11:6d:17:
6a:b7:c0:ff:a0:33:f4:fe:75:e3:0f:06:a8:44:e0:
7b:b9:2f:c2:30:cc:08:c4:24:97:b9:ea:2c:ac:6d:
e1:6a:f0:01:4d:f3:3a:4a:e9:83:62:1f:c1:a5:0c:
d5:28:85:08:12:df:bc:d9:b6:1c:ff:0b:83:f9:6d:
8f:7f:b8:4d:cc:5f:ba:80:ee:4e:3c:c1:2f:d4:38:
8c:64:dc:82:24:4b:f4:3b:32:2d:9a:8b:a9:99:6a:
d5:fe:75:c7:88:92:cc:1e:34:48:d3:2c:76:7f:8d:
88:e0:5e:9b:2a:13:65:d2:91:86:96:7e:ae:18:8a:
91:5e:45:d5:17:5e:3e:e9:c7:db:38:e8:e8:c9:1b:
1c:cf:f6:28:9f:d0:60:d9:4f:4d:53:cf:21:19:60:
ad:19:5b:13:c9:25:23:30:03:ab:3e:66:a9:da:0f:
be:56:5e:4f:16:86:3c:b0:1d:f2:a3:27:41:08:3b:
b9:89:4d:70:97:97:51:c7:0e:0a:02:f8:8d:a2:8a:
32:7a:61:db:ed:a7:4f:8d:55:c0:81:3a:a2:d6:90:
13:ab:b0:f1:87:7f:e3:0a:44:ce:31:b0:e8:d8:6a:
e1:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:06:74:77:D3:6E:0C:0D:1F:FD:96:BE:2F:50:78:53:37:AE:F2:76
X509v3 Authority Key Identifier:
keyid:70:44:04:20:1D:FE:2D:EA:00:1D:B9:D4:80:01:73:5C:8B:EE:3A:0E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/UBBNET/0/704404201DFE2DEA001DB9D48001735C8BEE3A0E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/704404201DFE2DEA001DB9D48001735C8BEE3A0E.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/UBBNET/0/AS24163.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.64.35.0/24
49.158.0.0/15
61.56.160.0/19
61.58.96.0/20
61.60.215.0/24
61.61.208.0/20
61.61.227.0/24
61.61.236.0/22
103.225.0.0/22
114.198.160.0/19
115.165.192.0/18
119.77.128.0/17
122.100.64.0/18
123.0.44.0/22
180.218.0.0/16
211.76.32.0/21
211.76.44.0-211.76.54.255
211.76.72.0-211.76.76.255
IPv6:
2407:4b00::/32
Signature Algorithm: sha256WithRSAEncryption
6d:2f:06:df:d4:b4:88:61:71:95:dc:75:2a:84:72:5e:16:b0:
a7:c4:6b:21:cc:c8:0d:9c:4c:d5:bf:e1:e0:5d:88:69:d6:5c:
56:34:a2:ff:bb:4e:10:f9:3b:d1:dc:5b:ab:14:13:dc:7e:54:
68:fa:ed:f8:c7:72:ff:a5:7e:0f:01:03:bb:04:52:b5:b2:65:
16:12:28:7f:5a:1f:96:c3:57:38:b4:98:fb:9d:9b:ca:42:53:
2c:f6:3f:80:d9:12:9d:e2:9d:df:a4:9f:13:e3:ce:83:25:46:
b8:1a:c8:c2:be:93:1f:b5:11:aa:ef:a6:dc:74:c2:d4:97:76:
b1:66:e4:d5:cf:6a:73:4f:6b:61:53:1f:4e:b8:ad:cb:8e:f5:
fd:16:10:71:bf:76:28:c1:01:9a:67:84:13:17:04:78:69:50:
4a:af:9b:95:97:17:75:62:42:9e:3d:bd:9e:ee:82:49:e7:96:
6e:69:72:c0:58:c4:bc:b1:03:cc:9c:4e:cb:f3:1e:5d:09:88:
7f:d6:29:2e:cb:7b:e1:54:2a:2c:a1:37:46:11:a0:a6:8f:24:
99:b7:83:c6:b0:de:dc:56:cc:a4:04:4e:93:5b:f1:ab:20:34:
48:0b:38:5c:5b:11:6b:41:af:1c:c4:1a:81:ea:5c:6f:91:a1:
d9:b9:e1:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 21:08:08 2026 by rpki-client