Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/3132332e35302e33322e302f31392d3234203d3e203138343239.roa
File: 3132332e35302e33322e302f31392d3234203d3e203138343239.roa (raw, json)
Hash identifier: hOW4k51V5BQYGPDOHVqzjljlBpeufAcancMpIru46xE=
Subject key identifier: B7:AC:EB:00:8B:04:F9:CC:20:F7:99:25:AC:DF:48:BF:FD:C0:C3:2A
Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Certificate serial: 1CBDDC033AD2F7AA53CEA762B5F63A846728017E
Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/3132332e35302e33322e302f31392d3234203d3e203138343239.roa
Signing time: Mon 11 May 2026 17:27:09 +0000
ROA not before: Mon 11 May 2026 17:22:09 +0000
ROA not after: Mon 10 May 2027 17:27:09 +0000
asID: 18429
IP address blocks: 123.50.32.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1c:bd:dc:03:3a:d2:f7:aa:53:ce:a7:62:b5:f6:3a:84:67:28:01:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Validity
Not Before: May 11 17:22:09 2026 GMT
Not After : May 10 17:27:09 2027 GMT
Subject: CN=B7ACEB008B04F9CC20F79925ACDF48BFFDC0C32A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ed:a4:ce:3f:2a:b2:22:7b:3f:9a:42:6e:7b:
98:83:64:c0:63:d9:45:36:a0:10:74:7b:b2:01:1e:
d3:c9:e6:20:c9:2e:61:f4:86:18:8e:ca:8b:08:54:
e3:a1:a4:25:a0:72:ed:9f:ab:88:91:6f:b9:bb:e1:
f6:63:1e:4b:13:c6:24:02:e1:6a:1a:01:97:b5:1d:
f7:68:9f:06:29:71:95:1a:0f:39:28:61:c5:b2:11:
2d:af:5c:53:1c:72:21:93:26:d5:21:94:75:31:80:
d9:d5:56:54:0b:98:c0:af:ea:6d:1d:92:f7:24:15:
69:99:77:e5:bc:fe:69:bc:ed:d0:22:11:96:02:92:
bc:7a:01:26:78:48:01:c3:89:17:b2:93:39:7a:0e:
57:95:0e:d6:14:74:22:b8:88:5d:e0:fc:10:8d:c5:
8a:97:4d:fd:b9:ed:84:9a:a9:97:42:f9:55:4a:8a:
95:df:ac:a2:d0:92:bf:ef:5f:22:30:8b:72:6c:c7:
e0:c7:33:46:82:ad:d3:98:55:48:e2:8a:50:a9:da:
ec:10:04:76:5a:30:fd:50:fb:fc:a8:00:61:aa:53:
2a:f8:70:eb:a5:3d:db:df:8a:69:28:39:57:b0:a5:
2f:5c:69:f1:dc:8d:3d:3c:65:2f:02:8a:8a:ce:ab:
1f:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:AC:EB:00:8B:04:F9:CC:20:F7:99:25:AC:DF:48:BF:FD:C0:C3:2A
X509v3 Authority Key Identifier:
keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/3132332e35302e33322e302f31392d3234203d3e203138343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
123.50.32.0/19
Signature Algorithm: sha256WithRSAEncryption
44:f8:a1:d1:dd:af:4d:b8:ae:3c:1b:4f:6b:37:05:61:9d:1d:
22:07:e8:3b:8a:04:8c:69:dd:b8:a7:2d:22:07:ea:74:ae:e9:
e5:93:9f:2d:68:ad:33:58:14:48:e9:f9:14:f8:c7:c1:78:1c:
fa:15:77:cd:f3:d1:c7:b6:18:10:c5:e4:fa:54:57:29:bf:7f:
b0:a3:6d:ee:21:88:72:29:df:a2:fc:ba:5b:04:5c:48:c4:cd:
5b:a1:91:e9:22:47:92:d6:1e:43:ff:44:fc:17:bf:88:76:6f:
9b:c2:18:55:64:67:9c:0f:aa:08:25:57:ec:34:bf:d5:c5:e2:
13:db:fc:ae:32:70:38:5e:ae:a2:62:31:31:eb:10:bc:48:0b:
eb:c4:15:10:db:9f:e6:a6:17:87:fa:2f:b4:57:98:bd:1f:a6:
a1:ff:cb:db:ef:3c:4c:0d:df:ca:77:f5:43:ad:1e:42:35:31:
84:26:e5:07:a0:d8:b5:2b:0e:aa:c0:5b:f7:37:2f:de:fb:0f:
00:57:33:95:a3:37:57:32:94:fe:61:6f:2f:d3:38:25:6f:d8:
7a:dd:0b:93:ac:fd:75:05:b4:60:e2:da:0f:2f:0f:10:42:1d:
30:7d:61:e8:c8:41:b5:02:de:2a:87:32:27:b5:84:b7:09:ce:
ac:f5:61:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:35:11 2026 by rpki-client