Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e32342e302f32312d3231203d3e203138343239.roa
File: 32372e3134372e32342e302f32312d3231203d3e203138343239.roa (raw, json)
Hash identifier: XEVEN0c/PW+1vJafIYt9jyqO81tq+R933lOrADOPriE=
Subject key identifier: BC:52:8A:36:9D:63:33:E6:51:62:00:8F:E4:2B:31:64:26:67:B9:D4
Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Certificate serial: 5F0638D64B958178D1B62BF8300AEF49EB4283E7
Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e32342e302f32312d3231203d3e203138343239.roa
Signing time: Mon 11 May 2026 17:04:35 +0000
ROA not before: Mon 11 May 2026 16:59:35 +0000
ROA not after: Mon 10 May 2027 17:04:35 +0000
asID: 18429
IP address blocks: 27.147.24.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5f:06:38:d6:4b:95:81:78:d1:b6:2b:f8:30:0a:ef:49:eb:42:83:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Validity
Not Before: May 11 16:59:35 2026 GMT
Not After : May 10 17:04:35 2027 GMT
Subject: CN=BC528A369D6333E65162008FE42B31642667B9D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:3a:08:9f:d6:f6:3d:95:07:a7:a0:91:b4:b4:
69:18:9c:82:07:a2:ae:47:ea:e4:52:fe:e9:c5:52:
b6:15:90:ef:1b:7f:aa:df:a0:f8:84:33:d5:9a:44:
78:fa:a6:17:1d:a3:7c:34:23:d7:f2:38:e9:8b:60:
7e:5f:e6:55:93:34:30:3b:5b:e4:36:d9:aa:ce:ce:
f9:7f:ea:c3:75:e2:21:05:fe:5e:03:d8:22:bb:55:
06:64:f1:79:2c:77:84:30:4f:b1:df:13:cd:67:da:
4b:db:72:32:25:90:15:7d:10:d3:2f:1c:dc:74:ec:
91:62:92:98:a4:83:53:68:53:ef:7e:8d:cd:3e:18:
af:4a:89:5a:94:81:cf:22:d6:e8:16:80:d7:f4:ad:
8c:e9:66:61:39:35:75:41:29:8e:02:f5:b8:ed:3b:
91:36:a6:66:f4:80:1e:0c:54:a3:54:3b:ec:d8:a0:
7f:d8:55:f9:75:4c:c5:7a:af:2a:5c:a0:bf:a4:86:
b9:88:22:3c:ca:53:39:2b:7b:22:3b:7e:a6:c0:24:
d2:f2:bb:d1:aa:74:68:fd:72:f0:73:d1:9b:25:d8:
58:19:5d:da:c5:1f:31:d6:7c:bb:58:e5:d9:24:95:
10:ae:a1:16:11:ed:e1:90:35:19:b2:b6:20:02:dd:
f2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:52:8A:36:9D:63:33:E6:51:62:00:8F:E4:2B:31:64:26:67:B9:D4
X509v3 Authority Key Identifier:
keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e32342e302f32312d3231203d3e203138343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.147.24.0/21
Signature Algorithm: sha256WithRSAEncryption
a7:b6:77:0a:05:8f:13:5d:4c:9e:9e:e6:82:7c:ba:7e:8b:6a:
d3:24:a6:be:ef:58:6d:97:36:ff:aa:83:89:fe:ba:e1:d2:f2:
76:bc:18:c4:eb:e4:94:4c:cf:a5:e7:0c:d7:96:3f:9d:a3:ae:
a2:96:43:7f:af:0d:6c:44:ff:74:1d:8d:70:a4:27:57:28:9f:
20:23:35:6b:30:3f:b6:20:bd:2a:8e:80:28:b8:1a:ce:9f:7c:
e5:8a:0d:b9:f5:0e:94:ea:7a:c3:2c:aa:4d:57:70:f5:ef:12:
21:90:fa:96:6a:45:6d:26:19:ef:a7:61:32:99:b6:e3:ea:64:
4c:61:66:1b:af:90:cb:df:8a:80:d2:a9:1a:c5:d6:06:1c:87:
2d:4e:1f:d3:39:17:6d:21:47:07:04:b6:55:d1:aa:da:4f:4a:
42:0f:95:a6:8c:2f:94:ca:44:e2:ed:36:2c:f4:de:5f:57:3f:
26:55:44:91:da:30:d8:52:95:44:bd:67:df:be:bd:88:fd:7c:
a6:2e:4b:ef:a4:d0:7b:03:26:12:76:da:8f:d0:9c:39:ad:f2:
bb:a1:ca:a8:b4:9a:ff:df:76:23:a9:5e:08:00:62:b5:94:9e:
e2:21:fd:0d:2a:a3:ca:c5:32:a8:e6:7e:76:6b:71:55:9a:4d:
44:4f:7b:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:35:19 2026 by rpki-client