Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e33322e302f32312d3231203d3e203138343239.roa
File: 32372e3134372e33322e302f32312d3231203d3e203138343239.roa (raw, json)
Hash identifier: TnKKD/omf0R162bEvKjZqrFof6rwDEZtwoT1r/O5uj8=
Subject key identifier: F7:D9:F8:E6:48:16:97:BB:03:42:5F:BE:D7:9A:72:06:21:7E:DF:C6
Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Certificate serial: 1D5C1BE3B05D42B3888B5746B08D7375027B22DB
Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e33322e302f32312d3231203d3e203138343239.roa
Signing time: Mon 11 May 2026 17:04:36 +0000
ROA not before: Mon 11 May 2026 16:59:36 +0000
ROA not after: Mon 10 May 2027 17:04:36 +0000
asID: 18429
IP address blocks: 27.147.32.0/21 maxlen: 21
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1d:5c:1b:e3:b0:5d:42:b3:88:8b:57:46:b0:8d:73:75:02:7b:22:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Validity
Not Before: May 11 16:59:36 2026 GMT
Not After : May 10 17:04:36 2027 GMT
Subject: CN=F7D9F8E6481697BB03425FBED79A7206217EDFC6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:6c:77:51:df:5a:12:da:3a:8e:8b:47:47:40:
2c:43:ef:aa:f8:a1:7e:c0:1f:c6:8d:96:11:2a:c0:
25:22:9f:45:9e:14:5d:e6:0b:8d:66:71:4a:7e:19:
14:3a:fc:a1:9e:80:2a:a1:5b:b5:d7:1c:38:28:9c:
f5:98:79:78:63:62:4e:44:6a:d5:7c:34:d7:3f:a2:
96:af:e5:53:cd:ac:a5:11:95:1f:c7:24:d2:25:1d:
e4:49:32:1b:b3:01:79:97:50:8a:ad:51:83:d4:7c:
e2:65:8b:49:51:c7:6e:a2:cd:49:4c:bd:ab:3d:83:
b2:e8:de:f3:3e:34:5a:4c:8b:c6:96:9c:53:03:9f:
65:e8:96:98:31:cd:9f:12:b3:87:cb:eb:1a:0e:6b:
dc:c6:54:3b:cc:1f:8c:34:3b:90:1c:ee:77:e5:79:
c2:34:70:33:83:d9:9f:b5:f5:c8:bc:13:a7:11:dc:
1e:0a:b0:ec:9c:36:51:31:1c:1f:e6:3a:1c:aa:d9:
da:23:10:d3:6b:89:2e:b9:65:21:1c:16:6e:65:3c:
6c:87:06:0a:05:65:a3:6c:e0:ed:ca:3d:0e:1b:74:
7d:21:91:64:22:da:c1:93:ad:46:25:fb:69:d6:83:
0a:fe:dd:5b:cd:ec:b6:a2:90:9c:a9:96:8d:0c:10:
8a:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:D9:F8:E6:48:16:97:BB:03:42:5F:BE:D7:9A:72:06:21:7E:DF:C6
X509v3 Authority Key Identifier:
keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e33322e302f32312d3231203d3e203138343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.147.32.0/21
Signature Algorithm: sha256WithRSAEncryption
89:76:8f:8e:41:c3:f9:1b:b8:5b:5a:e1:42:f1:d2:18:1c:3b:
de:4d:4e:8b:99:27:d3:9e:ad:79:63:a7:fe:d9:f8:e0:7b:0a:
64:5f:09:60:48:6f:2e:05:67:ed:80:3d:12:12:f1:c5:29:18:
9e:2d:76:05:b5:e8:c2:66:a0:e5:f4:7e:89:60:56:93:29:7e:
11:ba:28:85:e2:c1:c8:bb:74:13:54:0b:d9:b8:ec:58:8d:d9:
6d:b9:3f:3d:53:2f:8d:ac:f2:cc:33:a0:d2:09:65:ec:3d:33:
6c:4e:33:1b:ff:c7:99:f4:e4:d4:60:bf:78:df:de:f0:a7:84:
fe:f2:d3:57:e5:96:33:53:11:9f:bd:43:9e:dd:f7:a9:b5:70:
6d:1b:55:9f:58:c7:ac:c1:4e:94:80:d7:b4:5f:6e:dc:cd:08:
af:5f:5b:32:5d:2f:f4:52:96:8f:b4:2f:c0:e5:50:87:0c:5a:
50:9b:0b:c5:e1:d2:99:bc:74:47:35:52:c9:84:c0:fe:d1:9a:
d6:1d:15:59:5e:c6:ac:32:f6:cf:5d:eb:b6:a4:ce:f9:17:9c:
3f:c0:85:5f:ec:81:46:a2:d2:ad:06:7b:42:36:97:17:96:45:
92:22:b6:9e:02:47:ab:17:f6:35:b2:16:fe:eb:73:2a:b7:2e:
f1:35:d7:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:35:05 2026 by rpki-client