Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e36312e302f32342d3234203d3e203138343239.roa
File: 32372e3134372e36312e302f32342d3234203d3e203138343239.roa (raw, json)
Hash identifier: UJbm7PcCL4Sgo5qwhKiO5cQ14l4ij9PjP6ofDhChNNk=
Subject key identifier: 00:7F:47:C9:A4:7A:D3:6B:FD:61:12:FC:C0:2E:98:F5:4A:9A:36:3E
Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Certificate serial: 775507EA8D0537A52BF01D64A56032353B1B4CAE
Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e36312e302f32342d3234203d3e203138343239.roa
Signing time: Mon 11 May 2026 17:04:38 +0000
ROA not before: Mon 11 May 2026 16:59:38 +0000
ROA not after: Mon 10 May 2027 17:04:38 +0000
asID: 18429
IP address blocks: 27.147.61.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
77:55:07:ea:8d:05:37:a5:2b:f0:1d:64:a5:60:32:35:3b:1b:4c:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Validity
Not Before: May 11 16:59:38 2026 GMT
Not After : May 10 17:04:38 2027 GMT
Subject: CN=007F47C9A47AD36BFD6112FCC02E98F54A9A363E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:4d:17:35:29:ad:7c:ac:c4:98:fc:0c:42:7d:
97:c8:c7:b5:6f:db:7d:49:f4:23:63:05:1d:6c:df:
de:c5:af:be:6e:6e:d4:77:c1:75:6a:b3:62:88:35:
32:1a:fa:b7:5e:91:48:9e:ba:34:6c:70:41:55:0e:
d5:7a:ca:2c:2c:cd:72:c0:44:da:a6:74:26:52:e4:
45:fc:62:4c:24:9a:27:1c:24:c4:02:1b:b2:ed:7e:
3c:4f:ef:06:94:a7:c1:45:ae:3c:9c:46:77:05:23:
b9:3a:d9:2c:aa:81:5c:d4:ed:10:59:c1:f5:4a:13:
c8:a0:69:2b:d2:e2:d9:71:02:7d:48:50:2a:88:69:
bc:b3:be:0c:91:82:e1:8a:28:51:20:8b:0a:dc:05:
f4:c1:45:cc:6e:b1:38:0e:fe:77:98:3f:d4:fd:43:
f0:fe:66:94:1f:f2:79:b6:fc:2e:ab:da:6a:b3:79:
80:9a:0c:7c:56:a5:9f:9d:a1:4f:76:0a:e4:c0:57:
30:4f:24:9e:08:16:a0:25:c5:01:84:4e:7b:7b:53:
9f:8d:31:08:b8:db:f6:bd:d9:43:46:d6:76:b9:5e:
91:d0:1f:7e:42:ee:27:68:fa:4a:20:5d:1b:6f:1e:
93:d3:a1:c7:c7:79:0f:24:37:e8:d8:e1:fc:be:5c:
ea:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:7F:47:C9:A4:7A:D3:6B:FD:61:12:FC:C0:2E:98:F5:4A:9A:36:3E
X509v3 Authority Key Identifier:
keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e36312e302f32342d3234203d3e203138343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.147.61.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:1a:7c:90:a9:d4:ee:fe:10:52:d4:c8:21:d7:d2:45:40:ec:
12:37:dd:d0:59:0c:b1:e9:2c:3c:80:8a:5e:df:68:69:26:a9:
29:e6:1d:1f:d3:05:ac:b5:d6:8d:1c:f9:ca:b5:8a:21:dd:67:
a0:e1:93:9f:74:63:2f:6e:a1:20:f2:e5:08:4d:4b:db:79:4d:
ab:fb:5d:44:c3:63:8f:dd:e2:67:69:c1:ff:65:75:e5:c4:36:
ba:3b:a5:b9:aa:1f:93:c3:fb:fd:32:22:e5:50:23:2d:4a:b7:
c2:fc:2b:0a:a2:7d:52:9d:fa:84:66:ff:e8:0a:78:8a:fe:95:
7b:0a:7d:93:8b:5e:55:90:93:12:d2:ff:51:1b:e0:2d:a0:8c:
49:0b:a4:32:24:62:d9:68:b5:2b:78:d4:07:31:6f:55:dc:a8:
80:9a:b9:67:a0:ae:4c:0b:b3:6b:ed:a0:42:b8:c5:cd:d8:4e:
a7:ab:dc:b7:6a:75:9c:1e:13:1d:d0:a0:99:14:35:2e:05:0b:
15:10:7b:b8:b1:4a:cb:94:21:25:27:73:9d:cb:dd:98:f7:80:
2b:85:b0:92:ba:85:e5:7e:9b:50:15:6f:5c:b4:62:65:3d:73:
92:b4:71:7c:59:f3:be:a5:bb:1b:0b:9f:ce:ad:0d:5c:8e:31:
70:e7:e9:12
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgIUd1UH6o0FN6Ur8B1kpWAyNTsbTK4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD
REJDRUZEMTAeFw0yNjA1MTExNjU5MzhaFw0yNzA1MTAxNzA0MzhaMDMxMTAvBgNV
BAMTKDAwN0Y0N0M5QTQ3QUQzNkJGRDYxMTJGQ0MwMkU5OEY1NEE5QTM2M0UwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDATRc1Ka18rMSY/AxCfZfIx7Vv
231J9CNjBR1s397Fr75ubtR3wXVqs2KINTIa+rdekUieujRscEFVDtV6yiwszXLA
RNqmdCZS5EX8YkwkmiccJMQCG7LtfjxP7waUp8FFrjycRncFI7k62SyqgVzU7RBZ
wfVKE8igaSvS4tlxAn1IUCqIabyzvgyRguGKKFEgiwrcBfTBRcxusTgO/neYP9T9
Q/D+ZpQf8nm2/C6r2mqzeYCaDHxWpZ+doU92CuTAVzBPJJ4IFqAlxQGETnt7U5+N
MQi42/a92UNG1na5XpHQH35C7ido+kogXRtvHpPTocfHeQ8kN+jY4fy+XOoLAgMB
AAGjggHfMIIB2zAdBgNVHQ4EFgQUAH9HyaR602v9YRL8wC6Y9UqaNj4wHwYDVR0j
BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud
HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv
MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv
BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw
RkNFQ0RCQ0VGRDEuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5
bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMyMzcyZTMxMzQzNzJl
MzYzMTJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzgzNDMyMzkucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAAbkz0wDQYJKoZIhvcNAQELBQADggEBAKYafJCp1O7+EFLUyCHX0kVA7BI33dBZ
DLHpLDyAil7faGkmqSnmHR/TBay11o0c+cq1iiHdZ6Dhk590Yy9uoSDy5QhNS9t5
Tav7XUTDY4/d4mdpwf9ldeXENro7pbmqH5PD+/0yIuVQIy1Kt8L8KwqifVKd+oRm
/+gKeIr+lXsKfZOLXlWQkxLS/1Eb4C2gjEkLpDIkYtlotSt41Acxb1XcqICauWeg
rkwLs2vtoEK4xc3YTqer3LdqdZweEx3QoJkUNS4FCxUQe7ixSsuUISUnc53L3Zj3
gCuFsJK6heV+m1AVb1y0YmU9c5K0cXxZ876luxsLn86tDVyOMXDn6RI=
-----END CERTIFICATE-----
Generated at Wed May 13 02:35:04 2026 by rpki-client