Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e36322e302f32342d3234203d3e203138343239.roa
File: 32372e3134372e36322e302f32342d3234203d3e203138343239.roa (raw, json)
Hash identifier: MqiYb0iThTRayGVm55jvH4NkmoxuoiHxK7oa1dcETZk=
Subject key identifier: BB:7D:D4:59:91:6A:C2:68:DA:29:83:9F:4A:2D:96:9C:00:97:A9:8B
Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Certificate serial: 25B0F4C8B912950EFD192EA86F7339D3BD9E1C95
Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e36322e302f32342d3234203d3e203138343239.roa
Signing time: Mon 11 May 2026 17:04:39 +0000
ROA not before: Mon 11 May 2026 16:59:39 +0000
ROA not after: Mon 10 May 2027 17:04:39 +0000
asID: 18429
IP address blocks: 27.147.62.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
25:b0:f4:c8:b9:12:95:0e:fd:19:2e:a8:6f:73:39:d3:bd:9e:1c:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Validity
Not Before: May 11 16:59:39 2026 GMT
Not After : May 10 17:04:39 2027 GMT
Subject: CN=BB7DD459916AC268DA29839F4A2D969C0097A98B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:54:f3:50:cb:79:92:ce:f7:27:8f:5c:00:98:
08:3b:3a:38:22:10:11:f7:86:af:a7:f4:a9:32:e9:
56:e7:f4:7a:f4:f1:d6:a5:3a:6b:05:31:b2:da:40:
b5:2a:28:2f:af:b3:59:75:20:bb:e6:5b:20:e7:20:
f8:39:65:64:cd:d2:91:2f:0d:a9:53:66:1a:c0:bb:
f4:2e:8b:74:2c:52:c5:69:6e:af:64:01:65:e0:12:
ba:32:58:f0:c9:47:25:1f:3c:97:f4:6b:81:ba:0f:
a4:b4:1e:0e:9d:f0:87:cc:29:75:b8:44:55:06:09:
cc:aa:f5:71:57:cb:64:95:2a:19:4c:c8:e8:29:35:
5f:c8:1e:8b:bb:16:52:fc:03:9a:35:e5:16:e1:c4:
16:a5:a2:a6:67:d0:54:c9:42:c4:b8:31:bd:5b:e1:
29:c2:b7:a4:48:5a:ae:22:f1:3d:bf:be:d1:a5:9e:
6a:c2:96:0f:c4:78:18:76:3b:12:a5:7d:ca:c6:c8:
ad:c1:c0:1e:7b:ed:2c:a2:12:91:7c:4d:a1:a9:66:
14:82:c7:f8:ef:8f:79:c1:e6:08:60:6f:84:91:35:
88:e5:74:dc:83:9c:f7:62:33:9e:61:d1:42:89:8a:
b1:81:96:f5:67:ba:2b:97:cd:8c:75:ed:e7:0a:28:
af:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:7D:D4:59:91:6A:C2:68:DA:29:83:9F:4A:2D:96:9C:00:97:A9:8B
X509v3 Authority Key Identifier:
keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e36322e302f32342d3234203d3e203138343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.147.62.0/24
Signature Algorithm: sha256WithRSAEncryption
52:4c:f1:c3:1d:e8:9f:ea:f6:de:68:7a:22:77:45:d5:40:8d:
42:1f:33:fd:19:d7:70:2b:33:d3:89:13:e3:73:5c:a9:41:63:
4b:cc:9e:a6:ee:ce:6b:7f:26:ab:b9:a0:d4:1c:b8:dc:f9:f0:
5d:d4:19:16:22:32:fd:f8:d3:d7:30:70:a2:b1:3b:29:35:1e:
bc:0c:c6:c8:1d:e3:dd:33:ee:07:87:d7:89:a3:d2:70:b8:1e:
96:b9:ed:1f:51:4b:1e:a5:25:2f:8f:cd:dc:2d:cb:00:7f:90:
44:a2:5a:15:fe:f1:4a:52:2c:5b:2c:20:f0:54:4b:47:de:71:
48:71:54:ba:d6:68:89:6f:53:d1:de:0b:26:6b:dd:05:80:be:
93:58:cc:7c:42:59:37:08:79:55:5d:55:a6:c8:e9:78:c0:fa:
ae:43:90:20:95:17:f7:ab:9d:74:c8:ef:33:a8:a3:54:d9:10:
1b:8a:78:1a:3d:94:07:0a:da:65:31:e3:0e:10:fa:a6:b2:44:
ac:ac:f2:3e:60:1f:85:86:9b:41:9c:1a:0a:58:82:b8:e1:72:
26:d7:de:0d:93:51:b0:df:b8:d6:1b:b3:0e:65:06:6b:06:1b:
e4:50:62:65:c1:fe:eb:d2:ac:f7:41:cc:73:bb:36:05:4a:a8:
13:02:11:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:35:03 2026 by rpki-client