Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e36332e302f32342d3234203d3e203138343239.roa
File: 32372e3134372e36332e302f32342d3234203d3e203138343239.roa (raw, json)
Hash identifier: iM5aTXQiy1Ha7dYKNvkKctiuR3rmBs71Fc8CWmpqQXU=
Subject key identifier: 0E:EA:BE:50:F2:F7:CA:D7:AC:17:DF:80:6E:A7:0F:F8:EA:04:D3:42
Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Certificate serial: 0989F241E4A23419D34C96DAAF85F9473F879FF2
Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e36332e302f32342d3234203d3e203138343239.roa
Signing time: Mon 11 May 2026 17:04:40 +0000
ROA not before: Mon 11 May 2026 16:59:40 +0000
ROA not after: Mon 10 May 2027 17:04:40 +0000
asID: 18429
IP address blocks: 27.147.63.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
09:89:f2:41:e4:a2:34:19:d3:4c:96:da:af:85:f9:47:3f:87:9f:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Validity
Not Before: May 11 16:59:40 2026 GMT
Not After : May 10 17:04:40 2027 GMT
Subject: CN=0EEABE50F2F7CAD7AC17DF806EA70FF8EA04D342
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:97:b1:83:46:5c:22:57:11:8b:e2:5d:cb:58:
25:81:d3:77:af:8a:e5:ab:d0:fc:ed:3c:96:04:cc:
d0:65:2f:5a:b7:6a:55:d2:e4:eb:16:f8:e2:a3:e3:
12:af:9f:18:62:dd:86:1a:76:e8:6f:53:2b:d5:30:
74:34:4b:a9:30:52:8f:cb:89:e5:9b:06:48:c6:4b:
39:24:05:7e:f8:c2:f7:ca:3f:82:95:9e:d9:aa:3d:
91:7d:13:84:cb:8b:73:e2:92:2a:c7:9e:e3:47:6e:
9f:3b:22:a3:19:6e:42:d2:80:40:c6:62:10:06:e5:
4a:35:b9:d9:c4:c5:2b:72:45:5b:62:c3:66:93:ba:
79:c9:7f:9d:f1:90:b2:8a:48:33:e0:49:6d:e6:62:
78:f3:e4:20:36:ac:b5:5b:fb:b6:ee:cf:c8:30:3a:
f2:69:ac:d3:65:4e:2b:f9:73:f3:81:e7:5d:d8:53:
98:a3:0f:43:66:9b:bb:32:80:e5:e7:77:7d:5a:1d:
3f:40:0f:72:5c:42:26:8b:76:77:17:56:7b:06:d9:
ab:b0:23:c7:11:e9:dc:f4:57:b5:28:92:0b:bd:fa:
8d:f4:d2:4f:c4:89:76:6b:9e:43:f4:25:c8:ee:3b:
c7:eb:5f:64:53:ac:df:f6:1c:7f:a0:0e:97:7b:a1:
60:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:EA:BE:50:F2:F7:CA:D7:AC:17:DF:80:6E:A7:0F:F8:EA:04:D3:42
X509v3 Authority Key Identifier:
keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e36332e302f32342d3234203d3e203138343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.147.63.0/24
Signature Algorithm: sha256WithRSAEncryption
45:d2:ed:1c:26:2a:3e:84:56:cc:71:9a:43:e6:31:04:0c:20:
77:8c:56:ac:27:48:75:4a:a5:7a:79:7c:ca:25:2a:e6:c4:22:
d6:a2:63:a2:02:99:1c:b9:6c:7d:a0:71:d2:50:e6:79:01:bb:
9d:46:e5:5b:8f:6d:18:a4:ba:7f:aa:fe:a9:f6:e6:d7:43:d8:
c3:2a:34:77:31:80:a4:f6:d0:ab:51:3b:6a:6a:8b:9f:ac:65:
7b:95:10:33:11:8b:0e:29:96:ca:b5:1d:92:d6:f8:6c:58:57:
8e:92:57:fe:97:a4:cc:f0:1b:6a:6f:ef:24:d0:53:c4:b1:9f:
ad:bc:ac:81:41:30:eb:24:5f:08:cb:ae:da:fb:7d:2d:39:57:
49:f1:c6:75:ea:b3:9e:2c:77:68:5c:f7:a3:80:62:15:e0:a5:
17:34:80:cb:b3:f5:4b:72:17:1f:e9:34:3f:75:f1:8d:98:34:
be:af:20:f1:a3:fc:12:a8:d1:37:52:58:bb:fb:c2:7a:a1:b4:
f0:a6:c6:59:9a:95:73:6e:d4:9e:a1:76:77:eb:52:fd:b2:6a:
74:1b:17:b5:95:43:f4:83:6c:a3:3a:f1:c7:b3:9e:a1:3d:00:
04:c0:c8:1f:38:6f:70:21:d9:81:dc:1d:43:f6:74:94:04:97:
be:e8:fb:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:35:03 2026 by rpki-client