Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e382e302f32312d3232203d3e203138343239.roa
File: 32372e3134372e382e302f32312d3232203d3e203138343239.roa (raw, json)
Hash identifier: uiV27JGKyrQTMkRRSyzSdQIcKGyFdaLnHldjHRk+iD8=
Subject key identifier: 51:2A:63:19:4B:2D:FF:79:6E:D2:C8:F4:04:19:E3:48:EB:8C:6F:47
Certificate issuer: /CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Certificate serial: 6D8359D17810FAA7B46B9D96065474106C278951
Authority key identifier: F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e382e302f32312d3232203d3e203138343239.roa
Signing time: Mon 11 May 2026 17:17:51 +0000
ROA not before: Mon 11 May 2026 17:12:51 +0000
ROA not after: Mon 10 May 2027 17:17:51 +0000
asID: 18429
IP address blocks: 27.147.8.0/21 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:83:59:d1:78:10:fa:a7:b4:6b:9d:96:06:54:74:10:6c:27:89:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1
Validity
Not Before: May 11 17:12:51 2026 GMT
Not After : May 10 17:17:51 2027 GMT
Subject: CN=512A63194B2DFF796ED2C8F40419E348EB8C6F47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:01:b6:10:a3:e7:5f:8d:ed:25:84:f9:66:1a:
14:79:86:d1:b4:2a:6a:c0:ea:80:e8:05:fc:07:b5:
3a:b3:4e:8e:06:7b:fb:aa:ff:fc:11:97:08:e1:3b:
cb:b5:aa:82:84:fa:76:ff:f6:f8:ce:32:d9:76:af:
0e:b9:79:b8:32:62:fb:11:93:d0:92:2a:64:67:e2:
7d:01:28:a6:50:3e:ab:4d:95:6c:39:c5:65:7b:52:
ad:9a:34:bf:0e:0a:be:17:d1:fd:3c:37:fb:15:ed:
01:5b:b5:41:e3:5c:75:eb:28:98:41:66:f4:62:81:
2f:48:44:28:29:43:4f:8f:7e:da:2a:78:33:ee:fe:
7d:54:a5:01:b1:e7:74:29:33:67:79:15:0d:70:dc:
e9:d6:ce:fd:b7:16:5e:c6:45:8f:bb:1d:43:81:92:
c6:fc:ee:ec:3e:c1:de:3e:de:f9:f7:ba:88:25:54:
22:4b:08:1f:b2:d5:ed:ba:ca:5a:12:16:35:10:79:
39:f8:01:9f:24:e4:57:5f:b9:3e:6f:bb:41:00:bb:
c1:18:11:4a:ec:62:bf:10:b8:ed:42:75:8a:cc:99:
a0:26:3f:dd:c4:a9:55:79:26:24:76:bc:ef:04:09:
c4:d8:1e:51:d2:8d:9b:1f:84:66:60:c6:ba:9d:a8:
cf:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:2A:63:19:4B:2D:FF:79:6E:D2:C8:F4:04:19:E3:48:EB:8C:6F:47
X509v3 Authority Key Identifier:
keyid:F7:9D:B3:05:C0:E7:E1:AF:AB:9E:43:29:3F:D0:0F:CE:CD:BC:EF:D1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F79DB305C0E7E1AFAB9E43293FD00FCECDBCEFD1.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CGNET/0/32372e3134372e382e302f32312d3232203d3e203138343239.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
27.147.8.0/21
Signature Algorithm: sha256WithRSAEncryption
ad:ac:b5:1f:6a:96:b5:d1:da:4e:26:c3:86:60:dc:b7:04:0a:
a7:71:46:0e:31:a2:bc:3a:2c:5a:c7:b1:b2:63:7f:55:fe:4f:
93:76:0f:60:93:a9:04:ab:bd:10:23:ca:6e:d1:de:e9:f5:11:
d5:21:08:93:10:ae:99:9a:d5:3f:9f:ca:62:d5:0a:4b:ce:08:
3a:5a:7f:66:55:90:5e:d9:52:a5:51:e3:ab:ba:d2:42:7c:3b:
a9:fa:2a:21:0c:d4:ee:ca:74:44:42:d8:2f:22:1e:50:a1:ee:
a0:6d:b9:44:0c:a1:95:71:19:93:ce:ce:2b:ab:10:d2:1c:c6:
e9:74:34:b0:3a:0c:d2:fd:ea:75:f6:34:6e:73:bb:2a:21:29:
f8:a2:b4:57:67:91:11:4b:db:4f:20:6d:04:13:e7:1d:1c:cc:
bd:0a:8d:d3:0f:17:a9:00:e7:4f:90:6e:ca:84:48:6c:c1:61:
b3:cf:40:17:51:2f:88:1f:d9:0a:f4:1b:8a:50:91:0d:c7:e1:
54:44:1f:23:3d:2f:13:1a:42:a1:32:da:64:43:b7:49:72:08:
1f:78:90:57:a4:45:19:bb:55:4f:4a:86:7a:19:69:1c:59:cb:
54:cb:04:fb:ff:0f:c3:fc:c6:6f:b4:30:77:52:e5:42:17:f1:
25:49:be:cf
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIUbYNZ0XgQ+qe0a52WBlR0EGwniVEwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjc5REIzMDVDMEU3RTFBRkFCOUU0MzI5M0ZEMDBGQ0VD
REJDRUZEMTAeFw0yNjA1MTExNzEyNTFaFw0yNzA1MTAxNzE3NTFaMDMxMTAvBgNV
BAMTKDUxMkE2MzE5NEIyREZGNzk2RUQyQzhGNDA0MTlFMzQ4RUI4QzZGNDcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJAbYQo+dfje0lhPlmGhR5htG0
KmrA6oDoBfwHtTqzTo4Ge/uq//wRlwjhO8u1qoKE+nb/9vjOMtl2rw65ebgyYvsR
k9CSKmRn4n0BKKZQPqtNlWw5xWV7Uq2aNL8OCr4X0f08N/sV7QFbtUHjXHXrKJhB
ZvRigS9IRCgpQ0+PftoqeDPu/n1UpQGx53QpM2d5FQ1w3OnWzv23Fl7GRY+7HUOB
ksb87uw+wd4+3vn3uoglVCJLCB+y1e26yloSFjUQeTn4AZ8k5FdfuT5vu0EAu8EY
EUrsYr8QuO1CdYrMmaAmP93EqVV5JiR2vO8ECcTYHlHSjZsfhGZgxrqdqM/5AgMB
AAGjggHdMIIB2TAdBgNVHQ4EFgQUUSpjGUst/3lu0sj0BBnjSOuMb0cwHwYDVR0j
BBgwFoAU952zBcDn4a+rnkMpP9APzs2879EwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud
HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0dORVQv
MC9GNzlEQjMwNUMwRTdFMUFGQUI5RTQzMjkzRkQwMEZDRUNEQkNFRkQxLmNybDBv
BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS8xL0Y3OURCMzA1QzBFN0UxQUZBQjlFNDMyOTNGRDAw
RkNFQ0RCQ0VGRDEuY2VyMHcGCCsGAQUFBwELBGswaTBnBggrBgEFBQcwC4ZbcnN5
bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9DR05FVC8wLzMyMzcyZTMxMzQzNzJl
MzgyZTMwMmYzMjMxMmQzMjMyMjAzZDNlMjAzMTM4MzQzMjM5LnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD
G5MIMA0GCSqGSIb3DQEBCwUAA4IBAQCtrLUfapa10dpOJsOGYNy3BAqncUYOMaK8
Oixax7GyY39V/k+Tdg9gk6kEq70QI8pu0d7p9RHVIQiTEK6ZmtU/n8pi1QpLzgg6
Wn9mVZBe2VKlUeOrutJCfDup+iohDNTuynREQtgvIh5Qoe6gbblEDKGVcRmTzs4r
qxDSHMbpdDSwOgzS/ep19jRuc7sqISn4orRXZ5ERS9tPIG0EE+cdHMy9Co3TDxep
AOdPkG7KhEhswWGzz0AXUS+IH9kK9BuKUJENx+FURB8jPS8TGkKhMtpkQ7dJcggf
eJBXpEUZu1VPSoZ6GWkcWctUywT7/w/D/MZvtDB3UuVCF/ElSb7P
-----END CERTIFICATE-----
Generated at Wed May 13 02:35:12 2026 by rpki-client