Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/HOSTIN/1/322e35382e3234312e302f32342d3234203d3e2039363738.roa
File: 322e35382e3234312e302f32342d3234203d3e2039363738.roa (raw, json)
Hash identifier: xOi/I/BBtkCDpDsROaS/HLOcxW99pEr4rll9RneIDHw=
Subject key identifier: AF:1C:D9:DD:7D:B6:8D:62:39:12:02:1E:E2:19:B4:FD:FD:63:A5:0D
Certificate issuer: /CN=BDC7715D29F4E43198D59315B71674EE9F648F6D
Certificate serial: 0248130A64A0174F194C175B74AF665921564027
Authority key identifier: BD:C7:71:5D:29:F4:E4:31:98:D5:93:15:B7:16:74:EE:9F:64:8F:6D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BDC7715D29F4E43198D59315B71674EE9F648F6D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/HOSTIN/1/322e35382e3234312e302f32342d3234203d3e2039363738.roa
Signing time: Mon 11 May 2026 17:39:07 +0000
ROA not before: Mon 11 May 2026 17:34:07 +0000
ROA not after: Mon 10 May 2027 17:39:07 +0000
asID: 9678
IP address blocks: 2.58.241.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:48:13:0a:64:a0:17:4f:19:4c:17:5b:74:af:66:59:21:56:40:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDC7715D29F4E43198D59315B71674EE9F648F6D
Validity
Not Before: May 11 17:34:07 2026 GMT
Not After : May 10 17:39:07 2027 GMT
Subject: CN=AF1CD9DD7DB68D623912021EE219B4FDFD63A50D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:ee:36:d8:65:6b:16:e9:d8:f4:5c:dc:18:22:
6b:63:c6:33:4f:f8:eb:94:67:3d:c8:3d:8a:a3:4d:
57:3e:28:37:17:15:97:ca:96:d5:23:2b:13:97:99:
de:2f:0f:c9:85:9e:80:3c:f8:67:b7:53:6a:b0:5a:
a7:3a:a5:1c:73:cd:3d:d5:65:10:22:02:66:eb:19:
1e:07:b6:83:e9:b7:85:09:46:64:75:3b:c5:d6:a2:
35:30:fb:63:1f:d4:39:aa:8a:78:b4:64:94:35:bd:
58:6c:74:25:26:76:a1:da:7d:bf:b0:06:a8:23:cf:
f9:a9:62:b8:af:28:af:00:cc:4b:1d:05:4a:2a:0f:
b4:6a:58:92:4f:d6:e0:32:b8:d7:0f:df:a3:6f:72:
c6:8f:20:5a:88:f3:e8:ad:25:1e:e7:6c:a2:15:33:
e1:7d:9c:6e:31:bf:17:80:f9:27:5e:1d:a0:de:57:
b2:30:f4:0d:ef:1f:88:34:61:cb:05:24:ef:c9:fb:
75:94:d2:66:b0:ad:18:a9:5a:2b:9e:cf:c6:94:3d:
1e:93:1d:1c:cb:1b:fd:ea:67:fb:1d:39:09:b2:90:
ca:be:ad:d2:ef:60:e6:5f:b1:5a:13:5e:18:ba:84:
02:69:66:7b:63:f3:95:0c:ea:09:90:9c:d3:9f:60:
42:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:1C:D9:DD:7D:B6:8D:62:39:12:02:1E:E2:19:B4:FD:FD:63:A5:0D
X509v3 Authority Key Identifier:
keyid:BD:C7:71:5D:29:F4:E4:31:98:D5:93:15:B7:16:74:EE:9F:64:8F:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/HOSTIN/1/BDC7715D29F4E43198D59315B71674EE9F648F6D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BDC7715D29F4E43198D59315B71674EE9F648F6D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HOSTIN/1/322e35382e3234312e302f32342d3234203d3e2039363738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.241.0/24
Signature Algorithm: sha256WithRSAEncryption
73:dd:25:99:97:47:e5:1a:5b:3c:8a:74:ce:58:25:d8:d4:3b:
22:30:14:c0:92:6d:14:3e:e1:db:b3:29:b9:5f:a8:b5:90:b7:
cd:28:b7:98:b5:27:51:68:77:26:6a:2e:fe:98:ab:33:d4:34:
f2:b9:e2:6b:f9:35:c7:89:69:5c:be:31:e8:d6:35:92:61:04:
30:78:ae:73:20:4c:14:d9:47:4f:52:63:d1:d0:24:ef:b0:b1:
9d:af:a4:65:f7:c3:68:2b:3f:a9:22:ab:6b:1e:69:2f:65:82:
c5:b7:f2:c5:5e:0a:57:0e:1a:ed:de:4a:13:66:9c:6f:2e:ed:
02:cb:93:74:15:02:0c:f2:e6:b4:e3:30:ab:d9:9c:dd:ae:5b:
aa:30:6e:e2:af:62:02:a3:23:21:49:72:df:fa:a3:22:96:97:
0b:7f:20:41:78:a2:46:41:38:36:b3:7d:b9:37:b4:a8:ca:0e:
12:0a:41:19:31:a7:e9:ff:13:8a:b3:a1:af:47:a4:a9:ec:92:
11:af:f9:9f:3e:79:f6:5f:48:ac:a9:80:e2:7a:ca:c5:f2:dc:
9d:3b:a7:40:81:58:fa:5d:88:5f:30:48:16:9a:59:49:71:3c:
3a:15:e3:35:a5:db:84:f9:f4:36:33:7a:88:28:62:6c:8b:e4:
8b:1f:7b:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:51:49 2026 by rpki-client