Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/HOSTIN/1/322e35382e3234322e302f32342d3234203d3e2039363738.roa
File: 322e35382e3234322e302f32342d3234203d3e2039363738.roa (raw, json)
Hash identifier: 20/au47MFkheH0xw2Ry8v40+WXu95ZMOioGimilGBJc=
Subject key identifier: F9:CC:81:6B:09:75:9D:9B:68:56:2F:29:B0:6B:C3:63:B3:FC:3B:8C
Certificate issuer: /CN=BDC7715D29F4E43198D59315B71674EE9F648F6D
Certificate serial: 2B7C6B2BD86EFAF5E06992506570CF0DC7BC3AA7
Authority key identifier: BD:C7:71:5D:29:F4:E4:31:98:D5:93:15:B7:16:74:EE:9F:64:8F:6D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BDC7715D29F4E43198D59315B71674EE9F648F6D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/HOSTIN/1/322e35382e3234322e302f32342d3234203d3e2039363738.roa
Signing time: Mon 11 May 2026 17:39:08 +0000
ROA not before: Mon 11 May 2026 17:34:08 +0000
ROA not after: Mon 10 May 2027 17:39:08 +0000
asID: 9678
IP address blocks: 2.58.242.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2b:7c:6b:2b:d8:6e:fa:f5:e0:69:92:50:65:70:cf:0d:c7:bc:3a:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BDC7715D29F4E43198D59315B71674EE9F648F6D
Validity
Not Before: May 11 17:34:08 2026 GMT
Not After : May 10 17:39:08 2027 GMT
Subject: CN=F9CC816B09759D9B68562F29B06BC363B3FC3B8C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ac:f9:d5:2a:fb:1b:cc:3d:39:5b:70:cd:e5:
25:e4:b8:35:b4:fb:bf:06:69:2c:32:cb:c5:ae:c3:
8b:69:27:6a:20:64:1d:08:8f:f4:75:47:0f:28:dd:
65:9b:a1:db:85:7c:0a:55:e3:d5:d4:88:d9:fa:5b:
0c:f4:48:84:b7:6c:f4:42:d2:0e:ba:77:a3:07:8e:
26:09:92:dc:4d:66:8b:0a:93:e0:81:45:5e:bd:41:
22:87:89:d7:19:30:4f:37:66:88:74:99:31:d3:5c:
f8:2c:7f:3a:30:61:4b:d6:a6:33:51:98:77:99:5d:
dd:0a:df:15:d8:2d:eb:74:c5:ac:1d:17:74:c3:99:
25:4e:65:c3:bf:21:f2:cf:05:8e:d9:7a:7b:82:8d:
c5:13:7e:58:3b:1a:d0:b2:85:af:b9:84:09:19:88:
4f:69:4b:8d:9d:cf:82:67:8b:14:d9:00:66:ec:26:
f5:bf:de:e4:fa:88:c8:d1:37:58:89:20:87:0c:66:
41:79:16:71:c0:14:7e:18:dd:fb:96:11:57:4f:6e:
52:60:b6:4c:a4:cc:24:44:c8:96:48:02:d8:7f:82:
42:99:18:ad:40:a8:74:08:cc:03:80:f0:00:88:02:
54:65:cf:5f:bc:24:4d:aa:ce:ec:8a:10:72:5d:42:
be:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:CC:81:6B:09:75:9D:9B:68:56:2F:29:B0:6B:C3:63:B3:FC:3B:8C
X509v3 Authority Key Identifier:
keyid:BD:C7:71:5D:29:F4:E4:31:98:D5:93:15:B7:16:74:EE:9F:64:8F:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/HOSTIN/1/BDC7715D29F4E43198D59315B71674EE9F648F6D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BDC7715D29F4E43198D59315B71674EE9F648F6D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HOSTIN/1/322e35382e3234322e302f32342d3234203d3e2039363738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
2.58.242.0/24
Signature Algorithm: sha256WithRSAEncryption
24:94:12:d9:a4:f1:a0:86:ac:31:d0:8f:8d:ef:07:a2:ca:3f:
45:2b:c0:5b:2e:6e:a9:78:57:0d:15:ea:ce:df:71:27:1f:b3:
54:af:23:7f:ca:d4:df:98:7a:58:b0:53:d1:a8:19:c1:5b:89:
e9:b4:7d:e6:0a:36:1e:61:f1:b1:84:b8:b2:ab:7b:1f:37:19:
80:15:b7:86:a2:51:86:2e:8c:bf:b9:32:92:83:ff:bf:88:12:
6e:e9:87:66:ea:80:70:00:ed:40:3e:bd:d2:2c:e0:ad:36:14:
a9:79:ff:d9:64:72:de:19:59:90:6f:dc:b6:d6:50:41:4f:e7:
f0:57:a6:c6:a9:c1:c9:94:97:79:94:91:4d:bd:ee:ea:84:e7:
d6:d6:c1:95:8c:14:fb:63:8c:64:5c:36:92:a9:69:73:9e:e8:
4f:c4:8e:cb:a3:e7:e5:1d:85:5a:b2:8f:e5:d9:5b:aa:72:18:
22:92:01:f8:1b:d1:6c:6e:d6:52:c5:ae:00:84:ed:7f:11:8e:
40:8d:06:86:87:cb:00:18:bc:40:a0:8e:20:65:a3:6a:62:bb:
ae:43:12:31:a6:d1:b0:a5:33:ea:71:6e:3d:64:66:8a:2a:86:
f4:53:7a:d1:19:87:70:ee:ce:93:b9:5c:ea:93:26:f1:bf:b6:
1e:b4:6e:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:51:41 2026 by rpki-client