Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/HYA/0/3131342e32392e3234302e302f32322d3232203d3e203130303835.roa
File: 3131342e32392e3234302e302f32322d3232203d3e203130303835.roa (raw, json)
Hash identifier: Iu3XM7OWOu4YExXTvgO6ZRczd2wJf5M+hq5Ui0NVDWs=
Subject key identifier: 3B:27:CD:61:AD:66:E5:6D:79:80:9C:D2:8A:1E:5E:45:95:DB:A7:95
Certificate issuer: /CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A
Certificate serial: 5D78A2AB65A6048AAA29B11ABB020C481ADF1237
Authority key identifier: 72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/HYA/0/3131342e32392e3234302e302f32322d3232203d3e203130303835.roa
Signing time: Mon 11 May 2026 17:01:22 +0000
ROA not before: Mon 11 May 2026 16:56:22 +0000
ROA not after: Mon 10 May 2027 17:01:22 +0000
asID: 10085
IP address blocks: 114.29.240.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:78:a2:ab:65:a6:04:8a:aa:29:b1:1a:bb:02:0c:48:1a:df:12:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=72487E17C240D55C16E8FE5B0B71D4498DD3099A
Validity
Not Before: May 11 16:56:22 2026 GMT
Not After : May 10 17:01:22 2027 GMT
Subject: CN=3B27CD61AD66E56D79809CD28A1E5E4595DBA795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:2b:36:c2:46:5d:97:95:3d:4a:91:10:e6:d9:
ee:0c:c6:d0:58:8d:7d:69:34:9e:f3:6b:db:61:f8:
89:46:5d:6d:a7:ce:5d:22:09:ea:03:52:97:62:c1:
0e:60:d8:95:50:74:4d:9d:18:48:02:35:7b:20:a3:
27:de:8f:76:d6:6d:7a:39:4f:77:b6:6d:90:a9:d7:
e0:a2:6f:6f:62:78:e9:d7:7c:e6:01:75:79:99:de:
ac:7c:90:d5:dd:10:b4:9d:02:d1:9e:bf:18:01:c1:
fa:a7:3c:65:ec:a6:ad:d3:12:3e:2e:8f:de:f9:50:
a5:e8:68:de:a8:c4:7f:a9:c2:95:7b:a2:ab:7b:7d:
88:87:aa:ec:53:95:87:af:71:b2:fb:39:0e:c7:91:
a8:72:a4:a9:9f:7b:91:a0:8d:a5:b3:5a:72:81:0c:
e0:ff:f6:04:cf:c8:d1:39:72:42:0f:fc:a5:f5:1d:
40:28:f4:94:b9:0b:2d:de:aa:22:52:41:e5:ea:fd:
92:2f:09:34:7a:d4:fc:54:f2:b7:67:2a:59:53:e0:
b9:98:75:32:49:34:1c:12:30:be:9d:44:ec:7e:33:
0b:4d:f7:ad:ec:3d:49:1a:be:a6:43:24:d4:81:f0:
8a:de:42:fd:a5:a0:52:ca:0f:6b:e1:1a:96:f7:ea:
af:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:27:CD:61:AD:66:E5:6D:79:80:9C:D2:8A:1E:5E:45:95:DB:A7:95
X509v3 Authority Key Identifier:
keyid:72:48:7E:17:C2:40:D5:5C:16:E8:FE:5B:0B:71:D4:49:8D:D3:09:9A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/HYA/0/72487E17C240D55C16E8FE5B0B71D4498DD3099A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/72487E17C240D55C16E8FE5B0B71D4498DD3099A.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HYA/0/3131342e32392e3234302e302f32322d3232203d3e203130303835.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
114.29.240.0/22
Signature Algorithm: sha256WithRSAEncryption
06:a6:28:18:cd:e4:56:f5:62:a9:0c:47:15:bf:51:64:c0:d4:
23:6c:2e:77:49:90:9e:6e:df:5c:cc:c8:c7:31:96:61:e3:66:
7a:4a:d2:f0:e5:a9:e2:9d:01:97:a7:26:fc:a2:69:6e:ee:97:
dd:31:fa:b2:54:cd:17:a1:b7:a5:ab:93:0f:8c:ac:a1:e5:be:
08:7d:03:8f:9b:13:56:13:5f:f7:16:7f:1c:be:75:ff:88:e2:
dc:c7:2a:8f:b5:81:9e:d6:44:ea:1a:36:3d:58:cc:dd:5d:a7:
76:dc:bf:63:9e:36:fe:e6:ab:1f:6c:77:e3:f5:a0:3c:c8:3a:
d5:74:b0:06:1e:7d:da:6f:c8:76:ed:ad:9e:67:5c:4b:57:21:
6f:1d:75:0f:bc:35:82:9d:fc:d0:df:f1:24:7c:c6:46:0e:58:
23:c5:5d:b6:a8:e2:93:7f:4a:52:2d:b3:0d:6f:64:6d:a3:39:
d2:17:17:a7:27:61:d0:c5:5f:4d:69:73:cf:56:0c:7a:34:ae:
09:ed:5e:a7:ea:96:0b:88:e4:24:83:76:cf:99:bd:2c:a5:2a:
74:64:75:99:59:5d:91:c5:a1:e6:3d:0a:80:ea:c6:ec:31:09:
25:60:da:f1:ca:18:42:d1:eb:d4:df:7b:2c:52:79:59:b2:a2:
1d:d0:9c:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:56:14 2026 by rpki-client