Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/NARL/0/3130332e3132342e37322e302f32322d3234203d3e2037353339.roa
File: 3130332e3132342e37322e302f32322d3234203d3e2037353339.roa (raw, json)
Hash identifier: /oWUtrivyYYR3xINxuZfk4J46KekrLAODBaoBbnjf6g=
Subject key identifier: 45:A5:40:CD:35:01:29:C7:60:C4:23:35:D7:15:E1:E3:F1:1B:74:FF
Certificate issuer: /CN=9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1
Certificate serial: 7BC79B19FD98F99903D99D03B7CAE590090E9BE1
Authority key identifier: 9D:85:BB:8D:93:00:6D:35:86:E2:8D:0D:66:12:CA:FA:CC:8E:A6:C1
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/NARL/0/3130332e3132342e37322e302f32322d3234203d3e2037353339.roa
Signing time: Mon 11 May 2026 17:04:57 +0000
ROA not before: Mon 11 May 2026 16:59:57 +0000
ROA not after: Mon 10 May 2027 17:04:57 +0000
asID: 7539
IP address blocks: 103.124.72.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7b:c7:9b:19:fd:98:f9:99:03:d9:9d:03:b7:ca:e5:90:09:0e:9b:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1
Validity
Not Before: May 11 16:59:57 2026 GMT
Not After : May 10 17:04:57 2027 GMT
Subject: CN=45A540CD350129C760C42335D715E1E3F11B74FF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7f:6e:54:ff:50:6f:81:dd:98:a2:7f:79:7f:
bf:c9:9c:0c:38:d7:5f:b7:fd:2e:72:24:8d:a2:88:
1c:b1:b8:d4:68:55:c2:cb:0a:36:e4:ea:c2:c6:df:
a2:db:5a:49:52:6c:17:c7:3c:cd:9b:38:7d:77:88:
0f:18:4f:1f:41:d7:5c:f6:8d:39:54:25:69:be:2a:
83:4c:84:ef:d0:2d:30:a1:bc:1e:02:99:4d:f9:c9:
53:36:df:22:ca:60:70:ab:1c:a6:0f:ea:04:2e:e6:
3b:37:7d:6c:8c:cd:e0:7a:36:a5:eb:9c:1f:b0:81:
2a:f6:4b:d0:c4:8f:be:59:48:01:40:a2:c5:fe:d4:
2d:71:a9:1a:b4:52:22:ea:77:09:47:fb:10:a6:eb:
54:d2:30:24:40:ae:6e:0a:c4:de:59:d5:ae:24:f3:
3c:5a:29:ab:c5:bb:38:26:5b:b0:07:e5:e9:35:0b:
c8:91:4f:4a:4c:7b:56:8c:57:27:de:76:45:18:50:
dc:25:c9:b3:7b:e5:61:e4:db:3f:85:3b:65:c3:0a:
0a:fd:36:98:2e:ec:3b:f0:91:fb:d7:24:77:8c:30:
2e:08:86:ae:a4:05:ea:a2:02:5f:2c:bf:7a:39:52:
44:2e:74:32:62:48:b1:d3:0d:93:a6:6e:49:f6:ad:
e6:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:A5:40:CD:35:01:29:C7:60:C4:23:35:D7:15:E1:E3:F1:1B:74:FF
X509v3 Authority Key Identifier:
keyid:9D:85:BB:8D:93:00:6D:35:86:E2:8D:0D:66:12:CA:FA:CC:8E:A6:C1
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NARL/0/3130332e3132342e37322e302f32322d3234203d3e2037353339.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.124.72.0/22
Signature Algorithm: sha256WithRSAEncryption
2d:7e:d2:17:44:b5:5c:21:01:08:fa:0a:d1:25:b0:61:1a:cc:
7d:d9:00:b9:f9:c4:66:b2:1d:82:42:81:b5:23:88:19:d5:71:
19:01:9d:f0:2f:cf:e3:f1:6c:d3:63:56:de:4b:25:ac:ee:e3:
dd:87:5d:78:97:8c:f2:b8:5d:a5:aa:0a:30:5c:fc:36:88:c4:
e7:9e:db:c4:f1:39:31:d3:37:64:43:ef:28:cc:4f:e5:33:b0:
3c:cf:94:25:f7:e5:dd:55:2b:53:e8:43:04:e3:6b:8c:ff:61:
ff:d8:a2:40:9f:9e:25:dc:57:54:19:ea:00:f2:bf:a6:e9:7d:
b6:e0:b6:da:e1:fd:47:94:90:22:d6:5b:9a:09:e9:97:51:db:
ba:ff:34:ff:0f:7b:6a:8e:4d:85:ba:3a:db:c7:38:7a:b6:0f:
57:ab:f0:a8:e0:ac:c8:6f:72:e0:41:f0:26:c2:b4:c5:60:6f:
7f:ab:d2:40:1f:77:3c:71:5c:e7:61:37:7b:f6:fb:a1:04:ab:
8d:61:f9:1d:e5:95:56:4b:90:d3:a7:de:f5:e5:d2:72:e2:d7:
e5:52:cd:63:05:21:69:10:44:0a:0b:0c:33:72:ff:aa:38:27:
8e:98:25:dd:83:36:d9:91:53:fd:b9:a8:9a:3a:6b:3e:4d:a6:
ac:78:2d:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:17:17 2026 by rpki-client