Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3139322e302f31392d3234203d3e2034373830.roa
File: 3139322e37322e3139322e302f31392d3234203d3e2034373830.roa (raw, json)
Hash identifier: HDP+weW9NczVRv3tVvCtth7CO+aCW75PFkRxJDjQFGU=
Subject key identifier: 95:20:CF:EC:5D:62:9C:BE:DD:55:09:57:F3:25:C1:99:57:63:BD:F8
Certificate issuer: /CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B
Certificate serial: 4FD44E383E3529ACA46E2D20D7D45B2E7AD161CC
Authority key identifier: D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3139322e302f31392d3234203d3e2034373830.roa
Signing time: Mon 11 May 2026 16:31:55 +0000
ROA not before: Mon 11 May 2026 16:26:55 +0000
ROA not after: Mon 10 May 2027 16:31:55 +0000
asID: 4780
IP address blocks: 192.72.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:d4:4e:38:3e:35:29:ac:a4:6e:2d:20:d7:d4:5b:2e:7a:d1:61:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B
Validity
Not Before: May 11 16:26:55 2026 GMT
Not After : May 10 16:31:55 2027 GMT
Subject: CN=9520CFEC5D629CBEDD550957F325C1995763BDF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:95:eb:77:e8:e5:93:79:1e:74:7f:18:6b:95:
59:9f:55:e5:a1:07:78:9a:61:62:eb:10:ad:40:1b:
5d:3b:3b:82:87:93:70:05:9a:e0:5b:68:cc:c4:f9:
d0:5d:81:45:0a:cf:5f:da:f4:4f:8c:02:40:7d:d0:
74:8b:ed:76:3d:11:84:4a:0c:6a:34:ff:42:fa:f3:
1e:54:d3:27:c2:85:c8:25:fa:23:cc:ce:f9:b4:1d:
7f:d6:3b:da:4b:01:5b:ef:65:2a:b7:65:b8:3b:e3:
16:e2:81:84:a3:b3:6f:a4:28:b9:54:9c:ab:1e:26:
ee:99:2a:b4:8b:b5:60:dd:8f:d5:a8:6a:1e:08:d1:
83:cf:30:8f:42:4b:74:a4:bf:32:54:18:df:9f:72:
ea:12:2e:f1:8f:dd:1f:3b:bf:b4:9d:ee:6d:6a:12:
e2:09:9d:dd:c3:9a:d3:8b:85:74:dd:9a:f0:fe:f3:
0c:ac:b2:14:93:ab:42:32:65:7c:35:4c:1e:51:ed:
0c:b3:71:f8:d7:e9:c7:c2:26:d2:f2:4c:c7:1d:2d:
10:55:07:2b:6d:ba:a8:eb:c6:65:a1:2e:47:92:b0:
ba:ad:49:1a:1b:2d:00:3b:25:92:0f:f9:29:b2:45:
ed:67:bb:47:0c:2b:d2:3e:cf:98:fb:69:42:b7:11:
14:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:20:CF:EC:5D:62:9C:BE:DD:55:09:57:F3:25:C1:99:57:63:BD:F8
X509v3 Authority Key Identifier:
keyid:D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3139322e302f31392d3234203d3e2034373830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.72.192.0/19
Signature Algorithm: sha256WithRSAEncryption
24:03:30:dc:af:17:52:a6:b0:8a:6e:dc:37:7d:6c:1c:52:ee:
cd:57:a3:9b:46:2e:93:36:7f:b7:7e:1c:f6:2e:0d:89:7b:42:
eb:35:c9:1b:59:94:1d:c8:3d:d1:ca:84:28:53:12:b3:90:35:
30:1f:f5:ff:4e:32:03:e6:ac:6e:c2:a3:92:5e:4c:9a:5d:89:
b6:e0:a3:50:2c:a0:50:37:59:bf:03:c8:d7:80:55:80:28:ad:
38:af:27:2d:1c:29:64:b9:1d:b2:3d:ed:b8:6f:93:91:78:2f:
e3:2f:55:7d:48:9a:6c:06:9b:e8:a2:f8:84:4b:c4:67:31:09:
1d:83:38:13:d4:08:fe:8e:4f:51:6b:8a:86:9a:d3:da:95:77:
13:02:f2:b4:4e:9e:c2:13:2e:aa:91:28:dd:f5:85:0f:ae:66:
10:f6:42:a7:bc:ed:cc:5d:76:3f:db:72:8b:84:1f:69:04:42:
bd:37:1a:7e:18:48:6e:50:9b:cc:d0:84:cb:b3:8b:f2:19:b1:
67:dd:0b:df:68:46:5f:fe:03:82:58:fc:17:9f:d0:0e:aa:1e:
6f:a9:2d:cc:13:32:68:8c:a3:54:da:68:d4:da:71:d8:50:66:
d0:45:9b:3a:af:d1:3d:90:7a:d7:00:fa:a9:58:08:7f:13:02:
bd:fe:53:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:26:38 2026 by rpki-client