Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3232342e302f32302d3234203d3e2034373830.roa
File: 3139322e37322e3232342e302f32302d3234203d3e2034373830.roa (raw, json)
Hash identifier: JFJbmB7cfEuw1iDDZaeMc1QewQMUllS7sHbdWQbrgDc=
Subject key identifier: 6D:4F:BC:EC:23:54:69:B7:7D:CC:C7:78:3D:66:1E:F4:66:62:AB:24
Certificate issuer: /CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B
Certificate serial: 3A8EFEC3787955821BCC71F217471534FB8E79A7
Authority key identifier: D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3232342e302f32302d3234203d3e2034373830.roa
Signing time: Mon 11 May 2026 16:41:11 +0000
ROA not before: Mon 11 May 2026 16:36:11 +0000
ROA not after: Mon 10 May 2027 16:41:11 +0000
asID: 4780
IP address blocks: 192.72.224.0/20 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3a:8e:fe:c3:78:79:55:82:1b:cc:71:f2:17:47:15:34:fb:8e:79:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B
Validity
Not Before: May 11 16:36:11 2026 GMT
Not After : May 10 16:41:11 2027 GMT
Subject: CN=6D4FBCEC235469B77DCCC7783D661EF46662AB24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:20:5a:f9:19:00:f1:d2:5f:30:01:62:c1:c4:
e6:7c:3e:43:ed:e6:73:72:0a:a3:b3:02:3e:5c:ad:
b3:c1:19:7a:bb:76:17:69:06:df:5b:fe:3c:fc:83:
66:2e:f4:86:4b:9d:ee:e5:b3:89:72:39:00:04:e3:
7c:0d:db:88:0f:1d:67:a0:2a:10:41:8f:89:0d:cc:
26:59:d8:5f:95:b9:16:0d:33:67:dd:9e:88:66:a5:
0b:ad:73:ea:6f:35:a3:6f:66:aa:8f:17:7b:73:b1:
9e:83:0d:4b:1d:66:c8:41:e3:af:f5:6b:0a:d1:7f:
31:fa:b1:af:ab:5b:94:ae:32:52:f9:82:a0:f9:49:
ee:3b:91:e7:e7:5b:f7:9d:f6:7c:6a:e3:e0:a7:90:
79:88:c1:b5:70:8c:a8:fe:9c:9a:ea:07:16:30:c2:
bd:d2:06:5b:5c:dc:2c:ed:22:29:b0:49:79:1f:58:
83:e8:75:bc:fc:dd:80:c6:b2:5e:d7:06:38:1e:c2:
fb:c6:b0:59:2b:bb:43:b8:14:bb:af:56:b0:ab:7b:
f0:ee:e5:d7:6c:7c:53:84:ac:c2:d9:13:57:f4:b7:
72:fc:d4:53:27:13:08:8e:c6:9f:33:91:c2:d5:5f:
bc:a7:40:17:e2:64:17:9d:eb:61:84:44:80:15:5f:
f5:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:4F:BC:EC:23:54:69:B7:7D:CC:C7:78:3D:66:1E:F4:66:62:AB:24
X509v3 Authority Key Identifier:
keyid:D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e3232342e302f32302d3234203d3e2034373830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.72.224.0/20
Signature Algorithm: sha256WithRSAEncryption
3c:92:71:13:80:79:cc:7a:3b:a9:51:a0:02:4c:15:78:60:4d:
a1:09:0a:83:be:41:95:4f:e8:16:72:8a:67:90:11:cf:77:69:
48:48:e0:e6:03:3f:22:13:6d:30:d7:ef:b3:42:cb:52:3d:fa:
bd:5f:d4:e3:16:01:da:a8:08:88:ce:0e:86:c8:0f:e5:b9:d4:
97:2f:92:38:5f:1c:38:a5:78:36:d9:fa:d1:99:9b:57:50:41:
74:0e:dd:f9:98:6f:6d:58:77:aa:db:dd:d5:91:7d:98:de:ff:
8f:ae:85:03:4c:91:a5:2f:49:9c:64:3b:76:0c:ee:0f:88:2e:
78:ce:a5:12:12:b0:12:32:25:2c:74:9a:c0:15:17:26:a7:58:
68:48:2d:54:b4:e7:4e:5e:4f:f2:25:32:c4:b5:fa:56:99:2b:
00:46:92:15:f0:33:16:45:67:bb:14:b3:b6:97:69:1f:13:71:
29:53:6e:fa:10:1f:6b:94:f8:49:47:1c:32:57:70:3f:e8:f4:
24:13:66:0c:48:ae:54:b4:82:13:09:19:44:2c:bb:33:7d:40:
02:a0:d9:ec:84:93:4d:97:8d:61:c0:29:e5:0d:9a:12:4d:c9:
57:5c:fe:d9:f0:1d:1d:6e:1b:e7:ec:e9:04:ee:93:d0:8c:c5:
0b:6e:4b:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:38:22 2026 by rpki-client