Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e332e302f32342d3234203d3e2034373830.roa
File: 3139322e37322e332e302f32342d3234203d3e2034373830.roa (raw, json)
Hash identifier: hj2bnED2YLfhRnAL+cGxD8mEc2iquoy7i11842ivkl8=
Subject key identifier: F5:9A:90:24:5D:27:54:11:D0:53:90:8D:F8:52:DA:38:E5:30:6E:F6
Certificate issuer: /CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B
Certificate serial: 623FA33443F0806C8374AABCC96F428168F790C1
Authority key identifier: D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e332e302f32342d3234203d3e2034373830.roa
Signing time: Mon 11 May 2026 17:04:30 +0000
ROA not before: Mon 11 May 2026 16:59:30 +0000
ROA not after: Mon 10 May 2027 17:04:30 +0000
asID: 4780
IP address blocks: 192.72.3.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:3f:a3:34:43:f0:80:6c:83:74:aa:bc:c9:6f:42:81:68:f7:90:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D5C99016D01EDDE0A4D47C3C948EE8859612C73B
Validity
Not Before: May 11 16:59:30 2026 GMT
Not After : May 10 17:04:30 2027 GMT
Subject: CN=F59A90245D275411D053908DF852DA38E5306EF6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:a3:6c:61:c5:ea:a9:7b:eb:0f:29:b4:9b:17:
ff:45:d2:db:32:ab:c7:31:ad:28:d5:bf:53:62:b6:
0c:9c:36:6c:66:40:c8:c1:34:49:ab:0a:ea:19:4a:
09:ee:e3:d0:3f:06:dd:f4:78:61:9b:43:9c:f2:76:
31:6d:a0:f8:ca:0b:27:7d:f5:1c:a8:3c:db:68:9b:
72:6b:86:00:25:ab:5b:3b:01:7e:6e:0b:e7:63:fa:
f1:6b:c5:2a:4f:8f:e6:5d:1a:16:db:e1:36:8c:ef:
8b:ed:4d:1f:43:4b:0f:94:01:0a:66:a0:e7:11:77:
89:b2:9a:96:8c:6c:4c:5f:bf:5e:02:42:65:82:24:
b3:e6:86:a0:f1:92:7a:47:62:8d:20:f9:ba:22:d2:
ae:6f:07:10:2e:63:fe:49:d1:78:e7:29:f2:60:00:
ca:36:de:58:10:ec:ee:e8:0b:a7:71:39:06:60:85:
6a:b5:6b:61:ad:1d:96:a3:1a:63:e2:81:21:93:40:
e4:14:60:cd:fe:9f:ad:50:00:8b:15:87:e3:c4:7a:
0f:b7:59:7b:3f:c3:00:5a:66:89:6b:ac:ac:6b:24:
12:1a:06:98:f2:25:9a:38:0b:08:45:64:f3:aa:5a:
ab:76:ec:fb:70:3e:b7:fd:a9:be:32:08:55:e1:23:
36:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:9A:90:24:5D:27:54:11:D0:53:90:8D:F8:52:DA:38:E5:30:6E:F6
X509v3 Authority Key Identifier:
keyid:D5:C9:90:16:D0:1E:DD:E0:A4:D4:7C:3C:94:8E:E8:85:96:12:C7:3B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/D5C99016D01EDDE0A4D47C3C948EE8859612C73B.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCIC/1/3139322e37322e332e302f32342d3234203d3e2034373830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
192.72.3.0/24
Signature Algorithm: sha256WithRSAEncryption
4f:c6:ac:a4:72:4a:36:5f:20:d8:eb:54:c1:b4:70:cc:ce:34:
a1:bc:ad:1e:2f:5c:11:13:b6:49:3b:c6:13:69:b7:fc:86:34:
75:e0:63:8e:f9:ab:f2:27:41:5f:c1:16:52:d4:ce:86:d1:2d:
c6:db:83:91:39:bf:39:10:5c:97:aa:88:2c:4f:69:79:78:a8:
97:68:bc:e2:2e:0a:ef:75:24:45:52:e2:66:3f:b1:bf:76:f1:
d5:46:fc:72:60:dd:8f:60:b7:b1:9e:6b:fb:47:22:d8:00:43:
96:4d:08:fc:e5:d5:1b:74:da:3f:ba:31:9a:f3:d1:a1:41:86:
ed:04:d3:b9:b1:47:cb:a9:61:d1:67:41:9d:86:a2:dc:b1:6d:
70:10:55:e8:3a:00:e8:11:23:bf:c6:d3:d7:91:1c:b2:1b:11:
71:cf:61:68:01:1e:1f:32:88:47:a9:ee:a6:c7:90:d9:52:4a:
21:d6:29:a9:80:61:7f:5b:50:9b:45:a7:cf:44:38:0c:84:05:
48:83:e0:2d:b2:5f:17:af:ee:16:f1:41:7a:7d:33:f3:72:37:
28:bd:a1:d6:b8:67:47:f0:be:e5:6c:7a:29:c8:fa:f5:46:a9:
8c:5e:ac:6f:e9:51:0f:9e:3b:bc:27:fa:db:53:14:b6:d4:1f:
c0:78:db:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:38:07 2026 by rpki-client