Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/NCREE/0/3230322e352e31322e302f32322d3232203d3e203138313833.roa
File: 3230322e352e31322e302f32322d3232203d3e203138313833.roa (raw, json)
Hash identifier: XbkYTDNrq99sllfWjZ/d99FzReEgoNHkyUkg86NPTgw=
Subject key identifier: E2:53:35:20:EA:55:77:85:A4:E9:90:2F:B6:E7:07:19:49:96:02:C2
Certificate issuer: /CN=97D4884F986D543782ED0796247DD5237461E32E
Certificate serial: 4F47F7B9872DF2D1FACC8D01380C4C7DBEF8C5D2
Authority key identifier: 97:D4:88:4F:98:6D:54:37:82:ED:07:96:24:7D:D5:23:74:61:E3:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/97D4884F986D543782ED0796247DD5237461E32E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/NCREE/0/3230322e352e31322e302f32322d3232203d3e203138313833.roa
Signing time: Mon 11 May 2026 17:01:23 +0000
ROA not before: Mon 11 May 2026 16:56:23 +0000
ROA not after: Mon 10 May 2027 17:01:23 +0000
asID: 18183
IP address blocks: 202.5.12.0/22 maxlen: 22
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4f:47:f7:b9:87:2d:f2:d1:fa:cc:8d:01:38:0c:4c:7d:be:f8:c5:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=97D4884F986D543782ED0796247DD5237461E32E
Validity
Not Before: May 11 16:56:23 2026 GMT
Not After : May 10 17:01:23 2027 GMT
Subject: CN=E2533520EA557785A4E9902FB6E70719499602C2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:72:03:f2:f0:a2:10:47:4c:aa:b2:70:89:80:
0a:f5:2f:6b:db:74:a0:c1:ab:ba:03:f1:70:48:50:
0c:06:ce:6c:06:be:2b:ed:c1:94:8c:b3:29:6e:05:
2b:b8:f4:15:f5:4f:44:ac:00:6c:c3:06:d5:c1:01:
8a:63:c7:4f:97:10:57:67:49:8f:f4:d7:d8:1a:20:
7c:73:eb:ff:c7:ca:ec:6a:c7:f6:fb:f0:5a:86:8a:
87:0f:4b:1e:d1:ce:01:d4:24:e7:fe:a3:a2:95:cf:
32:bf:44:e1:6f:00:2c:42:f3:ce:88:9b:00:4a:f9:
27:8a:f9:7a:d0:8b:a0:64:7b:26:3d:af:5c:18:7d:
e1:86:3c:86:eb:a8:b9:09:19:97:cc:5f:ea:8a:72:
a4:2d:75:b0:3f:21:6e:fc:fd:08:72:0e:bd:6d:e1:
17:40:fb:08:65:d8:5e:85:b6:72:5e:4b:5e:93:ca:
b4:82:aa:d8:06:da:00:24:e9:c3:62:04:93:ec:a1:
4b:d5:b2:d0:d7:be:94:59:4b:03:12:58:de:09:8a:
ea:5e:86:4a:e8:8e:9f:c8:bf:0d:f3:70:77:b6:3a:
f3:27:be:c6:01:e3:bb:8a:c9:5b:64:9b:91:29:1c:
aa:c1:70:16:76:fe:d1:83:59:8c:33:c2:66:d1:42:
87:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:53:35:20:EA:55:77:85:A4:E9:90:2F:B6:E7:07:19:49:96:02:C2
X509v3 Authority Key Identifier:
keyid:97:D4:88:4F:98:6D:54:37:82:ED:07:96:24:7D:D5:23:74:61:E3:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/NCREE/0/97D4884F986D543782ED0796247DD5237461E32E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/97D4884F986D543782ED0796247DD5237461E32E.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCREE/0/3230322e352e31322e302f32322d3232203d3e203138313833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.5.12.0/22
Signature Algorithm: sha256WithRSAEncryption
08:53:92:8f:6e:40:9a:6e:28:6e:ef:9b:4d:39:82:42:f7:0d:
56:04:c8:25:45:95:44:74:82:76:9a:c8:8f:9d:bd:5e:66:be:
fb:7d:41:e1:17:53:6a:59:cd:50:91:0d:6a:27:61:d0:2d:9c:
e6:58:8f:cf:90:ef:ef:96:93:10:e0:d6:52:51:f1:44:73:ba:
ce:79:14:0f:64:88:47:9b:d9:dc:3b:b9:98:c3:66:9e:70:e1:
cd:9b:17:4e:13:01:16:71:d3:d1:19:66:2e:23:ae:73:d2:d2:
c3:e2:5f:5a:b2:af:cb:be:ea:9d:d7:a4:d2:9a:da:c8:0f:ed:
79:f0:79:ed:f8:de:66:fd:01:7a:a0:98:d1:22:56:16:61:16:
65:c7:48:17:95:45:76:b9:f0:77:f0:d9:05:91:0c:7b:72:9b:
f1:ec:49:b1:d1:e5:04:5a:ea:2c:fe:af:1d:dc:d3:c4:23:58:
78:5e:03:c1:98:be:f5:6f:88:ab:1d:dd:49:b7:d6:e9:e9:b7:
05:70:55:3a:09:64:04:51:f8:bc:9b:78:ef:4a:32:ac:8f:81:
8e:48:2e:59:b3:6d:b5:42:5c:59:f9:a8:80:68:2a:f3:22:88:
9d:ed:99:28:ad:43:cd:ea:9e:c0:68:2e:da:72:b8:09:43:e4:
ea:65:ce:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:37:45 2026 by rpki-client