Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PAGIC/0/3231312e37332e3139322e302f31392d3234203d3e203137343230.roa
File: 3231312e37332e3139322e302f31392d3234203d3e203137343230.roa (raw, json)
Hash identifier: Ng7pjPxIKkFqYQdz2HZ68PejD4I0wBx9Difg1QRxlvg=
Subject key identifier: 58:DF:64:E5:0B:DE:8D:BA:D3:EC:2F:2A:06:2C:45:FF:3C:59:94:B1
Certificate issuer: /CN=130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D
Certificate serial: 5E67DC75DC9F14471DB68A23656C19C36364E64F
Authority key identifier: 13:0A:AF:47:5B:CC:02:CD:BB:DB:4C:97:44:EB:E3:1C:EE:EE:30:6D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PAGIC/0/3231312e37332e3139322e302f31392d3234203d3e203137343230.roa
Signing time: Mon 11 May 2026 17:06:33 +0000
ROA not before: Mon 11 May 2026 17:01:33 +0000
ROA not after: Mon 10 May 2027 17:06:33 +0000
asID: 17420
IP address blocks: 211.73.192.0/19 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:67:dc:75:dc:9f:14:47:1d:b6:8a:23:65:6c:19:c3:63:64:e6:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D
Validity
Not Before: May 11 17:01:33 2026 GMT
Not After : May 10 17:06:33 2027 GMT
Subject: CN=58DF64E50BDE8DBAD3EC2F2A062C45FF3C5994B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:2e:b5:27:3d:00:01:42:fe:9d:c7:2f:4d:5b:
5c:6e:f3:ec:ab:40:13:a2:0f:80:40:9a:03:f3:09:
dc:9b:be:99:cd:31:51:f8:d7:28:a3:0b:7e:b6:e7:
d4:c8:5a:c2:b7:7c:c5:9a:2a:7d:f3:89:63:e5:68:
01:3f:76:16:65:d5:80:2d:cb:f5:b1:ba:fc:7f:ec:
c4:fa:5e:c4:55:46:7e:cc:7d:72:5c:24:9f:ee:13:
5d:c9:54:4c:28:aa:0c:df:b3:9b:0a:30:4f:0f:cd:
75:5c:d2:76:fe:f8:40:97:4a:8e:ce:4d:a5:11:d1:
68:47:23:56:8c:fc:34:9d:27:e9:ff:14:af:89:65:
91:ed:b9:36:30:f1:15:36:a2:86:a3:dd:ad:3f:b5:
b5:f9:f8:7a:79:d8:c4:22:54:6b:18:4d:d8:99:11:
f8:0c:91:13:84:da:8f:89:61:bd:62:5c:af:04:5b:
4c:5e:70:b8:14:a8:bb:71:63:93:e1:bd:10:5f:4c:
28:3d:22:8f:a7:eb:df:bf:39:5b:56:32:d1:9c:ae:
4a:c2:fa:10:31:ac:ff:ee:ac:ec:72:0e:30:f8:c8:
6e:11:0e:76:f5:4d:5d:c2:0b:e5:be:a2:76:3c:57:
90:53:6a:5f:90:8f:b4:e5:88:b7:c2:49:79:ac:91:
0d:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:DF:64:E5:0B:DE:8D:BA:D3:EC:2F:2A:06:2C:45:FF:3C:59:94:B1
X509v3 Authority Key Identifier:
keyid:13:0A:AF:47:5B:CC:02:CD:BB:DB:4C:97:44:EB:E3:1C:EE:EE:30:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PAGIC/0/130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PAGIC/0/3231312e37332e3139322e302f31392d3234203d3e203137343230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
211.73.192.0/19
Signature Algorithm: sha256WithRSAEncryption
74:9a:d1:e5:27:8f:5e:bb:ce:3c:19:44:de:fd:c4:73:81:30:
21:4f:ef:85:32:36:4e:72:9a:94:12:4d:24:de:92:89:d3:70:
cb:a8:30:28:d9:87:50:15:9d:ea:71:bb:71:a0:15:94:ff:db:
b2:96:0f:b7:ee:ba:df:27:2e:3e:ee:46:8f:54:b3:94:24:4e:
bf:75:65:6c:f8:a7:d0:d8:96:8a:ea:90:fa:64:e9:35:bb:9b:
5d:5b:20:25:23:83:f9:17:8e:ec:14:51:a5:d2:d6:30:3a:f0:
21:24:b8:17:c3:c2:eb:76:8a:f1:87:e4:fa:b6:0c:4d:1e:1b:
6b:16:d5:7e:73:14:18:2b:3d:42:35:d3:e9:6a:8f:cd:b1:67:
b9:1e:63:a1:4f:7d:2e:77:7c:89:02:12:db:4c:6d:7f:ef:9b:
e4:ca:6f:af:bf:81:fb:5f:a7:dc:ce:9b:6f:6e:fd:5d:d7:a4:
2c:72:e4:69:08:aa:2b:64:5c:93:78:86:73:d8:1a:8c:a0:7f:
b7:c6:54:2f:61:95:e2:aa:f9:4f:a8:50:04:31:6c:0a:6e:40:
cd:54:23:89:95:b5:d2:ca:a0:c4:bf:52:47:d5:13:85:50:3a:
12:67:bb:7a:06:e0:c3:b6:b9:f8:32:68:df:4d:98:8d:af:76:
f4:18:a5:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:48:16 2026 by rpki-client