Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CATVISP/0/34332e3234382e31362e302f32322d3234203d3e203138303436.roa
File: 34332e3234382e31362e302f32322d3234203d3e203138303436.roa (raw, json)
Hash identifier: xJeTRYFTpaj0Hh3mWQfQMb0S7i3UbraCF9VeCrKQmyI=
Subject key identifier: 45:4B:86:77:8E:BE:8D:32:64:37:A3:F6:51:3B:7A:2C:58:00:14:E6
Certificate issuer: /CN=F1F518BDB5085DA9DAA281C529D23491A72DA248
Certificate serial: 08C24706CA4CB69AA0D760878582F65F52D39B70
Authority key identifier: F1:F5:18:BD:B5:08:5D:A9:DA:A2:81:C5:29:D2:34:91:A7:2D:A2:48
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F1F518BDB5085DA9DAA281C529D23491A72DA248.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CATVISP/0/34332e3234382e31362e302f32322d3234203d3e203138303436.roa
Signing time: Mon 11 May 2026 17:09:00 +0000
ROA not before: Mon 11 May 2026 17:04:00 +0000
ROA not after: Mon 10 May 2027 17:09:00 +0000
asID: 18046
IP address blocks: 43.248.16.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
08:c2:47:06:ca:4c:b6:9a:a0:d7:60:87:85:82:f6:5f:52:d3:9b:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1F518BDB5085DA9DAA281C529D23491A72DA248
Validity
Not Before: May 11 17:04:00 2026 GMT
Not After : May 10 17:09:00 2027 GMT
Subject: CN=454B86778EBE8D326437A3F6513B7A2C580014E6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1d:0d:e7:b4:68:11:39:78:44:08:34:20:96:
1f:69:f3:06:61:98:93:a4:1a:e2:ff:3f:f9:cf:f2:
c0:fd:ac:35:9a:92:a9:0f:61:45:1d:45:f0:76:02:
af:55:15:ab:59:6e:1f:d8:c5:98:3b:14:bb:08:7d:
aa:c9:db:89:54:7f:ad:1b:cb:ce:28:b6:1a:01:c7:
ef:01:ba:da:fa:0c:54:0b:54:6a:d1:1d:9c:a7:da:
55:b4:bb:4e:fc:8a:50:22:21:11:62:1e:d9:03:f7:
54:09:be:c0:0d:32:4b:f8:ac:c6:28:8f:d7:af:90:
62:ff:34:bd:31:58:9c:df:48:ee:1b:32:2c:60:68:
18:86:4d:b4:ff:6b:d8:5e:1a:89:50:b9:dd:de:23:
68:22:9f:08:83:bd:22:bc:1b:a9:2b:74:71:24:62:
ca:6a:74:73:39:0c:51:80:8f:e3:0f:79:ac:17:9f:
25:54:b5:2c:07:a7:c3:0e:8b:17:c7:8c:7a:70:f8:
0d:4f:1e:3c:6d:ae:1a:f7:90:ff:fa:e6:cd:bb:cb:
a2:4f:87:7b:bc:b9:b1:dc:de:70:fd:a3:06:2f:f9:
b9:17:b2:7c:f5:0a:a2:f2:09:c8:b1:45:99:ca:81:
d1:99:c1:22:60:e4:59:47:9e:bb:ac:59:6e:47:2e:
d7:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:4B:86:77:8E:BE:8D:32:64:37:A3:F6:51:3B:7A:2C:58:00:14:E6
X509v3 Authority Key Identifier:
keyid:F1:F5:18:BD:B5:08:5D:A9:DA:A2:81:C5:29:D2:34:91:A7:2D:A2:48
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CATVISP/0/F1F518BDB5085DA9DAA281C529D23491A72DA248.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F1F518BDB5085DA9DAA281C529D23491A72DA248.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CATVISP/0/34332e3234382e31362e302f32322d3234203d3e203138303436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.248.16.0/22
Signature Algorithm: sha256WithRSAEncryption
aa:af:2e:dd:42:d5:f2:77:96:1b:88:d0:ed:3d:a3:2a:bc:a8:
60:64:e7:3f:5d:c9:dc:c2:b1:51:21:31:9d:c0:0a:68:8e:44:
e0:ac:1b:3e:ea:ae:51:39:5e:53:01:38:72:c5:76:2a:e4:9e:
92:f9:7e:63:47:f8:48:ca:73:cd:e1:62:88:13:8a:0f:e8:57:
35:36:42:45:b6:69:03:50:36:a4:24:e3:cd:12:3f:f7:be:15:
11:cc:f5:90:90:6b:d7:10:4c:14:5d:7d:a4:e9:b3:4d:2f:aa:
c9:20:de:fa:be:a3:7d:e1:01:78:09:1b:cb:f7:d0:2e:6a:fc:
2d:86:63:bc:07:84:83:4e:b5:ac:00:2e:48:93:47:44:86:18:
15:c5:a7:a9:0b:d1:65:5f:e1:32:96:9b:a2:c7:46:12:51:4c:
fa:f5:b2:09:bd:ca:b5:53:a0:f0:fe:cc:f8:12:df:c9:89:cd:
23:a8:18:11:f3:54:2d:36:b7:e5:3b:64:b5:8c:ee:2a:5f:70:
2d:47:74:84:07:49:90:6e:8a:8f:99:82:99:fa:cd:14:91:14:
b1:69:69:e3:c0:41:08:b7:9b:30:46:cb:74:d8:14:c1:73:8c:
45:d1:de:d5:81:99:09:06:4b:21:84:12:66:15:03:96:0a:89:
7e:60:04:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:19:32 2026 by rpki-client