Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CLOUDBASE/0/323430323a346432303a3a2f34382d3438203d3e20313532363236.roa
File: 323430323a346432303a3a2f34382d3438203d3e20313532363236.roa (raw, json)
Hash identifier: gWGrH7k/E1wfVhOhIGsZWVZwwwOvXG8dp1buitprMVE=
Subject key identifier: 3D:BE:93:6F:0F:1D:71:55:65:50:5E:CF:66:E6:3B:D5:19:CA:2C:07
Certificate issuer: /CN=BED725C413C7A436F5A200F207F3CB3A7A9E05DA
Certificate serial: 0F3BCC087D5385988E7A548EBD49D3935BD31CBC
Authority key identifier: BE:D7:25:C4:13:C7:A4:36:F5:A2:00:F2:07:F3:CB:3A:7A:9E:05:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/323430323a346432303a3a2f34382d3438203d3e20313532363236.roa
Signing time: Mon 11 May 2026 17:58:05 +0000
ROA not before: Mon 11 May 2026 17:53:05 +0000
ROA not after: Mon 10 May 2027 17:58:05 +0000
asID: 152626
IP address blocks: 2402:4d20::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:3b:cc:08:7d:53:85:98:8e:7a:54:8e:bd:49:d3:93:5b:d3:1c:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BED725C413C7A436F5A200F207F3CB3A7A9E05DA
Validity
Not Before: May 11 17:53:05 2026 GMT
Not After : May 10 17:58:05 2027 GMT
Subject: CN=3DBE936F0F1D715565505ECF66E63BD519CA2C07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:da:2c:1a:d9:43:e4:66:1a:8a:40:a9:40:8f:
20:33:39:68:8f:0f:c9:d8:28:42:2f:b6:4e:7b:db:
70:56:93:40:0e:ae:99:54:66:f5:9c:a0:5c:d0:a1:
2d:c8:7b:b3:5f:ea:ca:17:e1:15:13:ac:14:bc:eb:
80:89:24:f4:bb:4d:bf:92:e9:ae:88:ae:56:19:89:
bd:af:40:e6:a4:e6:22:b8:74:51:f4:3d:e7:56:a8:
54:05:b5:8e:8d:8e:13:de:67:12:5b:48:9e:e7:2f:
aa:a3:57:c9:b7:8e:60:8f:b6:1d:77:1d:e6:3f:30:
7d:d7:b3:c4:84:9a:c8:43:5d:0a:ba:b7:47:9a:5f:
e6:27:e1:bb:15:4d:3b:c2:8b:2d:00:09:88:03:e0:
fd:c2:aa:1b:92:da:75:f9:64:9e:12:f5:94:4d:d5:
13:da:a3:03:62:31:83:69:82:43:5a:a9:eb:91:59:
c9:96:63:c1:76:8a:49:bd:90:38:5e:3e:a5:72:2a:
1a:9e:57:69:6f:17:71:7f:41:ff:87:1d:41:c3:1f:
b5:12:31:f5:c7:2d:c1:95:b0:53:e8:1f:a2:6e:9f:
ef:1b:bd:41:80:bc:ca:08:81:62:ac:22:4c:11:ad:
36:27:9f:81:d0:b3:87:3e:89:70:4c:64:6b:1d:c3:
49:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:BE:93:6F:0F:1D:71:55:65:50:5E:CF:66:E6:3B:D5:19:CA:2C:07
X509v3 Authority Key Identifier:
keyid:BE:D7:25:C4:13:C7:A4:36:F5:A2:00:F2:07:F3:CB:3A:7A:9E:05:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/323430323a346432303a3a2f34382d3438203d3e20313532363236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:4d20::/48
Signature Algorithm: sha256WithRSAEncryption
94:77:9f:59:f4:52:c0:12:ea:c7:f0:46:7e:65:81:d0:f5:1e:
3f:ab:95:5c:8d:f5:5f:a1:76:50:37:47:56:33:1d:01:fb:33:
1f:f6:60:2f:02:66:bb:d5:88:56:d7:ec:d4:f6:6a:78:29:78:
5f:ca:1e:48:29:52:39:6f:87:8c:e3:6e:c1:ae:54:00:ae:c3:
6b:1d:20:52:5b:35:9e:ba:33:9f:f0:bd:d7:e5:50:13:0c:3a:
ba:e1:fc:a9:77:a1:5a:9e:7e:83:06:f0:88:db:d7:98:e8:73:
52:4e:3f:93:46:18:25:0f:01:c3:0b:b7:0c:70:76:31:8a:fb:
8b:96:bc:15:f1:2b:ff:f0:dd:b3:dc:42:98:ad:cc:e6:f7:4a:
d6:92:cf:c1:20:cd:17:28:bc:2e:78:92:ce:33:6a:55:46:fb:
6a:1d:d2:a5:d1:71:1c:3a:42:6f:c0:75:ca:ae:56:84:69:c4:
b9:30:45:50:21:ca:30:ec:a9:b2:eb:3e:f0:64:cb:ce:16:ec:
46:79:4e:3b:8c:bb:53:93:e1:34:5b:f4:2a:41:02:a5:02:f3:
48:e6:0f:03:f9:b2:b8:1d:19:0c:e0:a1:84:8d:45:30:9a:fe:
56:c9:72:9e:1f:66:67:aa:c1:9e:c5:90:61:03:4d:06:19:8b:
33:46:5c:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:49:40 2026 by rpki-client