Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/COCODIGIT/0/33362e35302e3232382e302f32342d3332203d3e20313530373636.roa
File: 33362e35302e3232382e302f32342d3332203d3e20313530373636.roa (raw, json)
Hash identifier: Xto8WQ73Mhkh2z7HSkXwb/iQ3rWZE6pzzPgj47AnR7w=
Subject key identifier: C5:F2:07:BB:2E:B6:63:00:D3:B2:84:29:13:4A:65:54:E7:6F:5A:1B
Certificate issuer: /CN=F825D8527434CAF0FCF9F65446D6EB06CA8993F4
Certificate serial: 105700A23291A007359F1F9084EA576FA7D6D1F0
Authority key identifier: F8:25:D8:52:74:34:CA:F0:FC:F9:F6:54:46:D6:EB:06:CA:89:93:F4
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F825D8527434CAF0FCF9F65446D6EB06CA8993F4.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/COCODIGIT/0/33362e35302e3232382e302f32342d3332203d3e20313530373636.roa
Signing time: Mon 11 May 2026 17:38:17 +0000
ROA not before: Mon 11 May 2026 17:33:17 +0000
ROA not after: Mon 10 May 2027 17:38:17 +0000
asID: 150766
IP address blocks: 36.50.228.0/24 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:57:00:a2:32:91:a0:07:35:9f:1f:90:84:ea:57:6f:a7:d6:d1:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F825D8527434CAF0FCF9F65446D6EB06CA8993F4
Validity
Not Before: May 11 17:33:17 2026 GMT
Not After : May 10 17:38:17 2027 GMT
Subject: CN=C5F207BB2EB66300D3B28429134A6554E76F5A1B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d5:f1:56:50:78:c2:63:22:6d:05:16:b9:b1:
15:b9:1e:c0:db:4c:c0:60:96:66:50:6d:b7:bf:3c:
a6:de:37:e6:51:6e:55:94:16:bc:56:7b:68:f1:53:
34:f6:72:00:cd:d3:78:f0:72:90:4c:b1:ca:60:6f:
81:bc:60:1a:69:20:68:9a:1f:b1:8c:6e:73:b7:17:
02:0f:55:90:3f:47:b3:d7:e3:67:1d:b9:d8:54:61:
a1:5e:f7:c0:b8:3b:7c:d7:e0:3a:99:08:95:f8:2e:
5e:27:7d:d0:6b:f5:74:90:76:56:1e:fc:de:f3:86:
f4:35:35:3b:78:91:08:e3:38:90:94:65:c0:45:ef:
d6:0c:1d:23:c7:07:8d:37:a4:f6:04:bd:18:65:bc:
41:2d:61:6d:2c:dc:a2:3a:a5:ec:c5:14:86:af:a3:
2c:a5:c0:72:f4:d3:0a:c3:26:98:1a:25:0b:88:99:
5e:54:f4:27:6c:9e:b8:59:a5:3d:3b:6b:10:af:bc:
da:98:08:76:c7:5b:6d:0a:5d:16:c9:83:e9:cb:9c:
79:16:2f:00:5d:38:5c:b8:3d:4e:11:c4:db:cf:ee:
52:46:b9:6f:6a:08:d0:a5:24:7c:33:f9:29:54:3b:
17:e9:d3:af:c8:1d:d7:6e:97:8a:a3:ff:0b:43:0e:
90:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:F2:07:BB:2E:B6:63:00:D3:B2:84:29:13:4A:65:54:E7:6F:5A:1B
X509v3 Authority Key Identifier:
keyid:F8:25:D8:52:74:34:CA:F0:FC:F9:F6:54:46:D6:EB:06:CA:89:93:F4
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/COCODIGIT/0/F825D8527434CAF0FCF9F65446D6EB06CA8993F4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F825D8527434CAF0FCF9F65446D6EB06CA8993F4.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/COCODIGIT/0/33362e35302e3232382e302f32342d3332203d3e20313530373636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
36.50.228.0/24
Signature Algorithm: sha256WithRSAEncryption
1b:71:4d:26:69:99:09:dc:a2:2a:73:1f:be:bf:bb:21:24:3f:
48:71:89:02:2b:3e:d5:22:7d:ca:c2:e0:3b:9c:52:1a:b7:74:
c6:00:f1:70:5e:97:ff:c9:cb:39:08:3b:4c:7a:cb:cb:a4:ba:
fe:dc:10:cc:9f:00:af:a5:e4:8a:3d:fe:9b:9f:59:03:fe:81:
23:d0:4d:6e:e7:89:f1:a1:bb:4c:f0:46:71:0b:2a:42:6f:d2:
28:23:7d:6e:ee:e4:dc:40:20:76:b0:7b:97:d3:a5:16:c7:a4:
ed:46:fe:a0:ba:6c:21:cd:b7:2e:e2:ad:35:d5:01:47:37:f6:
02:b6:49:69:f5:70:3b:01:b2:6c:93:f2:d7:21:4c:d8:ad:f7:
19:00:68:ef:05:f2:22:83:fe:2d:7c:d6:33:92:9d:f5:bd:20:
7e:4b:54:90:f9:6c:d8:af:48:47:cf:a7:45:4f:c7:9a:4d:bf:
63:ef:45:07:a9:2c:4a:3f:2b:5c:5c:f4:b5:a6:43:69:d7:9c:
eb:77:6e:e4:23:bf:fc:7f:4d:77:9a:5b:31:47:55:ef:b4:f7:
10:80:3b:21:b4:ca:d8:c3:07:e7:59:2b:79:38:d0:f2:db:52:
be:7e:e9:38:bf:de:b9:d4:45:b8:18:b6:20:aa:e6:79:f4:38:
95:5f:58:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:27:20 2026 by rpki-client