Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/DAFU/0/3231302e312e3233352e302f32342d3332203d3e20313331363537.roa
File: 3231302e312e3233352e302f32342d3332203d3e20313331363537.roa (raw, json)
Hash identifier: RLXRr3oaU8tfZv8c58D+ZW+I4V/4m7eEXGAKJ8n/Gpk=
Subject key identifier: 45:B5:63:5F:19:42:79:A1:A9:16:B9:91:CC:D9:D0:25:F7:14:60:D6
Certificate issuer: /CN=9D0F6D536F053C3BB5233E68E0636F8A6FADA460
Certificate serial: 22F0A47901E6F74C68D7F884FE74A3761692F9F0
Authority key identifier: 9D:0F:6D:53:6F:05:3C:3B:B5:23:3E:68:E0:63:6F:8A:6F:AD:A4:60
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D0F6D536F053C3BB5233E68E0636F8A6FADA460.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/DAFU/0/3231302e312e3233352e302f32342d3332203d3e20313331363537.roa
Signing time: Mon 11 May 2026 17:55:35 +0000
ROA not before: Mon 11 May 2026 17:50:35 +0000
ROA not after: Mon 10 May 2027 17:55:35 +0000
asID: 131657
IP address blocks: 210.1.235.0/24 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:f0:a4:79:01:e6:f7:4c:68:d7:f8:84:fe:74:a3:76:16:92:f9:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D0F6D536F053C3BB5233E68E0636F8A6FADA460
Validity
Not Before: May 11 17:50:35 2026 GMT
Not After : May 10 17:55:35 2027 GMT
Subject: CN=45B5635F194279A1A916B991CCD9D025F71460D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:84:93:b6:b6:b8:91:29:48:10:48:53:35:f2:
05:5f:73:77:9b:18:b1:f2:1d:8e:32:3d:b6:d5:70:
de:22:40:3a:3c:b2:92:52:dc:2b:98:62:ce:9f:66:
be:eb:98:8a:12:99:3d:41:72:e2:54:25:0e:23:5c:
e5:85:28:e0:97:d1:d0:35:04:72:c5:39:19:b7:5a:
56:15:e4:88:ae:89:44:9c:49:be:4a:b2:4c:ba:ba:
d8:8a:bc:44:37:68:58:e2:cd:a3:92:b2:6f:20:66:
49:64:b0:cb:69:a8:11:5c:d5:4d:80:fc:ab:a2:90:
f0:33:b7:f4:d2:f8:6c:2a:f7:ca:20:65:fd:6b:0a:
7f:45:7b:33:b4:d0:be:0c:57:28:da:5d:f1:d8:47:
60:d2:c3:62:b6:27:c0:52:6d:3b:9a:a5:36:f2:c6:
88:7d:49:bd:bb:18:c3:df:f3:63:66:7e:12:8b:4e:
b7:ca:32:d2:f6:fa:59:ba:b4:92:eb:85:66:69:20:
5a:ab:d9:66:c7:51:77:80:e1:8f:af:11:9a:28:e3:
e9:36:74:4f:fc:33:6f:b5:d1:21:b9:f1:24:66:34:
3f:6e:69:3d:a6:77:9a:59:13:73:20:70:1d:b6:6d:
a5:af:0b:e7:29:96:5b:3a:6f:52:82:3e:ed:4d:4d:
67:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:B5:63:5F:19:42:79:A1:A9:16:B9:91:CC:D9:D0:25:F7:14:60:D6
X509v3 Authority Key Identifier:
keyid:9D:0F:6D:53:6F:05:3C:3B:B5:23:3E:68:E0:63:6F:8A:6F:AD:A4:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/DAFU/0/9D0F6D536F053C3BB5233E68E0636F8A6FADA460.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D0F6D536F053C3BB5233E68E0636F8A6FADA460.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DAFU/0/3231302e312e3233352e302f32342d3332203d3e20313331363537.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.1.235.0/24
Signature Algorithm: sha256WithRSAEncryption
37:d7:81:22:59:dd:ed:b0:25:83:f0:44:37:c1:bf:c1:15:ed:
ac:77:40:66:86:25:1d:be:79:f7:19:6c:03:ab:4e:87:41:a4:
ad:ab:01:a1:54:f5:d7:9d:cb:16:60:0c:9c:c1:90:6a:e9:f6:
ef:d4:6f:bc:ec:fc:a8:ae:53:ee:eb:10:d6:35:b8:8c:30:0b:
70:d0:47:d7:e7:47:b3:f3:38:28:5e:ea:49:50:4f:7b:ad:35:
61:6c:64:e3:25:da:c1:5b:4e:54:82:99:99:ce:6d:c3:e6:14:
a5:cb:c6:9e:6f:d8:df:e7:95:44:9b:48:88:54:4d:6a:49:a7:
c0:8a:0a:a7:3c:79:be:72:44:2b:fc:63:3b:2e:fb:16:02:92:
0b:11:c8:56:84:ac:3e:03:9e:92:b9:a2:ab:80:93:bd:20:29:
46:69:2f:95:12:c9:26:ec:cd:14:04:20:cd:d1:2e:06:8b:ff:
4b:e3:99:3a:5a:40:5f:d0:24:21:bf:d8:55:5a:80:4f:6e:7a:
f2:5a:5b:fe:22:2d:52:84:f7:f6:1e:fb:80:84:fd:e3:f9:43:
92:c5:2b:b7:ea:27:b4:18:de:ee:a6:e4:eb:e2:ed:3a:b0:ee:
96:26:29:73:13:65:4d:5d:3e:f4:73:b0:48:12:a0:43:03:23:
7c:4d:20:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:13:00 2026 by rpki-client