Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/DOIT/0/3130332e3136302e38362e302f32332d3233203d3e2034373832.roa
File: 3130332e3136302e38362e302f32332d3233203d3e2034373832.roa (raw, json)
Hash identifier: GRhSIbyJPAbQUnesG8A33zSz+yXABdlL/f8zNkiDVII=
Subject key identifier: 0E:BF:58:C7:37:D6:52:0F:9F:04:69:00:88:84:A1:F4:7A:6D:44:A1
Certificate issuer: /CN=F6C5469B49682AFB105330FD4510981DC05154B0
Certificate serial: 38C2D052A95CC0B2CECEDE43A04ABB97E00C215E
Authority key identifier: F6:C5:46:9B:49:68:2A:FB:10:53:30:FD:45:10:98:1D:C0:51:54:B0
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F6C5469B49682AFB105330FD4510981DC05154B0.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/DOIT/0/3130332e3136302e38362e302f32332d3233203d3e2034373832.roa
Signing time: Mon 11 May 2026 17:28:48 +0000
ROA not before: Mon 11 May 2026 17:23:48 +0000
ROA not after: Mon 10 May 2027 17:28:48 +0000
asID: 4782
IP address blocks: 103.160.86.0/23 maxlen: 23
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
38:c2:d0:52:a9:5c:c0:b2:ce:ce:de:43:a0:4a:bb:97:e0:0c:21:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F6C5469B49682AFB105330FD4510981DC05154B0
Validity
Not Before: May 11 17:23:48 2026 GMT
Not After : May 10 17:28:48 2027 GMT
Subject: CN=0EBF58C737D6520F9F0469008884A1F47A6D44A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:f0:d9:81:25:45:f9:d1:c8:ce:e8:4e:f3:bb:
0b:c7:56:05:74:43:30:c1:0a:bf:56:fd:75:89:b8:
ed:7b:c4:15:b9:65:2e:a3:9c:08:1b:53:cc:14:9f:
ce:c1:91:2c:7e:11:26:76:07:2d:da:b2:fa:ff:18:
59:f1:4f:89:5f:74:1a:04:db:0a:94:bf:c9:e4:a7:
cf:fb:de:cb:32:ea:7d:33:df:44:89:7d:7a:0e:ce:
0d:51:d7:d0:49:80:bf:4e:f1:f5:70:3c:31:3c:cc:
01:e4:58:d4:43:0d:9b:f7:dc:86:c4:e9:57:fd:e3:
6a:4d:84:78:68:27:42:8b:cf:b1:d8:0a:cf:d5:d2:
ac:8c:ef:69:dc:2b:b9:72:b4:99:be:80:20:44:54:
20:2c:e6:c2:b5:00:d3:c5:44:ea:2c:79:90:d3:66:
e0:4b:1b:13:f5:e9:ac:42:c2:f3:01:a3:0e:75:c2:
d6:84:8e:94:72:bb:be:93:c1:ab:54:f8:06:2a:a0:
23:08:a0:d3:ec:7d:f6:bb:cd:46:38:ad:d0:fe:6c:
dd:f4:c5:28:97:79:8e:fd:f8:bf:a5:5d:81:bb:2f:
5a:79:30:6a:50:ce:51:6b:16:55:10:2a:fa:95:66:
e7:09:0b:db:9c:e7:21:c4:f9:e1:31:3f:9f:c9:8d:
f6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:BF:58:C7:37:D6:52:0F:9F:04:69:00:88:84:A1:F4:7A:6D:44:A1
X509v3 Authority Key Identifier:
keyid:F6:C5:46:9B:49:68:2A:FB:10:53:30:FD:45:10:98:1D:C0:51:54:B0
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/DOIT/0/F6C5469B49682AFB105330FD4510981DC05154B0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F6C5469B49682AFB105330FD4510981DC05154B0.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DOIT/0/3130332e3136302e38362e302f32332d3233203d3e2034373832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.160.86.0/23
Signature Algorithm: sha256WithRSAEncryption
20:20:a8:02:1f:9b:4a:ed:89:fd:48:52:5e:2a:75:b9:fb:c3:
6d:36:87:c2:07:bd:c3:89:d3:1a:39:03:9f:e5:22:ca:6b:6e:
44:1a:6b:5d:31:18:b2:e9:f9:d4:32:37:f7:44:be:8e:3d:c0:
35:13:c0:79:10:af:c3:1b:f0:bc:c4:98:de:e4:1f:32:da:eb:
4b:a6:37:5a:84:c0:88:88:b2:88:ee:bc:28:e6:e6:94:2a:85:
12:b4:a2:4e:6e:80:a8:9e:73:17:1d:e3:4d:7c:b5:50:61:de:
9a:df:48:0b:57:bc:dd:f2:f5:8f:c3:40:01:a3:ec:3e:75:8f:
46:61:c3:df:ca:6f:33:44:67:06:fa:95:ea:59:d6:88:77:7b:
64:28:da:dc:c3:7f:1d:2a:3b:b7:58:67:4d:fe:cb:3d:a4:f1:
75:ec:74:45:cf:01:f8:63:83:6f:1d:63:3f:90:f2:ab:6a:04:
c7:b1:0b:05:e7:3b:ef:f8:3b:05:32:7d:6d:b8:f9:9b:de:0a:
bf:22:0b:85:77:37:e8:8a:99:c3:f5:f8:1e:d5:1c:d2:95:dd:
3a:e5:6f:3c:ed:85:28:97:7b:fc:60:ad:3d:1f:73:d7:47:bf:
04:59:cf:a6:e4:02:13:c4:4c:60:01:b0:f7:b3:c8:b9:26:1f:
b9:f4:bd:e5
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIUOMLQUqlcwLLOzt5DoEq7l+AMIV4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjZDNTQ2OUI0OTY4MkFGQjEwNTMzMEZENDUxMDk4MURD
MDUxNTRCMDAeFw0yNjA1MTExNzIzNDhaFw0yNzA1MTAxNzI4NDhaMDMxMTAvBgNV
BAMTKDBFQkY1OEM3MzdENjUyMEY5RjA0NjkwMDg4ODRBMUY0N0E2RDQ0QTEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl8NmBJUX50cjO6E7zuwvHVgV0
QzDBCr9W/XWJuO17xBW5ZS6jnAgbU8wUn87BkSx+ESZ2By3asvr/GFnxT4lfdBoE
2wqUv8nkp8/73ssy6n0z30SJfXoOzg1R19BJgL9O8fVwPDE8zAHkWNRDDZv33IbE
6Vf942pNhHhoJ0KLz7HYCs/V0qyM72ncK7lytJm+gCBEVCAs5sK1ANPFROoseZDT
ZuBLGxP16axCwvMBow51wtaEjpRyu76TwatU+AYqoCMIoNPsffa7zUY4rdD+bN30
xSiXeY79+L+lXYG7L1p5MGpQzlFrFlUQKvqVZucJC9uc5yHE+eExP5/JjfZtAgMB
AAGjggHdMIIB2TAdBgNVHQ4EFgQUDr9YxzfWUg+fBGkAiISh9HptRKEwHwYDVR0j
BBgwFoAU9sVGm0loKvsQUzD9RRCYHcBRVLAwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud
HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9JVC8w
L0Y2QzU0NjlCNDk2ODJBRkIxMDUzMzBGRDQ1MTA5ODFEQzA1MTU0QjAuY3JsMG8G
CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu
dHcvcnBraS9UV05JQ0NBLzEvRjZDNTQ2OUI0OTY4MkFGQjEwNTMzMEZENDUxMDk4
MURDMDUxNTRCMC5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu
YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0RPSVQvMC8zMTMwMzMyZTMxMzYzMDJl
MzgzNjJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDM0MzczODMyLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
Z6BWMA0GCSqGSIb3DQEBCwUAA4IBAQAgIKgCH5tK7Yn9SFJeKnW5+8NtNofCB73D
idMaOQOf5SLKa25EGmtdMRiy6fnUMjf3RL6OPcA1E8B5EK/DG/C8xJje5B8y2utL
pjdahMCIiLKI7rwo5uaUKoUStKJOboConnMXHeNNfLVQYd6a30gLV7zd8vWPw0AB
o+w+dY9GYcPfym8zRGcG+pXqWdaId3tkKNrcw38dKju3WGdN/ss9pPF17HRFzwH4
Y4NvHWM/kPKragTHsQsF5zvv+DsFMn1tuPmb3gq/IguFdzfoipnD9fge1RzSld06
5W887YUol3v8YK09H3PXR78EWc+m5AITxExgAbD3s8i5Jh+59L3l
-----END CERTIFICATE-----
Generated at Tue May 12 23:20:56 2026 by rpki-client