Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/DONGFONG/0/3130332e3233342e37362e302f32322d3234203d3e203138303436.roa
File: 3130332e3233342e37362e302f32322d3234203d3e203138303436.roa (raw, json)
Hash identifier: YrCtHUqv6m3Qzl36rYUrmmVsWpnVUXUHwX65HZhrRmI=
Subject key identifier: D4:6E:70:3F:07:53:67:9C:06:52:90:87:E8:BA:10:D8:B1:96:BF:3B
Certificate issuer: /CN=B407C8B8FAB2AF785E449F6959A343C11F3C2F7D
Certificate serial: 4A681BB2DD289E7B1005DF85CD9A9EBFB283D211
Authority key identifier: B4:07:C8:B8:FA:B2:AF:78:5E:44:9F:69:59:A3:43:C1:1F:3C:2F:7D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/DONGFONG/0/3130332e3233342e37362e302f32322d3234203d3e203138303436.roa
Signing time: Mon 11 May 2026 17:37:39 +0000
ROA not before: Mon 11 May 2026 17:32:39 +0000
ROA not after: Mon 10 May 2027 17:37:39 +0000
asID: 18046
IP address blocks: 103.234.76.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4a:68:1b:b2:dd:28:9e:7b:10:05:df:85:cd:9a:9e:bf:b2:83:d2:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B407C8B8FAB2AF785E449F6959A343C11F3C2F7D
Validity
Not Before: May 11 17:32:39 2026 GMT
Not After : May 10 17:37:39 2027 GMT
Subject: CN=D46E703F0753679C06529087E8BA10D8B196BF3B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:f0:7a:3f:69:f2:a2:d4:f1:ef:6b:94:bb:75:
48:01:fa:f1:21:0c:d9:9c:52:0d:e7:89:e3:7d:20:
35:a5:db:31:ee:77:55:7c:0a:62:c3:7e:23:d0:c2:
25:8f:15:58:0b:c7:4b:6a:cf:da:9e:2f:85:e0:4a:
8f:7a:1e:3d:f6:d5:94:05:4b:97:ca:f5:97:52:da:
48:18:b4:27:83:c2:3f:e2:6e:92:47:27:2a:27:59:
81:56:15:9d:dc:c6:2d:3c:4b:4a:76:11:3b:e7:5d:
e6:1a:dd:49:91:8f:18:8e:86:7e:dc:74:67:ac:30:
16:98:36:28:8e:d0:c7:c9:37:13:6c:ae:49:60:11:
a9:a4:18:bc:cf:da:11:d9:8e:81:2e:4c:96:6e:45:
6f:5d:cc:4d:d8:0f:c8:56:93:4c:a3:e2:cc:41:ed:
fc:7a:9f:ec:9f:63:e0:6f:d8:51:02:77:a7:17:ee:
f3:e8:06:70:77:fd:1c:2b:f4:a4:2c:c8:b7:3d:c2:
64:d4:54:52:f4:1d:31:19:5c:db:33:80:a9:1d:a4:
36:5e:de:44:d6:60:10:92:e9:47:68:8a:95:de:5e:
57:cb:09:37:1a:8e:c6:91:a0:de:f6:7d:e2:b2:61:
6a:0a:36:ab:f6:68:f9:ba:b6:a9:f1:0e:29:b6:3a:
be:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:6E:70:3F:07:53:67:9C:06:52:90:87:E8:BA:10:D8:B1:96:BF:3B
X509v3 Authority Key Identifier:
keyid:B4:07:C8:B8:FA:B2:AF:78:5E:44:9F:69:59:A3:43:C1:1F:3C:2F:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/0/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/0/3130332e3233342e37362e302f32322d3234203d3e203138303436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.234.76.0/22
Signature Algorithm: sha256WithRSAEncryption
19:df:87:79:ac:cb:32:a8:2d:ee:bf:17:23:3b:d8:86:fd:91:
72:03:ed:43:71:f2:91:7c:37:cf:1f:a9:dd:d3:ab:9a:16:46:
fd:7b:b2:c2:29:74:cf:f0:0d:8f:81:a7:83:8d:c4:50:3f:a7:
18:33:f7:cc:2e:05:30:a3:1a:57:03:ea:3d:e3:7b:46:ed:c9:
fc:2e:85:88:79:c1:4b:48:ac:59:15:34:cd:d7:93:90:cd:f2:
60:5e:90:d6:a4:c1:96:e3:87:63:ad:3d:12:c7:60:7a:76:a5:
7a:db:0a:33:62:92:a5:20:59:40:02:c0:33:87:72:fe:2a:44:
a6:99:d5:dd:ac:be:9b:a7:f3:be:98:1c:03:c4:b9:03:fd:77:
aa:58:8f:64:92:ad:75:87:77:1a:75:ce:6e:67:90:06:30:9e:
ce:99:bf:42:da:6e:40:85:14:3a:77:95:25:83:b3:a7:86:1f:
1f:28:67:a5:88:03:fb:56:75:60:53:d2:cd:fc:8f:6c:1f:ad:
85:c9:b9:b6:07:c4:b3:fe:01:0b:d9:15:72:28:c7:e7:fd:14:
4a:b6:45:02:87:c4:c6:79:9a:f4:f5:c7:a4:df:63:67:21:3a:
23:19:a0:9f:2f:d0:2b:ce:9b:9f:f3:b6:ee:b2:cc:8e:27:6d:
37:34:0a:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:20:46 2026 by rpki-client