Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/DONGFONG/0/3131362e35302e33322e302f32302d3234203d3e203138303436.roa
File: 3131362e35302e33322e302f32302d3234203d3e203138303436.roa (raw, json)
Hash identifier: LZibNAZn+nBssflpOgfwTQ3pTcbmpuQyETsySkNRzUY=
Subject key identifier: 6F:E2:03:EE:8C:80:27:65:C1:25:05:5F:46:C5:2F:3D:92:40:E4:20
Certificate issuer: /CN=B407C8B8FAB2AF785E449F6959A343C11F3C2F7D
Certificate serial: 15B27630C8A648081516BFB5D14A9072E0B020C6
Authority key identifier: B4:07:C8:B8:FA:B2:AF:78:5E:44:9F:69:59:A3:43:C1:1F:3C:2F:7D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/DONGFONG/0/3131362e35302e33322e302f32302d3234203d3e203138303436.roa
Signing time: Mon 11 May 2026 17:04:04 +0000
ROA not before: Mon 11 May 2026 16:59:04 +0000
ROA not after: Mon 10 May 2027 17:04:04 +0000
asID: 18046
IP address blocks: 116.50.32.0/20 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
15:b2:76:30:c8:a6:48:08:15:16:bf:b5:d1:4a:90:72:e0:b0:20:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B407C8B8FAB2AF785E449F6959A343C11F3C2F7D
Validity
Not Before: May 11 16:59:04 2026 GMT
Not After : May 10 17:04:04 2027 GMT
Subject: CN=6FE203EE8C802765C125055F46C52F3D9240E420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:68:13:e8:6f:ed:3d:9d:86:58:28:36:5a:60:
cf:b3:30:e2:0d:ee:d8:80:92:75:31:54:d1:c7:cc:
7f:20:9b:fe:c4:64:e9:9c:88:88:6e:7f:62:03:08:
b4:66:de:d3:0b:a1:ed:b1:25:99:72:40:e2:e9:39:
d3:48:bd:69:fd:b5:0e:15:83:28:38:22:80:f5:de:
dd:d0:04:f7:fe:a2:68:ff:16:a5:ad:e8:69:d2:18:
b5:2a:91:b7:40:a6:d5:7e:cf:54:d6:0a:5c:f8:b7:
e3:40:bb:7b:74:ec:03:75:d3:11:76:7d:f0:15:69:
c3:6d:46:98:82:ea:dc:cf:ec:91:ff:5b:88:ae:fa:
52:d8:8a:7f:21:59:5f:ad:16:91:3f:cb:35:e5:73:
fc:6e:f1:ea:01:fe:d1:a3:8c:12:4e:71:e0:e2:88:
32:0b:83:30:14:4f:28:23:c1:9f:98:19:5c:d2:0e:
d8:d2:bc:c9:4c:5e:64:ac:a3:34:7d:71:be:c7:ef:
80:7a:56:4a:57:81:1c:6f:65:6b:17:e0:aa:26:eb:
c8:50:2e:8c:bc:44:4d:15:6d:c7:de:da:de:99:4f:
47:92:56:7b:7b:e8:8f:13:51:d2:e1:15:1f:06:5d:
6a:00:eb:62:71:1f:0d:53:ab:1b:10:12:41:a1:5f:
b2:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:E2:03:EE:8C:80:27:65:C1:25:05:5F:46:C5:2F:3D:92:40:E4:20
X509v3 Authority Key Identifier:
keyid:B4:07:C8:B8:FA:B2:AF:78:5E:44:9F:69:59:A3:43:C1:1F:3C:2F:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/0/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/0/3131362e35302e33322e302f32302d3234203d3e203138303436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
116.50.32.0/20
Signature Algorithm: sha256WithRSAEncryption
48:5e:2a:ba:d4:59:d1:f0:2a:3e:46:c0:52:1e:c2:d0:c4:0d:
0e:c3:55:9c:da:4d:e6:40:97:65:4a:09:c6:47:60:1d:c3:3a:
ed:fd:f1:24:3b:ae:21:24:29:c7:3c:a0:ad:97:26:c3:84:0d:
47:6b:e5:e1:31:b0:6b:fd:4f:c6:b4:24:a7:1d:1a:76:98:34:
39:38:cb:19:56:91:4d:0a:63:4f:d6:e6:47:4a:0c:fc:23:f2:
a3:2d:3f:18:37:5e:a5:0b:88:5c:56:b3:07:c4:37:94:31:6f:
1b:43:5c:05:3e:35:91:31:0d:11:c8:6c:a8:8e:d9:e8:d5:59:
b4:05:cc:3b:e2:3d:30:b8:83:d9:f9:12:34:90:18:c2:6c:96:
cb:37:d1:25:e8:74:b0:f6:c9:e1:8b:10:49:df:7a:ef:e3:08:
5a:5c:dd:5b:d3:cf:25:10:8a:50:9b:58:c1:7c:26:8c:ac:00:
80:e7:5a:2d:aa:b0:30:25:98:f4:4f:e0:5d:91:d0:ff:39:07:
68:77:0e:10:30:57:96:66:56:53:7f:1d:96:11:e5:e4:6f:83:
a3:44:0c:a0:f2:26:00:94:8e:95:cb:bd:af:cd:d4:a2:4a:dc:
fd:56:89:de:bc:cb:f9:dd:b6:3a:80:8b:44:4e:3e:ed:cd:db:
81:10:f1:69
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue May 12 22:32:21 2026 by rpki-client