Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/DONGFONG/0/36312e36352e3232342e302f31392d3234203d3e203138303436.roa
File: 36312e36352e3232342e302f31392d3234203d3e203138303436.roa (raw, json)
Hash identifier: JGQ3yop/vcm2FdY2UjF6jt7SjOXxYwxRnvwb/oHXEkE=
Subject key identifier: 72:C0:C5:B2:9A:A8:54:DE:3F:35:4E:A2:0A:A5:CA:BB:9E:2D:64:82
Certificate issuer: /CN=B407C8B8FAB2AF785E449F6959A343C11F3C2F7D
Certificate serial: 51FECD70E5E4EF6743357441B5EB6C11B1882968
Authority key identifier: B4:07:C8:B8:FA:B2:AF:78:5E:44:9F:69:59:A3:43:C1:1F:3C:2F:7D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/DONGFONG/0/36312e36352e3232342e302f31392d3234203d3e203138303436.roa
Signing time: Mon 11 May 2026 17:04:07 +0000
ROA not before: Mon 11 May 2026 16:59:07 +0000
ROA not after: Mon 10 May 2027 17:04:07 +0000
asID: 18046
IP address blocks: 61.65.224.0/19 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:fe:cd:70:e5:e4:ef:67:43:35:74:41:b5:eb:6c:11:b1:88:29:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B407C8B8FAB2AF785E449F6959A343C11F3C2F7D
Validity
Not Before: May 11 16:59:07 2026 GMT
Not After : May 10 17:04:07 2027 GMT
Subject: CN=72C0C5B29AA854DE3F354EA20AA5CABB9E2D6482
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:38:0f:08:7a:86:a6:b1:6b:87:10:a2:31:04:
b6:5b:47:1e:f4:17:4b:fc:44:5a:c2:36:02:92:0b:
1a:96:94:ec:7f:ef:bc:44:6a:e4:c4:f3:ae:b2:ad:
8b:35:34:c1:1e:a7:96:d4:db:d8:c7:62:b7:07:62:
a4:2e:fa:ea:9a:c1:74:fd:ca:c3:68:d6:a1:e1:08:
46:ee:7b:fd:2d:aa:be:21:16:83:83:75:9f:c2:e5:
9d:13:8b:d3:5a:45:7d:1d:c1:57:05:b3:9e:36:9b:
dc:b2:3d:da:3d:d8:6b:37:96:30:91:96:bf:d6:9f:
d1:4a:96:16:4c:65:e1:ad:75:fd:b0:5e:9b:02:a3:
ff:85:cf:20:40:53:04:53:88:54:61:4a:37:66:79:
4a:61:8c:40:cb:53:3b:9a:7a:9a:d6:5c:f4:aa:62:
3c:a9:6c:35:3b:86:0e:81:2b:8b:2e:01:52:aa:fa:
66:33:5d:69:f1:c9:30:fd:59:cb:02:3c:da:04:4a:
35:85:24:69:50:a0:30:2f:d2:e4:06:80:f3:37:e0:
31:41:66:b6:18:5e:d7:fc:cd:fb:97:3d:4d:98:16:
82:a9:e0:eb:62:91:d0:c5:f4:a4:eb:30:cd:0b:9c:
8c:46:23:ec:c5:6e:7f:e9:66:74:95:4a:1c:a2:f9:
82:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:C0:C5:B2:9A:A8:54:DE:3F:35:4E:A2:0A:A5:CA:BB:9E:2D:64:82
X509v3 Authority Key Identifier:
keyid:B4:07:C8:B8:FA:B2:AF:78:5E:44:9F:69:59:A3:43:C1:1F:3C:2F:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/0/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/0/36312e36352e3232342e302f31392d3234203d3e203138303436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
61.65.224.0/19
Signature Algorithm: sha256WithRSAEncryption
54:4b:04:68:e8:12:77:5b:60:b7:2c:71:51:de:d3:53:e6:f4:
c4:91:e6:8a:c2:13:5e:7c:c3:70:ff:0b:98:a0:b9:c2:75:ee:
c4:6f:5a:db:91:8d:21:5d:96:8d:8f:27:0c:d3:f9:79:bd:6e:
b7:fe:2a:62:92:67:98:67:f7:e3:cb:a2:09:e5:e2:42:53:a1:
aa:e1:f4:4b:34:36:15:22:83:e6:73:02:da:9c:ff:d4:16:0c:
49:34:b2:2b:d5:7a:66:f4:8f:5a:43:5b:46:54:17:42:f0:2b:
79:ed:08:ed:37:72:4d:b3:30:5c:c7:ba:9c:a3:0e:1b:b8:19:
d7:60:f6:ea:d9:9d:e0:5a:02:fc:9a:88:9a:4b:d5:b8:ec:0a:
1b:aa:07:35:c2:e7:fd:55:ec:6d:1d:1e:69:94:29:05:05:13:
4c:1e:f4:3e:1a:e8:27:e5:36:ae:55:89:a4:80:a8:eb:1a:c6:
e7:d3:fc:72:7c:52:28:fa:82:54:68:e2:f4:a4:d2:66:34:2b:
b6:8b:a1:96:4b:e3:2b:ee:30:06:82:17:17:7c:34:53:4d:7a:
b7:80:64:dc:9b:6d:bf:6d:e9:bf:6a:72:55:0f:50:44:dd:69:
5f:97:cb:25:43:6a:49:77:cb:7d:53:58:89:a6:b3:b6:f7:22:
34:bc:51:c9
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue May 12 23:10:30 2026 by rpki-client