Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/DONGFONG/0/36312e36352e3233362e302f32322d3234203d3e203138303436.roa
File: 36312e36352e3233362e302f32322d3234203d3e203138303436.roa (raw, json)
Hash identifier: rVt6jn0s+ctjCC9zbc3cMEHz3yfZQjGH0puX8gX3+zQ=
Subject key identifier: F0:3B:8B:41:05:49:1F:76:9A:C3:93:D2:29:58:81:9A:E5:8C:68:0F
Certificate issuer: /CN=B407C8B8FAB2AF785E449F6959A343C11F3C2F7D
Certificate serial: 223050740FFC1BF3699FE15432C02AE892953989
Authority key identifier: B4:07:C8:B8:FA:B2:AF:78:5E:44:9F:69:59:A3:43:C1:1F:3C:2F:7D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/DONGFONG/0/36312e36352e3233362e302f32322d3234203d3e203138303436.roa
Signing time: Mon 11 May 2026 17:40:01 +0000
ROA not before: Mon 11 May 2026 17:35:01 +0000
ROA not after: Mon 10 May 2027 17:40:01 +0000
asID: 18046
IP address blocks: 61.65.236.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:30:50:74:0f:fc:1b:f3:69:9f:e1:54:32:c0:2a:e8:92:95:39:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B407C8B8FAB2AF785E449F6959A343C11F3C2F7D
Validity
Not Before: May 11 17:35:01 2026 GMT
Not After : May 10 17:40:01 2027 GMT
Subject: CN=F03B8B4105491F769AC393D22958819AE58C680F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:90:d0:e0:c2:1b:1a:b5:89:ee:76:99:6c:47:
38:22:23:90:73:f9:75:df:c0:c5:fe:fc:2d:74:45:
8b:4e:46:80:5b:eb:7e:a6:b2:de:8f:7f:fb:04:3e:
a3:f5:77:55:2a:b5:b9:c8:0d:a8:46:7b:8f:7e:fd:
a2:d4:a5:d3:d8:12:85:e4:22:23:35:f9:b3:33:77:
21:a0:7a:6d:fb:2b:a7:56:2d:31:dd:04:59:10:54:
e9:ac:eb:be:2e:39:6a:ac:2c:c3:3c:a4:47:63:b9:
24:7c:ef:48:25:43:1b:f8:41:a0:d1:8f:d3:4c:15:
16:8c:d2:0e:c2:e9:c3:13:1a:f6:d1:e8:7a:9c:69:
0e:04:4c:30:63:18:9f:33:94:f6:d9:67:31:72:60:
0d:a6:1e:62:96:10:68:48:e7:c8:67:5b:ba:27:f3:
67:18:c1:05:a0:a4:dd:83:14:d3:ff:2b:99:9e:53:
39:d9:f5:44:69:c8:9b:d3:7b:d5:39:1f:69:80:8c:
2d:ad:33:cf:26:10:3f:3e:9d:7d:35:f3:50:d0:e7:
01:01:60:11:ed:da:92:04:f1:6b:1b:d2:88:13:62:
57:26:bf:15:b7:53:24:9a:59:38:d8:7b:66:ff:6c:
e4:67:85:62:24:1c:88:fc:a5:33:f5:1c:bb:3f:52:
16:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:3B:8B:41:05:49:1F:76:9A:C3:93:D2:29:58:81:9A:E5:8C:68:0F
X509v3 Authority Key Identifier:
keyid:B4:07:C8:B8:FA:B2:AF:78:5E:44:9F:69:59:A3:43:C1:1F:3C:2F:7D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/0/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/B407C8B8FAB2AF785E449F6959A343C11F3C2F7D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/0/36312e36352e3233362e302f32322d3234203d3e203138303436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
61.65.236.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:b6:d9:9c:47:78:04:09:8a:57:b4:35:14:00:4c:ec:b8:d1:
4a:81:d0:e1:c7:70:ef:13:15:0d:08:2e:f6:9d:c7:11:76:4b:
fd:ed:99:63:74:58:47:17:66:05:cf:6a:d5:45:45:03:0a:cc:
ed:a2:d3:32:ae:7f:d1:7d:d0:19:26:57:99:c0:8a:e6:cd:71:
dc:7a:c7:4f:b3:33:9b:ba:86:38:c5:f1:2f:87:84:92:14:3f:
63:f3:49:d5:a6:0d:e6:39:05:af:4f:7b:ad:dd:40:79:ff:0f:
c4:1e:51:0c:50:00:e1:07:eb:f9:c5:6b:ff:91:9d:16:c2:ab:
d7:f5:2e:ec:2e:8f:da:93:f0:52:2b:88:e5:d7:17:fe:18:63:
a5:5e:28:e8:21:49:86:d4:27:59:d9:8f:f9:41:86:7e:9d:d6:
74:6f:c6:86:b7:fe:92:4f:ca:e0:67:61:46:7e:0a:23:33:b0:
68:77:b6:67:ef:10:4e:44:43:fb:ff:8c:a9:70:e3:37:14:38:
dd:76:2f:b3:d7:a3:10:13:19:e1:c4:6b:8c:0f:de:60:d1:ce:
93:86:7a:39:10:89:ac:92:ef:2c:59:cf:ef:e8:f1:46:ad:c2:
b5:97:d4:8a:6a:6c:00:1d:84:56:22:f3:7e:2c:db:75:1b:b0:
03:e4:f0:d4
-----BEGIN CERTIFICATE-----
MIIE2zCCA8OgAwIBAgIUIjBQdA/8G/Npn+FUMsAq6JKVOYkwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQjQwN0M4QjhGQUIyQUY3ODVFNDQ5RjY5NTlBMzQzQzEx
RjNDMkY3RDAeFw0yNjA1MTExNzM1MDFaFw0yNzA1MTAxNzQwMDFaMDMxMTAvBgNV
BAMTKEYwM0I4QjQxMDU0OTFGNzY5QUMzOTNEMjI5NTg4MTlBRTU4QzY4MEYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCakNDgwhsatYnudplsRzgiI5Bz
+XXfwMX+/C10RYtORoBb636mst6Pf/sEPqP1d1UqtbnIDahGe49+/aLUpdPYEoXk
IiM1+bMzdyGgem37K6dWLTHdBFkQVOms674uOWqsLMM8pEdjuSR870glQxv4QaDR
j9NMFRaM0g7C6cMTGvbR6HqcaQ4ETDBjGJ8zlPbZZzFyYA2mHmKWEGhI58hnW7on
82cYwQWgpN2DFNP/K5meUznZ9URpyJvTe9U5H2mAjC2tM88mED8+nX0181DQ5wEB
YBHt2pIE8Wsb0ogTYlcmvxW3UySaWTjYe2b/bORnhWIkHIj8pTP1HLs/UhZXAgMB
AAGjggHlMIIB4TAdBgNVHQ4EFgQU8DuLQQVJH3aaw5PSKViBmuWMaA8wHwYDVR0j
BBgwFoAUtAfIuPqyr3heRJ9pWaNDwR88L30wDgYDVR0PAQH/BAQDAgeAMGUGA1Ud
HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9OR0ZP
TkcvMC9CNDA3QzhCOEZBQjJBRjc4NUU0NDlGNjk1OUEzNDNDMTFGM0MyRjdELmNy
bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3
bmljLnR3L3Jwa2kvVFdOSUNDQS8xL0I0MDdDOEI4RkFCMkFGNzg1RTQ0OUY2OTU5
QTM0M0MxMUYzQzJGN0QuY2VyMHwGCCsGAQUFBwELBHAwbjBsBggrBgEFBQcwC4Zg
cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ET05HRk9ORy8wLzM2MzEyZTM2
MzUyZTMyMzMzNjJlMzAyZjMyMzIyZDMyMzQyMDNkM2UyMDMxMzgzMDM0MzYucm9h
MBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwE
AgABMAYDBAI9QewwDQYJKoZIhvcNAQELBQADggEBAAq22ZxHeAQJile0NRQATOy4
0UqB0OHHcO8TFQ0ILvadxxF2S/3tmWN0WEcXZgXPatVFRQMKzO2i0zKuf9F90Bkm
V5nAiubNcdx6x0+zM5u6hjjF8S+HhJIUP2PzSdWmDeY5Ba9Pe63dQHn/D8QeUQxQ
AOEH6/nFa/+RnRbCq9f1Luwuj9qT8FIriOXXF/4YY6VeKOghSYbUJ1nZj/lBhn6d
1nRvxoa3/pJPyuBnYUZ+CiMzsGh3tmfvEE5EQ/v/jKlw4zcUON12L7PXoxATGeHE
a4wP3mDRzpOGejkQiayS7yxZz+/o8UatwrWX1IpqbAAdhFYi834s23UbsAPk8NQ=
-----END CERTIFICATE-----
Generated at Tue May 12 22:31:52 2026 by rpki-client