Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/DWINS/0/3131322e3231332e34382e302f32302d3234203d3e203137343136.roa
File: 3131322e3231332e34382e302f32302d3234203d3e203137343136.roa (raw, json)
Hash identifier: IyZ2uNj2Ed2hbTcxfq9Hoz8oXlcjs1V2+SFVtmy0SAo=
Subject key identifier: 5D:C2:84:EC:48:88:BB:D1:28:0B:AD:D8:89:59:F0:DA:57:E6:7F:31
Certificate issuer: /CN=C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93
Certificate serial: 76B6923307E4174C5949B91329F0C0BEC3E01746
Authority key identifier: C5:DF:31:D9:EE:B5:DA:72:66:8D:58:FB:8D:B0:E7:5E:3A:D7:BF:93
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/DWINS/0/3131322e3231332e34382e302f32302d3234203d3e203137343136.roa
Signing time: Mon 11 May 2026 17:01:19 +0000
ROA not before: Mon 11 May 2026 16:56:19 +0000
ROA not after: Mon 10 May 2027 17:01:19 +0000
asID: 17416
IP address blocks: 112.213.48.0/20 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
76:b6:92:33:07:e4:17:4c:59:49:b9:13:29:f0:c0:be:c3:e0:17:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93
Validity
Not Before: May 11 16:56:19 2026 GMT
Not After : May 10 17:01:19 2027 GMT
Subject: CN=5DC284EC4888BBD1280BADD88959F0DA57E67F31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:18:b9:f4:ea:6b:93:eb:7e:8e:cf:e9:16:43:
73:7c:a9:8e:29:fd:42:e2:b0:9c:0d:1d:01:45:4e:
bb:77:91:b3:d2:81:e6:93:6d:05:98:be:76:95:a4:
08:e8:75:27:42:6b:e1:e4:b2:29:9d:52:70:f7:f5:
e4:c1:d2:35:c9:28:56:4d:68:6e:da:96:62:b9:bf:
a0:8d:fb:4a:ca:33:71:c6:86:e7:a2:e8:df:92:9c:
7e:e0:49:29:91:24:c9:80:38:d5:12:c8:56:0a:10:
5f:98:ef:b2:5a:53:4a:8e:6d:72:fa:ab:4b:32:47:
c4:2e:cb:16:a0:ac:b3:82:4d:e2:95:f7:f7:68:a3:
2f:ff:5a:84:67:c5:8f:62:59:82:5a:64:02:4d:87:
c9:7c:c2:a1:f8:46:b7:93:f1:a2:b0:ba:46:2d:26:
18:eb:69:e7:6b:f2:30:9f:f4:e5:f6:c6:81:01:0a:
ea:b6:d4:0a:cf:bb:2f:70:d6:63:78:2f:48:0c:19:
cb:0e:d7:c9:58:8e:9a:c4:ed:34:2f:cc:2f:d8:7c:
9c:36:26:82:9c:5e:4c:f2:de:5e:e3:4e:b9:21:7d:
d5:1a:ba:c3:68:e6:37:ab:b0:a9:d8:80:e4:d9:1f:
1e:06:84:0f:a8:09:0b:ee:bb:8d:f9:c0:f1:5a:c7:
1d:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:C2:84:EC:48:88:BB:D1:28:0B:AD:D8:89:59:F0:DA:57:E6:7F:31
X509v3 Authority Key Identifier:
keyid:C5:DF:31:D9:EE:B5:DA:72:66:8D:58:FB:8D:B0:E7:5E:3A:D7:BF:93
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/DWINS/0/C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DWINS/0/3131322e3231332e34382e302f32302d3234203d3e203137343136.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
112.213.48.0/20
Signature Algorithm: sha256WithRSAEncryption
a7:e7:25:e3:73:29:48:c1:91:f9:f5:65:b8:58:54:e9:22:fa:
a9:4a:02:44:e3:eb:a3:8b:4c:47:fa:ec:48:55:e9:7b:0a:6e:
ac:6d:01:20:0c:9d:a8:ab:c8:8d:71:1f:7c:31:fa:56:53:3f:
3d:da:90:fc:09:b4:34:59:44:f1:5a:0c:4e:4f:b0:e0:96:39:
ec:ee:41:12:3e:78:30:e5:0d:8b:99:1b:87:9d:43:29:cb:90:
1c:a7:4c:2c:34:f0:9b:6c:fa:48:cb:90:e0:6b:a9:31:21:b0:
21:8d:cd:4d:64:3c:92:d4:1f:4f:ce:88:5e:d6:36:29:54:f7:
d8:ff:a2:64:9b:c3:2b:69:86:a6:b3:60:dc:97:24:7e:6a:4a:
ef:f8:2e:17:49:11:0b:68:a8:08:ce:89:a8:b7:3e:ad:6b:d8:
64:c1:25:c7:56:e6:85:5c:ab:e5:26:de:10:de:9a:f8:7b:22:
1d:cc:87:7e:4b:aa:44:60:8c:a4:22:c8:87:8e:1d:8e:3e:22:
b7:e0:3e:e6:64:59:e6:27:c8:cd:e3:cd:ab:1a:86:ff:e2:43:
76:af:a5:4f:6d:4e:1e:20:9e:82:9b:20:c5:b8:8e:3d:45:c3:
33:a3:ea:44:01:23:24:6a:af:38:88:34:73:ef:57:28:46:a7:
ab:a3:ea:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:32:15 2026 by rpki-client