Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/HOSTIN/0/3130332e3135322e3135312e302f32342d3234203d3e2039363738.roa
File: 3130332e3135322e3135312e302f32342d3234203d3e2039363738.roa (raw, json)
Hash identifier: LbFNzufaEOVQ4W41Z1ykHx9k1X6VXBB6LVAO4NG2BwI=
Subject key identifier: 82:FD:8D:D6:0E:ED:CD:11:F8:14:C7:20:88:F3:D2:12:97:77:2D:0F
Certificate issuer: /CN=60A6F20E39E81962FD3770C4C44C5E10DFD32D2A
Certificate serial: 508CF77D9C2D2B96B8C399B6195DB34D145B9826
Authority key identifier: 60:A6:F2:0E:39:E8:19:62:FD:37:70:C4:C4:4C:5E:10:DF:D3:2D:2A
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/60A6F20E39E81962FD3770C4C44C5E10DFD32D2A.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/HOSTIN/0/3130332e3135322e3135312e302f32342d3234203d3e2039363738.roa
Signing time: Mon 11 May 2026 17:56:35 +0000
ROA not before: Mon 11 May 2026 17:51:35 +0000
ROA not after: Mon 10 May 2027 17:56:35 +0000
asID: 9678
IP address blocks: 103.152.151.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
50:8c:f7:7d:9c:2d:2b:96:b8:c3:99:b6:19:5d:b3:4d:14:5b:98:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=60A6F20E39E81962FD3770C4C44C5E10DFD32D2A
Validity
Not Before: May 11 17:51:35 2026 GMT
Not After : May 10 17:56:35 2027 GMT
Subject: CN=82FD8DD60EEDCD11F814C72088F3D21297772D0F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:16:28:80:ea:b4:95:38:73:8d:61:80:4e:85:
7d:29:3f:96:72:f6:91:b1:73:4e:cb:08:13:91:57:
db:ab:b5:db:af:00:52:32:6d:93:83:93:c9:1e:b4:
ea:fd:4b:32:12:2f:db:c3:9a:71:73:d4:1b:ea:64:
20:f6:e5:80:36:bc:55:2c:3c:de:b0:f8:bc:bf:43:
7e:49:28:34:7c:09:b5:92:63:d3:6a:0c:62:ed:79:
59:e0:d6:fd:e6:05:0c:b8:98:a8:5e:7e:fc:f4:cc:
c8:8d:3a:09:e3:64:b2:df:58:37:9a:33:1a:b1:7e:
d9:80:d6:36:63:a3:48:27:d6:b3:d3:3f:c6:9c:5f:
f3:73:1e:6c:de:e6:47:02:1f:dd:dd:00:35:b7:99:
f9:08:70:7e:37:41:ed:b5:82:ae:52:b0:d0:00:be:
12:ef:a2:d9:43:65:ef:c9:96:af:d1:19:26:fb:ee:
4a:ad:3c:43:b9:4f:9b:6c:28:00:a6:aa:79:69:96:
d6:67:2c:68:fa:f6:a3:aa:e8:f3:da:d6:f7:ea:47:
67:8c:a4:ee:26:46:f3:96:b8:57:90:29:57:cb:a7:
43:31:8e:6a:62:a8:ca:99:c4:39:62:28:70:70:8e:
59:22:a5:80:43:11:ea:4e:ed:0d:97:5d:c3:c6:52:
a3:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:FD:8D:D6:0E:ED:CD:11:F8:14:C7:20:88:F3:D2:12:97:77:2D:0F
X509v3 Authority Key Identifier:
keyid:60:A6:F2:0E:39:E8:19:62:FD:37:70:C4:C4:4C:5E:10:DF:D3:2D:2A
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/HOSTIN/0/60A6F20E39E81962FD3770C4C44C5E10DFD32D2A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/60A6F20E39E81962FD3770C4C44C5E10DFD32D2A.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HOSTIN/0/3130332e3135322e3135312e302f32342d3234203d3e2039363738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.152.151.0/24
Signature Algorithm: sha256WithRSAEncryption
46:11:54:93:6d:5e:69:90:a1:1f:e0:4e:af:8c:eb:37:eb:a1:
3f:df:98:35:a6:a4:45:98:bd:9a:ee:6a:e2:19:25:37:50:15:
eb:cc:ed:49:56:08:9f:a6:c0:65:ea:e2:17:7a:2a:62:46:cc:
05:18:fd:ad:5a:5b:98:6e:c4:0c:5e:a1:df:96:a9:d7:f8:cc:
97:42:23:a0:44:03:b5:bb:7d:64:c9:6a:44:7c:c8:bf:ad:bb:
23:4b:c0:7a:6f:9a:b1:36:7e:cd:17:c1:7a:d8:01:61:2a:68:
99:3d:b3:ec:e5:75:a4:aa:78:92:d2:66:f0:fd:d0:39:bc:27:
1b:1d:6a:f2:21:d7:b3:48:1e:19:49:d9:6d:f3:bc:d6:21:2f:
08:6c:4c:a6:8a:cd:17:0b:e1:e1:09:a8:9b:9e:aa:8c:57:40:
17:04:26:76:f7:45:40:17:20:a5:92:a5:02:21:58:52:07:f9:
c5:2a:f7:6d:d0:28:7e:03:7a:29:bf:73:e3:6b:71:63:fb:c6:
7e:a4:01:c8:35:4c:12:c5:88:47:de:5e:3d:56:19:af:20:4f:
9b:80:eb:05:3b:a4:d9:ef:1e:c4:79:69:fc:0c:80:39:57:20:
25:c0:89:a3:b0:27:14:ab:b8:fe:9c:b4:5f:ff:1c:e3:6f:1b:
30:e1:04:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:15:22 2026 by rpki-client