Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/JGZ/0/3138302e39342e33302e302f32332d3234203d3e2039323939.roa
File: 3138302e39342e33302e302f32332d3234203d3e2039323939.roa (raw, json)
Hash identifier: wXHXnquzJPMvt2eL/0ADugpfutlaQZTySmvZfMnVTRQ=
Subject key identifier: 7D:E2:53:C9:4D:0A:88:B3:FF:5D:43:93:49:40:80:A5:E7:6E:49:5C
Certificate issuer: /CN=7198602C0FFFDBCD1689380B05AC4CD694FAF839
Certificate serial: 447BACD1DC19EAAD7B6FD381D1B9597492D54439
Authority key identifier: 71:98:60:2C:0F:FF:DB:CD:16:89:38:0B:05:AC:4C:D6:94:FA:F8:39
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/7198602C0FFFDBCD1689380B05AC4CD694FAF839.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/JGZ/0/3138302e39342e33302e302f32332d3234203d3e2039323939.roa
Signing time: Mon 11 May 2026 17:39:51 +0000
ROA not before: Mon 11 May 2026 17:34:51 +0000
ROA not after: Mon 10 May 2027 17:39:51 +0000
asID: 9299
IP address blocks: 180.94.30.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:7b:ac:d1:dc:19:ea:ad:7b:6f:d3:81:d1:b9:59:74:92:d5:44:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7198602C0FFFDBCD1689380B05AC4CD694FAF839
Validity
Not Before: May 11 17:34:51 2026 GMT
Not After : May 10 17:39:51 2027 GMT
Subject: CN=7DE253C94D0A88B3FF5D4393494080A5E76E495C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:9b:33:17:cd:de:dd:eb:3f:8d:c0:fd:ff:dd:
11:7e:75:5b:8d:d8:4a:cc:2d:66:59:b9:47:45:9c:
ab:fe:03:d0:6e:db:6b:23:1b:51:22:be:b8:17:fd:
02:91:92:da:12:62:b7:f4:e9:20:4a:63:52:56:1b:
0f:bd:48:30:9c:6e:c2:9e:d9:ae:06:1f:19:c3:6d:
87:fc:b3:3e:c4:38:fe:25:80:ab:a3:43:68:53:96:
74:0a:15:d6:35:98:60:dd:25:ce:06:fa:55:a0:87:
0f:c0:b2:7a:bd:44:4d:6b:9f:c4:50:0a:ca:e5:c9:
25:cc:e8:94:9e:e2:48:5f:ef:be:14:57:eb:fa:7a:
f1:e3:c1:f3:e1:27:16:cf:a4:cf:6e:64:36:66:59:
11:ed:9a:9e:d2:68:e3:36:7a:06:90:f0:4c:a2:81:
3b:c1:a9:f0:dd:22:b3:a1:43:29:37:64:a0:24:5b:
1a:39:b4:17:3c:86:a3:1a:2d:f2:b8:9c:fb:c2:9c:
dd:e2:39:df:85:57:ba:bb:9a:e5:6c:70:6f:c4:b2:
ec:d2:bd:82:95:49:5c:5d:98:ab:d0:5f:85:01:84:
af:7b:49:ef:05:9c:d3:1a:42:4b:02:28:34:ee:18:
64:17:17:20:a9:c7:ad:ef:0e:a9:44:e6:7e:42:2e:
01:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:E2:53:C9:4D:0A:88:B3:FF:5D:43:93:49:40:80:A5:E7:6E:49:5C
X509v3 Authority Key Identifier:
keyid:71:98:60:2C:0F:FF:DB:CD:16:89:38:0B:05:AC:4C:D6:94:FA:F8:39
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/JGZ/0/7198602C0FFFDBCD1689380B05AC4CD694FAF839.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/7198602C0FFFDBCD1689380B05AC4CD694FAF839.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/JGZ/0/3138302e39342e33302e302f32332d3234203d3e2039323939.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
180.94.30.0/23
Signature Algorithm: sha256WithRSAEncryption
32:f3:43:40:ab:58:0d:65:71:de:74:f1:f1:02:a8:a0:b9:4b:
ec:ca:83:9b:7d:d5:38:54:15:f8:05:f7:09:fa:75:51:af:fc:
e0:cd:16:89:7e:48:7a:d4:70:78:2f:3f:ce:6a:1c:05:55:99:
8b:b0:54:c9:4f:4e:88:38:d3:52:fa:da:2c:b2:3b:48:6f:0f:
34:41:74:d2:27:3f:51:dc:0f:be:bd:66:4f:c2:aa:51:96:00:
96:d6:4f:6a:61:e6:b1:e6:2a:62:85:a3:ed:07:a5:cf:a9:f7:
1f:08:a3:35:84:c8:88:c9:4a:40:9e:d1:5d:be:16:17:f3:be:
df:ef:d8:f6:1a:69:69:e6:00:60:42:28:19:3f:8d:a2:c5:67:
81:22:46:89:69:02:67:e2:c1:15:09:16:68:9b:f9:90:58:fd:
b9:c6:3b:f9:29:44:f7:0b:fc:e8:98:0d:56:72:0c:8c:8c:31:
dc:3e:6a:5e:bf:fc:20:0b:26:dd:f6:1d:20:4f:4d:93:31:48:
bb:0b:29:66:20:21:3a:d2:13:f9:ee:6b:52:9b:50:8c:bd:96:
88:3a:04:45:ed:a4:7c:da:36:ff:1e:e4:3a:94:af:89:f8:47:
29:d3:30:57:21:92:b2:e6:f1:69:ef:da:e7:75:97:b3:cc:ac:
f6:19:b9:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:25:32 2026 by rpki-client