Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/KTCFE/0/3130332e35392e3232302e302f32332d3233203d3e20313331353935.roa
File: 3130332e35392e3232302e302f32332d3233203d3e20313331353935.roa (raw, json)
Hash identifier: ig0nyTBRvQZ8trj2POEoB3J8GO7jvHOYrg7pgT6kYDE=
Subject key identifier: FA:94:5C:9E:BB:6A:A4:4F:63:B5:A7:BA:3A:40:42:41:69:09:97:A9
Certificate issuer: /CN=4703E44596DFB4A93F400A7B57126B31D5EC4CDA
Certificate serial: 6D46CB5EED9714BA1001CCB071C498B0F6AAE03C
Authority key identifier: 47:03:E4:45:96:DF:B4:A9:3F:40:0A:7B:57:12:6B:31:D5:EC:4C:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4703E44596DFB4A93F400A7B57126B31D5EC4CDA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/KTCFE/0/3130332e35392e3232302e302f32332d3233203d3e20313331353935.roa
Signing time: Mon 11 May 2026 17:58:20 +0000
ROA not before: Mon 11 May 2026 17:53:20 +0000
ROA not after: Mon 10 May 2027 17:58:20 +0000
asID: 131595
IP address blocks: 103.59.220.0/23 maxlen: 23
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:46:cb:5e:ed:97:14:ba:10:01:cc:b0:71:c4:98:b0:f6:aa:e0:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4703E44596DFB4A93F400A7B57126B31D5EC4CDA
Validity
Not Before: May 11 17:53:20 2026 GMT
Not After : May 10 17:58:20 2027 GMT
Subject: CN=FA945C9EBB6AA44F63B5A7BA3A404241690997A9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:5f:da:4a:cc:6d:34:c6:13:ce:59:6e:f4:96:
5a:6e:25:64:d5:95:4c:67:e7:cc:1a:c3:96:ea:ee:
87:a2:d5:02:12:21:d0:69:68:f0:d6:91:7a:3c:8d:
cd:00:ff:d3:8d:f1:8d:5e:01:04:21:98:0a:02:d4:
d6:e9:f0:1c:e9:08:83:7f:17:c8:29:fc:4e:18:1c:
a8:1c:70:ed:6f:25:50:2b:79:78:81:da:81:50:d4:
63:27:af:ad:57:34:c3:11:b8:19:87:90:b3:32:fb:
51:d0:79:77:73:6c:ae:b8:65:1f:a3:5e:24:00:be:
e1:00:2c:82:00:42:66:cf:bc:0a:32:1d:47:ac:ba:
90:de:0b:e2:b2:b2:4a:35:c9:66:23:d4:10:57:0b:
18:18:cf:6f:7d:bd:2c:bb:20:32:96:bf:13:d4:68:
e9:f4:2c:22:00:a9:ca:d6:fe:a2:9b:9c:fd:64:f7:
64:9c:11:7d:9a:c1:3e:3d:3f:f7:0f:5f:17:4a:03:
77:26:3e:84:7c:08:48:c7:f4:f0:06:f9:c7:0e:38:
7c:c0:e7:da:51:2c:1a:8d:03:92:28:47:a0:27:ea:
3a:d8:41:83:83:62:1d:53:81:54:b3:ae:62:90:67:
5d:7d:f0:bc:a8:98:67:b1:82:4e:f5:ef:8a:78:ac:
f0:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FA:94:5C:9E:BB:6A:A4:4F:63:B5:A7:BA:3A:40:42:41:69:09:97:A9
X509v3 Authority Key Identifier:
keyid:47:03:E4:45:96:DF:B4:A9:3F:40:0A:7B:57:12:6B:31:D5:EC:4C:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/KTCFE/0/4703E44596DFB4A93F400A7B57126B31D5EC4CDA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4703E44596DFB4A93F400A7B57126B31D5EC4CDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KTCFE/0/3130332e35392e3232302e302f32332d3233203d3e20313331353935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.59.220.0/23
Signature Algorithm: sha256WithRSAEncryption
75:bb:82:82:75:72:9f:ab:20:ac:62:f4:b1:9c:9c:df:94:41:
c4:ba:a4:96:02:8a:a2:31:2d:2e:0a:e1:df:4c:76:c6:63:30:
a6:9c:86:c9:d1:2c:e9:51:d0:4a:db:88:9e:2c:2e:fd:81:4f:
a2:dd:5e:52:94:4c:93:66:9c:2b:b6:d9:4b:98:6e:80:1a:83:
ec:32:68:c4:43:08:a2:b3:a7:7e:f5:b2:00:a4:e3:94:5e:15:
3f:13:5a:60:01:d7:01:1b:e6:cd:93:31:31:76:85:fe:39:54:
df:de:42:4f:3e:ac:99:68:33:1f:5e:f5:87:d5:fb:d9:17:bb:
d6:d0:2d:58:dd:31:a7:98:37:52:9b:10:be:68:89:ee:4a:0b:
61:84:85:37:44:d1:48:52:22:c3:bc:4c:61:f3:ee:18:07:f9:
cb:85:db:f2:56:2d:4d:f1:e4:5b:03:e4:06:3c:1e:4a:69:f8:
80:c8:95:ef:8c:e8:77:41:63:df:99:2f:55:32:03:b0:b5:26:
ce:59:ee:c0:7c:bd:21:4b:2d:1f:9f:ef:48:5d:9b:ed:a7:ef:
f0:8d:e2:ab:16:bd:f6:67:34:93:75:1c:89:bf:8b:44:c1:e7:
ca:5b:82:8f:32:8b:a2:b1:0a:dd:9b:96:f2:0a:fa:1d:19:73:
66:0b:f7:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:44:54 2026 by rpki-client