Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/MFE/0/3130332e3131372e3133322e302f32332d3234203d3e2039363737.roa
File: 3130332e3131372e3133322e302f32332d3234203d3e2039363737.roa (raw, json)
Hash identifier: L4VMPfmAF+ujWD/W3Q/uT3gBZ3GdNZkDF1QTrHGw11I=
Subject key identifier: 7D:2E:70:B8:87:08:FA:1E:05:EE:D4:67:08:7A:B2:25:EB:3D:2A:43
Certificate issuer: /CN=21B62D60E1AB53803B229CCF83C179FD3FCFB5B3
Certificate serial: 120B1AA7029A354E18D2D436F592F1CB76A570DF
Authority key identifier: 21:B6:2D:60:E1:AB:53:80:3B:22:9C:CF:83:C1:79:FD:3F:CF:B5:B3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/MFE/0/3130332e3131372e3133322e302f32332d3234203d3e2039363737.roa
Signing time: Mon 11 May 2026 17:56:07 +0000
ROA not before: Mon 11 May 2026 17:51:07 +0000
ROA not after: Mon 10 May 2027 17:56:07 +0000
asID: 9677
IP address blocks: 103.117.132.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:0b:1a:a7:02:9a:35:4e:18:d2:d4:36:f5:92:f1:cb:76:a5:70:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21B62D60E1AB53803B229CCF83C179FD3FCFB5B3
Validity
Not Before: May 11 17:51:07 2026 GMT
Not After : May 10 17:56:07 2027 GMT
Subject: CN=7D2E70B88708FA1E05EED467087AB225EB3D2A43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:2e:7c:4f:b5:01:03:23:e9:cc:58:58:31:bf:
3a:88:f2:c3:b1:5e:e1:e9:56:e2:db:0e:6d:20:3d:
6e:1d:80:b1:a2:4e:46:02:b3:f5:91:28:1a:61:40:
0c:3c:99:dc:3e:79:cf:b5:b9:50:d9:70:83:bb:44:
50:f9:37:ca:e8:49:90:37:f7:69:6d:8f:93:dd:dc:
e1:1d:9a:47:47:17:11:5a:1e:fc:fd:2c:47:8a:84:
55:05:e7:b6:0f:3c:9c:8a:05:ac:3f:7e:70:cb:1a:
ec:50:86:f4:f9:eb:bc:e3:1a:2b:33:6f:14:e2:53:
c5:a3:b7:ce:39:fe:e9:e2:7f:26:e1:d2:98:fc:2b:
23:0d:fa:08:82:8a:75:c1:a1:15:71:92:e2:b7:75:
a1:5a:30:6a:f4:0b:6d:6d:aa:eb:de:cb:56:db:82:
af:28:59:b5:30:7f:da:55:1c:c8:52:44:c0:12:f0:
5c:f4:fa:b1:b3:b1:6e:4e:5f:f5:fd:c2:7e:91:7b:
e6:a0:d2:8b:50:31:a6:dd:8b:31:5e:a5:d6:a9:09:
14:ed:44:30:3f:47:2f:0c:cc:63:be:da:d5:79:21:
68:84:fd:3a:37:02:ac:ac:1b:6a:16:1c:92:a4:cc:
bc:34:e4:64:ec:d0:36:1e:68:21:bf:ef:a0:33:aa:
af:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:2E:70:B8:87:08:FA:1E:05:EE:D4:67:08:7A:B2:25:EB:3D:2A:43
X509v3 Authority Key Identifier:
keyid:21:B6:2D:60:E1:AB:53:80:3B:22:9C:CF:83:C1:79:FD:3F:CF:B5:B3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/MFE/0/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21B62D60E1AB53803B229CCF83C179FD3FCFB5B3.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/MFE/0/3130332e3131372e3133322e302f32332d3234203d3e2039363737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.117.132.0/23
Signature Algorithm: sha256WithRSAEncryption
71:f4:38:de:79:88:f2:0c:68:8b:25:b3:0b:0c:b6:97:16:1d:
f9:8e:fe:2d:39:27:c6:6f:71:a9:b4:d7:66:fd:7f:7b:84:6c:
46:e6:ba:1a:ac:db:e2:bc:64:92:e0:7d:4e:6a:6e:37:d0:51:
35:73:38:88:ec:e8:bd:40:92:81:43:4f:13:4b:cb:de:b9:99:
1a:b8:cc:b5:dc:c1:1e:0b:dc:2b:32:96:2f:a1:f7:e8:a5:50:
b1:0b:39:b4:d1:36:00:ba:0b:9d:63:31:fa:83:5e:27:57:8f:
01:67:e3:24:55:af:82:b0:64:77:5d:d4:06:9b:f2:84:85:ba:
da:5e:03:7e:7f:7f:08:cc:8b:81:57:71:3d:cf:b9:ee:0d:45:
d5:ae:67:bd:43:26:70:2f:3b:7a:e5:3a:73:65:17:46:b7:0a:
d7:5f:8b:30:ef:23:f3:10:74:44:24:ee:cb:1e:83:34:cb:2b:
a2:cb:23:b4:e2:17:a6:03:47:1b:7d:e5:c5:61:2a:d7:50:52:
86:99:eb:fa:07:9d:95:e8:d7:c4:76:e1:a3:d9:4f:bc:7a:1a:
ea:93:f3:31:2d:b0:95:30:e4:5f:ab:23:0d:ab:3d:97:11:2b:
81:c4:48:2f:a4:5c:d1:cc:c8:77:b5:4e:b2:e6:52:c5:0f:56:
23:55:34:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:34:22 2026 by rpki-client