Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/MITACMDC/0/3130332e32302e3137362e302f32322d3232203d3e203138313739.roa
File: 3130332e32302e3137362e302f32322d3232203d3e203138313739.roa (raw, json)
Hash identifier: PNKjey9tKMdDR4FRuzXEfmnFsMhGJbtdw6pFSO4K0J8=
Subject key identifier: 6B:86:50:0A:38:4B:67:61:38:9D:4F:E3:13:C2:C6:3B:F0:52:D8:91
Certificate issuer: /CN=F1CEAE4AE13A71AF6A0709A4C300ADA4623A2CAA
Certificate serial: 4E021502DFA589439676B35FC7BF46727B4C7CFC
Authority key identifier: F1:CE:AE:4A:E1:3A:71:AF:6A:07:09:A4:C3:00:AD:A4:62:3A:2C:AA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F1CEAE4AE13A71AF6A0709A4C300ADA4623A2CAA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/MITACMDC/0/3130332e32302e3137362e302f32322d3232203d3e203138313739.roa
Signing time: Mon 11 May 2026 17:03:56 +0000
ROA not before: Mon 11 May 2026 16:58:56 +0000
ROA not after: Mon 10 May 2027 17:03:56 +0000
asID: 18179
IP address blocks: 103.20.176.0/22 maxlen: 22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:02:15:02:df:a5:89:43:96:76:b3:5f:c7:bf:46:72:7b:4c:7c:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F1CEAE4AE13A71AF6A0709A4C300ADA4623A2CAA
Validity
Not Before: May 11 16:58:56 2026 GMT
Not After : May 10 17:03:56 2027 GMT
Subject: CN=6B86500A384B6761389D4FE313C2C63BF052D891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c3:bd:fc:71:f5:60:85:5b:0b:90:0a:26:86:
e2:23:fd:62:2e:d2:35:bd:53:7e:81:9b:86:71:3a:
60:c0:53:7b:48:44:22:a9:3a:6c:92:79:1f:33:92:
f5:2a:85:6b:47:70:02:62:c8:98:81:c7:e6:db:7c:
84:33:ab:ea:50:3c:c6:17:23:cd:ab:fb:3f:ba:7f:
e4:37:03:7d:cf:a0:2c:b3:34:46:08:7a:f3:de:82:
9e:0f:f1:8d:a3:3c:81:23:48:42:90:e6:53:72:68:
59:11:39:6e:39:fe:4e:5c:c3:b3:d3:d9:c3:10:1e:
76:d0:8c:9e:e0:b9:f1:7e:e0:44:7d:51:66:c0:9f:
cf:27:08:0d:09:f5:2b:8e:2c:57:6b:ef:ca:12:6d:
4e:d4:5b:a7:f2:cc:35:cf:75:7b:6d:75:a8:d4:0e:
69:ce:d8:19:b7:70:91:e2:b7:e6:f5:ba:8a:82:34:
ec:e8:eb:64:bf:a6:d7:ed:bc:9a:17:9a:a8:f4:6b:
3e:f7:e0:42:12:61:97:fa:30:60:20:36:f0:cf:5b:
c1:70:fc:0f:17:9b:b4:c8:38:56:ba:87:5e:28:8b:
6e:d7:57:e9:4c:89:78:fb:96:87:34:ce:b3:31:e4:
e6:c4:0a:b2:4a:a3:15:6a:8b:32:be:40:b6:1d:ba:
6d:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:86:50:0A:38:4B:67:61:38:9D:4F:E3:13:C2:C6:3B:F0:52:D8:91
X509v3 Authority Key Identifier:
keyid:F1:CE:AE:4A:E1:3A:71:AF:6A:07:09:A4:C3:00:AD:A4:62:3A:2C:AA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/MITACMDC/0/F1CEAE4AE13A71AF6A0709A4C300ADA4623A2CAA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F1CEAE4AE13A71AF6A0709A4C300ADA4623A2CAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/MITACMDC/0/3130332e32302e3137362e302f32322d3232203d3e203138313739.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.20.176.0/22
Signature Algorithm: sha256WithRSAEncryption
32:11:77:01:57:24:93:14:f0:f5:da:a2:cb:05:54:c8:74:81:
aa:71:c4:7c:87:81:9e:e2:51:e8:d2:d3:42:02:14:e3:7a:6f:
9d:84:ba:34:7d:99:b2:f5:ae:50:d2:0e:7a:7c:5b:9d:c9:ea:
c1:6c:85:c3:1a:8e:20:fa:0c:73:97:5c:2f:f6:01:76:3b:55:
64:6e:37:10:30:dc:c5:49:a3:a7:11:81:35:1f:14:04:84:da:
61:62:a6:54:12:4a:46:18:dc:f3:57:24:bf:59:f2:70:a3:a8:
88:b1:bb:1e:40:22:9c:be:f1:87:8c:34:d2:fd:ca:aa:e6:db:
06:3d:03:2b:d4:03:ad:66:1c:60:8b:d0:08:67:e6:64:3b:cb:
21:27:17:f3:38:c1:f8:ee:b7:b7:33:29:ce:d2:f2:93:47:9d:
62:32:03:f5:5c:a6:ba:cd:09:28:be:6c:02:81:73:59:65:8d:
46:db:c8:bb:50:9f:33:a7:00:6c:c7:dd:6d:8b:ef:20:c7:d9:
c4:e1:8f:2e:c0:aa:65:57:c8:ea:0b:02:ac:26:cb:5e:80:8d:
34:72:79:2d:14:bb:e1:7d:cf:d2:cc:4a:0a:84:b1:f2:a1:8b:
44:7f:94:6c:f7:0a:06:e4:a4:c6:c0:0a:75:41:4b:24:71:1e:
84:7b:90:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:13:57 2026 by rpki-client