Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/NCCC/1/3135372e32302e3130362e302f32342d3234203d3e203139353531.roa
File: 3135372e32302e3130362e302f32342d3234203d3e203139353531.roa (raw, json)
Hash identifier: tj30Mw6SegUb4xqIoH5nsbPbEgFt7VbOqElQZObdRdk=
Subject key identifier: 1F:20:59:DC:39:0F:C8:78:11:02:0B:00:30:11:FA:98:AC:D3:F7:23
Certificate issuer: /CN=F4194E27E15A4F76E006403795143D4EFDCF022E
Certificate serial: 0A7BA19CE2A387309FE9B5082E52BE3005A78908
Authority key identifier: F4:19:4E:27:E1:5A:4F:76:E0:06:40:37:95:14:3D:4E:FD:CF:02:2E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/F4194E27E15A4F76E006403795143D4EFDCF022E.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/NCCC/1/3135372e32302e3130362e302f32342d3234203d3e203139353531.roa
Signing time: Mon 11 May 2026 17:36:27 +0000
ROA not before: Mon 11 May 2026 17:31:27 +0000
ROA not after: Mon 10 May 2027 17:36:27 +0000
asID: 19551
IP address blocks: 157.20.106.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0a:7b:a1:9c:e2:a3:87:30:9f:e9:b5:08:2e:52:be:30:05:a7:89:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F4194E27E15A4F76E006403795143D4EFDCF022E
Validity
Not Before: May 11 17:31:27 2026 GMT
Not After : May 10 17:36:27 2027 GMT
Subject: CN=1F2059DC390FC87811020B003011FA98ACD3F723
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:1f:a5:9c:8b:77:93:ec:2e:9c:be:b2:be:c2:
d1:0b:c3:0f:07:73:03:00:e2:20:15:a5:bb:52:c8:
3e:ae:08:94:fe:1f:e5:4a:92:2a:ee:44:07:cd:b9:
bf:61:11:88:23:1d:0e:45:04:d5:9f:eb:c6:b6:22:
af:f6:0b:9d:78:8d:88:93:ea:3c:e7:3b:95:51:13:
f9:98:60:13:4c:d5:ee:c4:28:c3:1c:49:26:e2:2a:
8d:16:ff:66:68:0c:41:d4:37:2a:14:f1:05:3c:02:
de:93:10:11:74:c1:7e:25:f5:21:66:0d:6d:84:48:
c5:55:8e:b7:5c:96:51:1a:26:a2:d8:b5:3c:4d:5b:
ef:9a:84:5b:1d:fc:b2:c6:ad:2a:2f:a5:bc:d9:b5:
33:d4:9b:30:13:83:cf:ea:91:71:62:01:07:39:fd:
92:29:6a:84:3e:1a:74:d7:c6:43:96:7a:fa:53:fa:
54:7a:87:46:d1:98:48:1d:fd:45:cb:b7:a8:e4:62:
99:36:c9:ef:be:98:31:c8:a2:35:ec:e3:05:52:9b:
6d:bd:14:85:6e:0d:83:2b:2c:67:92:31:3e:e5:0a:
1a:d0:d1:74:1e:6e:ad:24:85:5a:63:c0:93:db:01:
c9:69:19:d6:23:08:64:ac:50:fa:a6:73:c1:f4:99:
a1:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:20:59:DC:39:0F:C8:78:11:02:0B:00:30:11:FA:98:AC:D3:F7:23
X509v3 Authority Key Identifier:
keyid:F4:19:4E:27:E1:5A:4F:76:E0:06:40:37:95:14:3D:4E:FD:CF:02:2E
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/NCCC/1/F4194E27E15A4F76E006403795143D4EFDCF022E.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/F4194E27E15A4F76E006403795143D4EFDCF022E.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCCC/1/3135372e32302e3130362e302f32342d3234203d3e203139353531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.106.0/24
Signature Algorithm: sha256WithRSAEncryption
c1:9d:b7:68:9b:b7:63:e0:bc:56:32:9a:c0:b3:72:82:73:88:
6f:7b:a8:9f:13:89:32:92:cc:04:4c:d4:7b:c2:35:5e:d0:7a:
9c:28:7a:6f:09:23:80:c6:97:de:0b:7d:cd:c7:f6:8f:00:2c:
c2:69:2b:53:97:e0:35:ca:21:64:1c:41:fc:3f:29:ba:17:84:
a7:b2:71:d3:18:92:7b:4a:36:78:54:23:d7:7f:9c:b8:cb:66:
47:1e:71:6f:f5:78:1c:7e:98:37:7c:4a:0d:12:d5:b9:b4:82:
b4:b4:ad:7e:da:0c:07:7e:47:05:bf:84:b1:d0:69:30:c3:86:
93:cf:30:2a:de:a3:0c:79:54:fc:04:a4:37:e5:12:ce:b7:d6:
3d:db:e0:98:8c:97:aa:0c:c8:ba:85:aa:af:76:3a:d2:14:d0:
cf:eb:bf:36:a1:10:8e:43:76:c0:5d:8b:11:9a:ed:52:ad:dc:
2d:cd:e5:ab:76:81:e8:50:38:e6:31:5d:4f:59:76:c7:46:9d:
41:5f:42:96:c3:65:0c:4c:4d:96:02:a8:c8:d9:cf:75:24:07:
7f:e7:8c:a8:f2:1e:85:72:bd:ee:a4:af:d1:ed:63:15:ae:dd:
30:07:da:22:48:72:83:cd:51:39:ee:a4:3b:ae:c3:0b:52:ec:
3c:73:00:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:20:02 2026 by rpki-client