Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/NIMBUSCOM/0/3231312e37392e3130382e302f32332d3234203d3e203331393732.roa
File: 3231312e37392e3130382e302f32332d3234203d3e203331393732.roa (raw, json)
Hash identifier: XaWYO4EF8GCnSH9lm/3LpGTaiFlYA9VmdfI3S945iIY=
Subject key identifier: 67:1E:5E:38:17:C9:76:90:FE:E7:B7:E5:FF:EC:68:AE:20:51:63:2B
Certificate issuer: /CN=31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68
Certificate serial: 54F502D5B8643ADADA25D476DCB08CD266366316
Authority key identifier: 31:88:7F:0E:8D:17:EE:B4:DF:C7:34:4C:E4:88:5F:6B:DA:5A:EB:68
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/NIMBUSCOM/0/3231312e37392e3130382e302f32332d3234203d3e203331393732.roa
Signing time: Mon 11 May 2026 17:57:49 +0000
ROA not before: Mon 11 May 2026 17:52:49 +0000
ROA not after: Mon 10 May 2027 17:57:49 +0000
asID: 31972
IP address blocks: 211.79.108.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:f5:02:d5:b8:64:3a:da:da:25:d4:76:dc:b0:8c:d2:66:36:63:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68
Validity
Not Before: May 11 17:52:49 2026 GMT
Not After : May 10 17:57:49 2027 GMT
Subject: CN=671E5E3817C97690FEE7B7E5FFEC68AE2051632B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:ce:be:00:5f:1e:31:c2:79:6a:2d:99:73:5b:
12:83:95:3f:b9:25:09:fb:ab:e6:22:77:a5:29:5f:
bf:b3:17:00:55:01:e9:d5:e5:27:fd:65:46:73:2c:
af:9a:02:a8:30:08:34:0e:73:1b:a2:9b:c7:03:85:
07:53:ba:2c:62:47:b8:56:8b:3a:90:f6:9e:cb:dc:
7b:e9:2a:6b:d5:4b:dd:52:18:e6:2f:ba:d7:57:b5:
23:ac:1a:af:43:fe:58:8b:f7:7c:4b:57:f4:54:18:
9b:55:79:92:17:a9:51:40:3e:ff:f2:01:39:38:97:
6f:a8:7d:ed:eb:e5:ac:09:ff:14:98:0f:b7:ed:81:
b7:1b:3e:2a:57:88:00:bc:f6:1b:60:08:78:fc:e7:
cc:4f:f7:94:79:1a:f8:aa:75:46:c0:be:0a:3c:45:
4b:88:20:fc:5b:3c:9b:32:c7:cf:98:04:4a:08:5a:
df:6d:5b:d5:78:6e:87:3b:8d:c2:d4:ae:eb:12:30:
8b:cf:3f:aa:82:c6:c9:dd:17:30:0c:71:11:94:14:
2b:38:99:e8:5c:86:b7:90:40:4d:ef:9a:07:3b:84:
28:40:4d:ab:66:ed:ca:e9:c4:27:76:ae:9e:42:08:
52:0a:01:1c:f4:fd:00:da:90:ac:83:d8:96:5a:63:
4a:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:1E:5E:38:17:C9:76:90:FE:E7:B7:E5:FF:EC:68:AE:20:51:63:2B
X509v3 Authority Key Identifier:
keyid:31:88:7F:0E:8D:17:EE:B4:DF:C7:34:4C:E4:88:5F:6B:DA:5A:EB:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/NIMBUSCOM/0/31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NIMBUSCOM/0/3231312e37392e3130382e302f32332d3234203d3e203331393732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
211.79.108.0/23
Signature Algorithm: sha256WithRSAEncryption
34:40:7d:78:75:53:2d:a8:3a:d4:36:55:c4:6b:cf:6c:76:e6:
0e:c3:fc:09:46:cf:74:46:69:02:06:4c:c1:bb:16:6e:d6:e2:
b0:36:e4:7e:27:22:48:b3:e9:c7:17:d0:0e:18:ce:99:8c:8a:
a0:9d:99:f5:a7:f6:33:96:7e:ba:60:bb:9e:1f:34:18:89:a0:
80:76:1e:6e:f9:f8:40:a2:52:86:9e:ab:1c:89:75:76:91:3f:
cf:50:0b:c5:32:81:f7:d5:7e:b0:10:a5:43:c1:66:05:7e:2a:
f2:3c:e4:80:6a:f4:99:54:4f:23:34:9b:16:41:80:90:08:17:
1a:27:a4:f8:69:b6:bb:7f:4a:17:26:16:8b:d7:08:9f:68:1a:
52:16:ba:8d:fa:a6:7f:9a:b8:f6:39:c5:34:ce:46:a1:95:cd:
ec:04:29:48:45:35:94:4e:63:65:25:73:3c:32:44:86:49:c7:
20:d6:1c:76:be:ae:6b:a3:a8:9e:6c:72:e9:26:9c:2a:94:a4:
65:be:4f:fc:45:6d:4e:53:29:6d:37:4e:85:a4:08:b6:61:54:
76:7e:cd:bd:1d:db:4f:18:48:8a:44:06:67:17:eb:3e:7e:26:
1a:6e:80:ad:ec:ee:3c:b5:c7:b2:79:00:4b:d5:89:cd:54:15:
a0:93:86:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:33:11 2026 by rpki-client