Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/NIMBUSCOM/0/323430363a636534303a3a2f33322d3634203d3e203331393732.roa
File: 323430363a636534303a3a2f33322d3634203d3e203331393732.roa (raw, json)
Hash identifier: BKJtx+GIQaqxKG+F8DcrnUzVLRxDmkAefIfDjo2DHGY=
Subject key identifier: 31:CF:83:96:D6:FD:11:9B:57:C8:81:DA:3E:F2:4B:D8:A7:0F:C8:1E
Certificate issuer: /CN=31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68
Certificate serial: 2223A6B24F79E3F962D51A5A5F261C2E69318C08
Authority key identifier: 31:88:7F:0E:8D:17:EE:B4:DF:C7:34:4C:E4:88:5F:6B:DA:5A:EB:68
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/NIMBUSCOM/0/323430363a636534303a3a2f33322d3634203d3e203331393732.roa
Signing time: Mon 11 May 2026 17:15:23 +0000
ROA not before: Mon 11 May 2026 17:10:23 +0000
ROA not after: Mon 10 May 2027 17:15:23 +0000
asID: 31972
IP address blocks: 2406:ce40::/32 maxlen: 64
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:23:a6:b2:4f:79:e3:f9:62:d5:1a:5a:5f:26:1c:2e:69:31:8c:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68
Validity
Not Before: May 11 17:10:23 2026 GMT
Not After : May 10 17:15:23 2027 GMT
Subject: CN=31CF8396D6FD119B57C881DA3EF24BD8A70FC81E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:0c:61:dd:de:df:61:d2:09:cc:7f:2e:d5:55:
ba:b7:df:7d:88:3a:f2:52:f8:d2:82:cf:09:04:49:
dc:b0:c6:8f:70:b4:b1:41:90:ec:79:a0:9d:c8:73:
a8:50:cd:a9:74:f0:11:25:2a:fc:2b:33:76:d1:33:
fe:66:86:72:43:54:6d:c0:3e:3c:76:35:c9:db:e8:
c8:f6:1b:eb:02:66:a6:3a:3f:28:6f:ac:79:ad:16:
50:37:4a:b2:25:40:f8:d5:ba:57:21:39:3a:dd:84:
43:2a:4f:90:f6:cf:1e:fa:d1:9a:ce:2b:7e:5e:14:
b7:7f:8d:fb:42:50:28:da:77:f4:c2:42:86:5f:11:
54:4b:94:f2:33:bc:fc:2d:5b:ab:77:07:65:44:9f:
19:00:5f:1d:28:a3:45:8d:a7:b8:1f:9b:8b:1b:26:
bc:e0:2b:3a:4c:e3:c5:30:64:31:fb:fa:5a:71:94:
cd:bf:23:1d:c2:71:90:ce:47:c7:63:5c:63:57:99:
b6:61:39:42:26:eb:42:6a:ec:9e:b3:cd:9c:50:c0:
90:96:de:e6:11:42:ca:33:de:6b:5f:01:d8:c2:41:
d0:81:dc:b5:30:34:df:a3:cd:6c:37:71:a3:b9:b5:
62:48:bf:ef:eb:e2:63:3d:c0:ed:c1:7f:2a:30:25:
33:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:CF:83:96:D6:FD:11:9B:57:C8:81:DA:3E:F2:4B:D8:A7:0F:C8:1E
X509v3 Authority Key Identifier:
keyid:31:88:7F:0E:8D:17:EE:B4:DF:C7:34:4C:E4:88:5F:6B:DA:5A:EB:68
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/NIMBUSCOM/0/31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/31887F0E8D17EEB4DFC7344CE4885F6BDA5AEB68.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NIMBUSCOM/0/323430363a636534303a3a2f33322d3634203d3e203331393732.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:ce40::/32
Signature Algorithm: sha256WithRSAEncryption
30:bd:48:41:78:63:f9:fd:ae:a3:95:02:e6:00:e9:10:85:93:
11:7b:fd:6f:e5:76:e7:fc:c4:27:0e:de:4e:60:82:de:5b:5e:
38:1e:35:0c:a1:49:50:15:f5:a2:59:bc:c4:ef:08:31:64:4f:
8b:b2:56:8f:30:46:16:ae:d3:0c:b2:9c:51:4b:58:86:5b:64:
d7:8c:c0:b1:da:42:7b:ca:b7:76:00:0e:25:26:c7:91:75:bf:
b4:11:13:bf:83:b4:67:7c:0d:01:19:37:28:ab:85:06:5d:1f:
50:ed:83:88:96:a1:84:f9:b5:2e:0d:01:28:f3:26:e6:96:af:
5f:5b:95:af:46:68:90:2d:56:62:f9:a0:57:13:4a:8f:8d:e5:
66:fb:0d:d3:8d:08:e9:f7:96:f3:6a:3c:2c:1f:0f:09:73:61:
5c:54:a4:f0:1b:79:80:81:fd:e4:71:60:3d:ab:23:dc:10:c4:
e4:70:77:df:7a:e4:2e:d3:ff:e9:98:19:07:7a:48:da:8d:57:
4d:b9:02:a4:40:ae:3a:67:a9:92:b8:06:ee:d7:90:be:9b:b9:
ad:87:08:bb:2d:70:a2:8c:1a:4b:b9:8c:5c:84:1f:65:35:88:
c9:d3:f9:e4:b4:c8:72:56:f9:56:5b:e7:0e:f2:15:12:b0:39:
ac:1e:c8:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:13:05 2026 by rpki-client