Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/NORDATW/0/3231312e37392e39382e302f32332d3234203d3e2037343833.roa
File: 3231312e37392e39382e302f32332d3234203d3e2037343833.roa (raw, json)
Hash identifier: CV931fhtw0I4Ug+ZdjJ2kNYqIh93pZBX4rG+jxT2d9s=
Subject key identifier: B6:3A:CE:D6:6E:40:55:E0:49:6B:61:F7:0E:60:49:32:28:32:2D:22
Certificate issuer: /CN=432716EE054CEBDC62FC02DDE8C62AFC5333A2A8
Certificate serial: 33060D3661A52CC7F4FCC13EF84FB3B492C2E798
Authority key identifier: 43:27:16:EE:05:4C:EB:DC:62:FC:02:DD:E8:C6:2A:FC:53:33:A2:A8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/NORDATW/0/3231312e37392e39382e302f32332d3234203d3e2037343833.roa
Signing time: Mon 11 May 2026 17:57:04 +0000
ROA not before: Mon 11 May 2026 17:52:04 +0000
ROA not after: Mon 10 May 2027 17:57:04 +0000
asID: 7483
IP address blocks: 211.79.98.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:06:0d:36:61:a5:2c:c7:f4:fc:c1:3e:f8:4f:b3:b4:92:c2:e7:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=432716EE054CEBDC62FC02DDE8C62AFC5333A2A8
Validity
Not Before: May 11 17:52:04 2026 GMT
Not After : May 10 17:57:04 2027 GMT
Subject: CN=B63ACED66E4055E0496B61F70E60493228322D22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:d9:10:47:83:bd:20:30:b9:b3:de:a3:fb:42:
df:d6:7a:68:d2:40:77:be:91:51:36:b9:c9:cf:75:
ce:c6:83:1b:c8:bd:87:9d:c1:91:5a:52:3a:49:38:
f6:72:02:e9:12:0d:87:78:2f:05:08:88:f9:90:d5:
ab:af:9e:bd:51:82:d0:92:2c:c7:ea:bd:c7:b9:3b:
c6:16:c0:cf:89:68:0d:89:c8:94:12:75:6a:8f:a2:
05:87:89:64:f0:47:9c:a5:b2:29:91:5b:20:98:4c:
f5:90:c3:e1:48:ab:38:04:42:50:65:5a:3e:c9:06:
1d:96:e5:e2:43:8d:ff:d3:ea:dc:7a:32:40:98:2e:
1c:a3:65:5e:ed:a5:f5:8d:05:07:c8:c9:b0:d7:d3:
34:20:be:1e:24:fa:ad:4b:12:54:5e:28:47:93:90:
3c:2a:4d:21:bf:42:0e:43:a8:1f:5c:01:a8:18:84:
99:97:5e:57:c9:c7:17:c8:fe:ea:11:b1:ec:c8:9b:
a7:08:08:b8:c4:97:40:4c:4e:8f:4d:cc:db:83:a9:
7f:9d:32:e7:16:cf:e0:31:80:94:04:51:96:b3:91:
c6:ae:37:c6:ab:80:07:5a:ef:c7:b0:24:14:ec:4c:
89:30:09:d3:17:22:2e:31:2f:6c:c6:a0:11:6b:f9:
57:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:3A:CE:D6:6E:40:55:E0:49:6B:61:F7:0E:60:49:32:28:32:2D:22
X509v3 Authority Key Identifier:
keyid:43:27:16:EE:05:4C:EB:DC:62:FC:02:DD:E8:C6:2A:FC:53:33:A2:A8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NORDATW/0/3231312e37392e39382e302f32332d3234203d3e2037343833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
211.79.98.0/23
Signature Algorithm: sha256WithRSAEncryption
68:45:04:af:ba:96:d1:af:21:cc:87:a0:93:fd:e7:f6:0d:bc:
18:10:f4:8c:78:2b:79:26:ff:75:52:15:c5:da:e9:96:e2:f8:
e1:7c:d3:cc:4b:d8:32:69:b8:62:cb:37:82:0e:15:50:7c:1f:
f7:1d:78:8f:df:16:db:40:85:48:64:5d:87:10:c0:dd:90:b6:
74:e6:ba:99:4f:9d:9b:42:2d:ff:b9:22:5a:26:48:6d:0b:13:
37:a8:76:7b:a5:a7:14:f4:e5:bd:09:ba:0c:28:bc:c6:e6:70:
4d:41:a8:d2:56:e4:e9:f4:61:81:e5:00:95:dd:49:b5:39:24:
6e:9c:9d:77:ba:7e:75:5a:21:5e:82:d6:aa:eb:bf:07:b3:cc:
7d:35:12:c8:87:41:89:73:a0:72:5a:78:f5:d8:56:cd:a7:6f:
f2:ad:74:65:37:a5:ad:46:1d:5e:85:8e:bc:d8:9d:69:61:35:
0f:88:fe:10:f2:db:03:ab:83:0a:d0:2d:c7:c5:fe:3a:f2:44:
d3:f5:fe:c1:56:4f:58:d3:bd:6f:1f:1e:b4:c4:73:55:78:1d:
3f:13:30:13:4d:4e:ec:16:75:7c:25:f1:71:0f:8e:e4:1f:18:
be:58:ff:cf:4d:43:12:88:5f:e5:87:ab:78:a8:17:99:fe:9a:
08:dc:b8:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:15:47 2026 by rpki-client