Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/OPENFOR/0/323430353a653463303a3a2f33322d3634203d3e20313331363737.roa
File: 323430353a653463303a3a2f33322d3634203d3e20313331363737.roa (raw, json)
Hash identifier: 81X32lIDsqpLyEd5Xpy3ESJVHUbt39R1tegiSMqE1PY=
Subject key identifier: 4A:F6:D2:6D:C0:30:5A:E1:44:87:FB:18:50:7C:45:A5:AF:77:6D:6F
Certificate issuer: /CN=42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162
Certificate serial: 7C31DC6CC003725E164F53B79F24221B879EC7C7
Authority key identifier: 42:C7:F7:8E:9F:DA:00:B9:CA:3E:2D:1D:DF:5E:08:DE:A8:62:01:62
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/OPENFOR/0/323430353a653463303a3a2f33322d3634203d3e20313331363737.roa
Signing time: Mon 11 May 2026 17:07:00 +0000
ROA not before: Mon 11 May 2026 17:02:00 +0000
ROA not after: Mon 10 May 2027 17:07:00 +0000
asID: 131677
IP address blocks: 2405:e4c0::/32 maxlen: 64
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7c:31:dc:6c:c0:03:72:5e:16:4f:53:b7:9f:24:22:1b:87:9e:c7:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162
Validity
Not Before: May 11 17:02:00 2026 GMT
Not After : May 10 17:07:00 2027 GMT
Subject: CN=4AF6D26DC0305AE14487FB18507C45A5AF776D6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:34:f9:87:2c:73:7d:0b:6f:7e:f4:b9:ce:f0:
5a:16:af:8a:9a:e7:a2:d6:15:87:bc:cc:ea:4c:10:
f5:06:90:43:ae:f9:0e:f8:90:22:99:31:92:cf:ae:
22:b7:42:a7:31:37:33:ed:8b:83:04:c1:24:7f:b3:
30:63:10:8d:b7:f1:d8:4b:a2:ef:91:22:ee:fd:51:
06:53:54:01:f5:ca:90:33:7f:af:9f:64:dc:bc:e6:
4c:a2:4e:cd:4e:4d:a9:cd:60:5f:6f:f2:c5:8b:5a:
db:dc:9c:a1:d1:5f:9c:52:43:88:1a:85:48:53:50:
26:65:f8:67:ca:75:88:fa:c3:0a:41:39:90:4a:02:
9c:16:42:77:c4:73:24:b9:35:46:fa:f0:76:f4:17:
1d:ab:9d:7a:51:2d:5f:0e:4b:1a:07:35:a8:9f:f9:
a7:70:86:88:91:30:d5:49:45:b0:34:9d:cb:48:67:
cc:ed:79:b3:e0:9d:ac:20:aa:72:d5:c5:08:52:b3:
8d:b3:35:a0:c9:05:c4:74:ff:1a:08:21:13:ef:a3:
3f:b6:00:cb:a0:df:e2:b0:c2:0a:43:e5:09:d3:ae:
4b:01:28:7c:55:d4:27:fc:48:53:ee:51:7a:d5:29:
2a:cb:85:83:80:eb:2e:c3:52:4a:87:52:70:74:3b:
e8:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F6:D2:6D:C0:30:5A:E1:44:87:FB:18:50:7C:45:A5:AF:77:6D:6F
X509v3 Authority Key Identifier:
keyid:42:C7:F7:8E:9F:DA:00:B9:CA:3E:2D:1D:DF:5E:08:DE:A8:62:01:62
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/OPENFOR/0/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/42C7F78E9FDA00B9CA3E2D1DDF5E08DEA8620162.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/OPENFOR/0/323430353a653463303a3a2f33322d3634203d3e20313331363737.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:e4c0::/32
Signature Algorithm: sha256WithRSAEncryption
64:3c:19:44:94:9e:62:58:f7:24:2e:f6:a5:34:d9:06:60:72:
63:ad:a2:77:50:66:c3:28:21:f0:f0:af:b2:9f:93:0f:20:15:
c8:2d:a1:74:d1:dc:73:51:7e:fa:7b:62:3d:1c:21:58:9e:fb:
76:80:83:cd:5c:b0:e6:8e:4a:fa:b7:db:e9:97:b9:45:fb:d8:
be:59:4a:2b:bb:c9:41:04:7a:e2:3b:41:33:72:89:31:78:7a:
fd:f1:5c:13:4d:06:7d:2c:0f:69:a0:76:7e:44:28:fa:45:69:
e8:9b:df:7c:16:e4:fd:45:af:e5:3b:e9:af:54:a4:62:cc:11:
48:fe:57:bc:b2:13:8f:ab:6b:d7:d8:6e:44:c5:f3:96:95:af:
37:11:29:b4:40:86:88:75:2e:a7:6d:a6:e7:7f:67:43:e9:7c:
f5:57:68:95:5c:9e:22:28:ab:be:eb:e8:25:b1:2f:c8:40:83:
9b:02:74:6b:67:c0:cb:d4:88:a4:fc:bd:ec:91:b8:4e:d6:bb:
41:f6:3d:94:d8:2f:df:fa:74:8e:09:e4:ed:ef:c7:0e:c1:1b:
46:7e:41:09:1f:00:53:85:9e:1c:ae:18:ad:20:9d:0d:c9:1c:
c1:d2:f6:ba:cb:b6:84:25:00:14:0d:04:92:ec:9c:1f:46:1e:
97:27:2a:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:41:02 2026 by rpki-client