Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/OPENRICH/0/323430353a623863303a3a2f33322d3634203d3e20313331363734.roa
File: 323430353a623863303a3a2f33322d3634203d3e20313331363734.roa (raw, json)
Hash identifier: zPchVf+BzdWdK6jtiyFuKEMvAaWvPZafeIufyi+NDAU=
Subject key identifier: B2:7A:00:38:5B:58:3A:F1:00:DA:84:3D:04:C1:BA:0D:53:DC:FC:FE
Certificate issuer: /CN=61F2C234A51074E0978404BDC79AA79130040B00
Certificate serial: 6B9BDC002FF46C0744EDEBC3CB562DA748B13245
Authority key identifier: 61:F2:C2:34:A5:10:74:E0:97:84:04:BD:C7:9A:A7:91:30:04:0B:00
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/OPENRICH/0/323430353a623863303a3a2f33322d3634203d3e20313331363734.roa
Signing time: Mon 11 May 2026 17:09:45 +0000
ROA not before: Mon 11 May 2026 17:04:45 +0000
ROA not after: Mon 10 May 2027 17:09:45 +0000
asID: 131674
IP address blocks: 2405:b8c0::/32 maxlen: 64
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6b:9b:dc:00:2f:f4:6c:07:44:ed:eb:c3:cb:56:2d:a7:48:b1:32:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61F2C234A51074E0978404BDC79AA79130040B00
Validity
Not Before: May 11 17:04:45 2026 GMT
Not After : May 10 17:09:45 2027 GMT
Subject: CN=B27A00385B583AF100DA843D04C1BA0D53DCFCFE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7f:24:4d:15:4d:7a:b9:43:f2:4f:df:cc:70:
d9:ed:45:98:b8:ec:ba:1e:5d:be:eb:30:5f:9e:9d:
e1:44:f1:43:fa:27:52:0e:ed:d1:db:53:14:e6:d9:
2f:6d:fe:b0:1c:66:81:bc:e7:cb:98:53:bd:80:72:
af:14:cb:f6:6a:a2:6c:40:eb:56:cd:05:31:e7:aa:
51:af:82:19:2e:34:0e:e9:19:7c:d2:5e:dc:18:c0:
2a:6f:04:f5:f8:d3:c4:78:da:0a:c3:d1:27:a6:07:
d5:8c:02:87:99:3b:cd:59:55:2b:b0:24:79:32:20:
26:e0:a0:97:56:b9:8f:cb:03:3d:78:eb:94:7b:d5:
f4:d6:7b:d9:55:a5:51:67:b8:fe:ba:50:da:b5:32:
3a:22:36:f5:d0:5d:94:8a:a8:53:06:08:60:2f:4d:
5b:39:a4:c7:f3:65:7d:a4:d4:91:b4:79:25:a5:b2:
e2:62:60:e4:66:79:15:c8:c5:84:ca:9a:c7:2e:4e:
35:40:32:e9:45:d6:ad:e6:b4:ce:ee:10:d4:b1:9b:
8c:cb:1e:fd:fb:8b:18:fd:4f:d5:10:ec:4d:4c:49:
06:12:a8:34:dd:e8:31:d5:fc:4e:b8:fb:9c:b1:65:
c8:11:2d:31:59:01:ef:a5:da:96:47:bf:4b:38:33:
31:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:7A:00:38:5B:58:3A:F1:00:DA:84:3D:04:C1:BA:0D:53:DC:FC:FE
X509v3 Authority Key Identifier:
keyid:61:F2:C2:34:A5:10:74:E0:97:84:04:BD:C7:9A:A7:91:30:04:0B:00
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/OPENRICH/0/323430353a623863303a3a2f33322d3634203d3e20313331363734.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2405:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
88:05:d3:36:d1:7a:3d:67:0a:4f:fe:27:a7:c4:b2:72:9f:23:
57:5a:b8:e0:92:ee:1d:49:ad:e2:93:88:83:e4:46:17:6f:ba:
ed:07:41:e1:ac:5a:ff:6c:bb:98:81:57:fb:df:7d:1f:87:e1:
6a:cf:45:c9:c5:88:62:df:91:8b:0b:b1:29:e3:6f:26:e8:42:
2c:2f:6c:b9:c7:7a:97:87:6f:4c:66:e2:81:8a:ea:0a:cf:7f:
ff:54:60:70:ba:3f:d0:44:f6:51:50:0f:f4:08:5d:b9:70:29:
8a:06:79:8c:a0:f3:78:43:36:f1:72:11:8f:54:f9:7a:34:d7:
1b:1a:91:b4:3d:40:1e:34:90:34:b3:3d:c7:d9:99:c9:e0:bb:
66:1d:ad:b7:97:5e:a0:d4:08:1d:41:62:35:eb:77:32:39:45:
de:4d:35:46:0d:58:03:b3:da:20:b5:9f:51:4c:4b:cf:61:03:
0b:93:f0:c4:62:33:76:89:54:15:64:7c:55:42:cc:53:0d:3e:
fb:f2:1a:95:c7:90:c8:5f:35:78:be:7c:5e:59:46:26:21:15:
3f:76:a7:8a:9d:87:e4:cd:d6:ca:39:61:78:8b:bc:c9:ce:6c:
a5:a5:b2:01:ab:fe:fc:d4:16:e8:60:a7:ac:a9:d9:aa:50:75:
e5:5c:5e:74
-----BEGIN CERTIFICATE-----
MIIE3jCCA8agAwIBAgIUa5vcAC/0bAdE7evDy1Ytp0ixMkUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFGMkMyMzRBNTEwNzRFMDk3ODQwNEJEQzc5QUE3OTEz
MDA0MEIwMDAeFw0yNjA1MTExNzA0NDVaFw0yNzA1MTAxNzA5NDVaMDMxMTAvBgNV
BAMTKEIyN0EwMDM4NUI1ODNBRjEwMERBODQzRDA0QzFCQTBENTNEQ0ZDRkUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtfyRNFU16uUPyT9/McNntRZi4
7LoeXb7rMF+eneFE8UP6J1IO7dHbUxTm2S9t/rAcZoG858uYU72Acq8Uy/ZqomxA
61bNBTHnqlGvghkuNA7pGXzSXtwYwCpvBPX408R42grD0SemB9WMAoeZO81ZVSuw
JHkyICbgoJdWuY/LAz1465R71fTWe9lVpVFnuP66UNq1MjoiNvXQXZSKqFMGCGAv
TVs5pMfzZX2k1JG0eSWlsuJiYORmeRXIxYTKmscuTjVAMulF1q3mtM7uENSxm4zL
Hv37ixj9T9UQ7E1MSQYSqDTd6DHV/E64+5yxZcgRLTFZAe+l2pZHv0s4MzGhAgMB
AAGjggHoMIIB5DAdBgNVHQ4EFgQUsnoAOFtYOvEA2oQ9BMG6DVPc/P4wHwYDVR0j
BBgwFoAUYfLCNKUQdOCXhAS9x5qnkTAECwAwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud
HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT1BFTlJJ
Q0gvMC82MUYyQzIzNEE1MTA3NEUwOTc4NDA0QkRDNzlBQTc5MTMwMDQwQjAwLmNy
bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3
bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzYxRjJDMjM0QTUxMDc0RTA5Nzg0MDRCREM3
OUFBNzkxMzAwNDBCMDAuY2VyMH4GCCsGAQUFBwELBHIwcDBuBggrBgEFBQcwC4Zi
cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9PUEVOUklDSC8wLzMyMzQzMDM1
M2E2MjM4NjMzMDNhM2EyZjMzMzIyZDM2MzQyMDNkM2UyMDMxMzMzMTM2MzczNC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAgBggrBgEFBQcBBwEB/wQRMA8w
DQQCAAIwBwMFACQFuMAwDQYJKoZIhvcNAQELBQADggEBAIgF0zbRej1nCk/+J6fE
snKfI1dauOCS7h1JreKTiIPkRhdvuu0HQeGsWv9su5iBV/vffR+H4WrPRcnFiGLf
kYsLsSnjbyboQiwvbLnHepeHb0xm4oGK6grPf/9UYHC6P9BE9lFQD/QIXblwKYoG
eYyg83hDNvFyEY9U+Xo01xsakbQ9QB40kDSzPcfZmcngu2YdrbeXXqDUCB1BYjXr
dzI5Rd5NNUYNWAOz2iC1n1FMS89hAwuT8MRiM3aJVBVkfFVCzFMNPvvyGpXHkMhf
NXi+fF5ZRiYhFT92p4qdh+TN1so5YXiLvMnObKWlsgGr/vzUFuhgp6yp2apQdeVc
XnQ=
-----END CERTIFICATE-----
Generated at Wed May 13 02:26:42 2026 by rpki-client