Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PAGIC/0/3231302e36332e39362e302f32342d3234203d3e2034373831.roa
File: 3231302e36332e39362e302f32342d3234203d3e2034373831.roa (raw, json)
Hash identifier: r+gVK2VfItvXfc9D/hoEHWAKfJ3x7gerduTgXg2N2hk=
Subject key identifier: DC:BD:5A:0E:CA:51:8D:B7:B9:6E:F1:00:9C:B8:38:E0:4C:4B:33:98
Certificate issuer: /CN=130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D
Certificate serial: 4418B75D90F29476A01D23B634F4C5B445F0594F
Authority key identifier: 13:0A:AF:47:5B:CC:02:CD:BB:DB:4C:97:44:EB:E3:1C:EE:EE:30:6D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PAGIC/0/3231302e36332e39362e302f32342d3234203d3e2034373831.roa
Signing time: Mon 11 May 2026 17:06:35 +0000
ROA not before: Mon 11 May 2026 17:01:35 +0000
ROA not after: Mon 10 May 2027 17:06:35 +0000
asID: 4781
IP address blocks: 210.63.96.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
44:18:b7:5d:90:f2:94:76:a0:1d:23:b6:34:f4:c5:b4:45:f0:59:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D
Validity
Not Before: May 11 17:01:35 2026 GMT
Not After : May 10 17:06:35 2027 GMT
Subject: CN=DCBD5A0ECA518DB7B96EF1009CB838E04C4B3398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:13:27:7f:8e:14:00:ce:7d:db:b9:cf:af:3d:
d3:ee:e0:fd:92:02:7e:54:92:df:e5:23:cb:5a:88:
58:75:b0:e4:fb:6d:d6:c0:00:b5:f6:de:54:38:5c:
5f:33:29:ca:68:b0:6c:fe:a0:04:2f:63:4a:77:f9:
ca:3b:01:54:a1:4e:9c:ec:59:de:ad:26:3d:37:f1:
bc:ab:ad:92:6d:c9:f4:3e:6a:a3:ff:f3:d6:77:e3:
23:1f:7a:e4:30:a8:95:14:bc:27:01:89:ed:c6:ef:
48:86:a1:c2:19:c2:9f:f4:af:39:ae:a3:eb:88:16:
9f:1b:c6:9f:f7:18:59:be:d0:96:56:4f:1d:05:f0:
ee:65:cf:d7:d5:72:5d:5d:68:ab:12:c4:39:b6:8a:
5e:cd:ac:49:4c:74:2c:fd:43:7f:b1:98:4f:49:25:
06:f0:93:4d:b6:a1:fa:3d:8e:90:da:a2:83:ed:aa:
2f:01:f2:36:0a:35:c9:5a:46:85:65:45:61:c6:3a:
7a:9c:ae:cc:3c:66:de:cf:0f:72:06:54:95:17:b7:
14:48:85:9c:d6:c9:78:87:d9:48:ff:3f:e1:62:be:
e1:4f:67:c0:62:51:1b:b1:0d:cb:5e:3f:12:8a:95:
3f:1f:c2:31:54:b0:dd:eb:ef:b4:3f:06:fb:2c:0f:
97:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:BD:5A:0E:CA:51:8D:B7:B9:6E:F1:00:9C:B8:38:E0:4C:4B:33:98
X509v3 Authority Key Identifier:
keyid:13:0A:AF:47:5B:CC:02:CD:BB:DB:4C:97:44:EB:E3:1C:EE:EE:30:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PAGIC/0/130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PAGIC/0/3231302e36332e39362e302f32342d3234203d3e2034373831.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.63.96.0/24
Signature Algorithm: sha256WithRSAEncryption
45:63:26:66:b2:2c:88:19:a0:1c:8b:77:dc:d2:e0:22:95:55:
93:b0:26:9a:35:91:a3:de:65:48:be:f0:6f:02:2f:09:74:9b:
ba:8b:0e:9e:21:4b:d6:72:52:68:26:06:70:6c:18:66:87:dc:
2e:ca:e4:57:bb:97:0a:46:67:51:80:aa:32:af:d6:c3:6e:e9:
d1:1f:7d:97:4f:8f:2d:85:d1:4c:61:80:f7:2d:a6:de:51:09:
e1:df:fc:09:b7:8f:8d:54:9e:69:2b:95:67:22:8c:ab:fd:c5:
7b:56:02:6f:34:a1:d6:00:3d:a5:34:a8:d2:39:67:09:30:ba:
ba:72:f8:7c:db:f1:be:34:60:fa:f7:e1:bc:e4:13:23:10:a7:
7d:c8:f5:6c:11:9d:ee:33:66:dc:00:6b:6f:f1:13:2a:41:ba:
22:e4:69:eb:7e:93:92:fa:b3:ad:ee:58:55:eb:48:1b:c1:0e:
a1:de:e1:52:a0:2c:3a:4c:91:63:6d:09:6b:8f:ac:d1:c2:48:
f4:b1:ba:a0:82:b2:2e:7c:dc:6a:e8:1c:85:7a:fd:f7:e6:02:
f1:ff:b0:5f:4f:59:d0:74:bb:cd:16:c9:20:a7:48:f2:cd:e4:
e2:a9:cb:1a:b5:a8:f8:14:dd:78:f9:23:72:39:4e:18:6d:6e:
d3:8a:72:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:35:41 2026 by rpki-client