Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PAGIC/0/3231312e37332e3232342e302f31392d3234203d3e203137343230.roa
File: 3231312e37332e3232342e302f31392d3234203d3e203137343230.roa (raw, json)
Hash identifier: Mz9dS+q6MYbQtEVWX6Nls31KboSIBf4MyRv3x177YkY=
Subject key identifier: 03:72:12:C5:B6:F3:32:2A:12:EA:67:3B:EB:1C:09:0F:65:CF:FB:A3
Certificate issuer: /CN=130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D
Certificate serial: 3F16D656006792EC924503D1A66E11841277367D
Authority key identifier: 13:0A:AF:47:5B:CC:02:CD:BB:DB:4C:97:44:EB:E3:1C:EE:EE:30:6D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PAGIC/0/3231312e37332e3232342e302f31392d3234203d3e203137343230.roa
Signing time: Mon 11 May 2026 17:31:58 +0000
ROA not before: Mon 11 May 2026 17:26:58 +0000
ROA not after: Mon 10 May 2027 17:31:58 +0000
asID: 17420
IP address blocks: 211.73.224.0/19 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3f:16:d6:56:00:67:92:ec:92:45:03:d1:a6:6e:11:84:12:77:36:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D
Validity
Not Before: May 11 17:26:58 2026 GMT
Not After : May 10 17:31:58 2027 GMT
Subject: CN=037212C5B6F3322A12EA673BEB1C090F65CFFBA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:43:ca:6a:de:ad:b2:8a:d5:de:0d:d8:82:37:
ab:12:9e:9e:09:f3:75:e5:6d:cb:26:01:f1:e6:17:
d2:d8:34:53:b4:a9:49:72:09:ae:fe:a5:69:b9:5a:
cf:29:17:91:de:36:d0:63:79:b9:5d:39:0f:d1:87:
d8:e0:ad:68:ef:74:63:4b:7b:95:96:54:da:c4:2c:
68:95:ea:54:bc:78:cf:95:ad:b5:07:a0:13:87:f8:
f9:bb:ea:47:d1:9d:3b:82:06:94:b7:b0:96:e1:ef:
a5:d9:8f:34:12:64:d5:60:56:43:19:c9:f1:95:9a:
8d:5a:03:17:9f:0b:ea:1e:52:1f:d8:f5:01:6b:bb:
ae:13:52:10:1e:b8:97:45:d9:ae:5c:eb:f7:a4:f1:
6b:9f:03:36:81:64:ad:75:34:f6:a7:b3:a0:f4:16:
ad:4d:8f:c4:35:06:e3:ba:52:f0:94:2d:62:f0:a6:
db:8a:c0:8c:bd:75:aa:e6:97:ad:a1:65:d2:c2:71:
bc:61:ee:27:cf:b9:5f:a2:d5:7b:a7:8e:31:0d:c4:
f6:3f:de:34:63:f0:ed:28:49:e4:84:b5:28:5a:2d:
36:71:97:b0:e4:a7:d0:e3:1a:ca:87:46:04:ed:c8:
22:15:c3:69:4c:c9:f8:24:73:3f:0c:df:14:55:27:
a9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:72:12:C5:B6:F3:32:2A:12:EA:67:3B:EB:1C:09:0F:65:CF:FB:A3
X509v3 Authority Key Identifier:
keyid:13:0A:AF:47:5B:CC:02:CD:BB:DB:4C:97:44:EB:E3:1C:EE:EE:30:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PAGIC/0/130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PAGIC/0/3231312e37332e3232342e302f31392d3234203d3e203137343230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
211.73.224.0/19
Signature Algorithm: sha256WithRSAEncryption
7f:0e:82:ce:88:d4:b6:fe:f1:2f:fe:fb:49:b4:b5:2b:d9:fd:
05:4d:04:40:41:5c:ec:08:32:dc:7d:ad:fb:fc:f5:02:f8:25:
17:a8:1c:46:3c:e1:17:4a:e4:ac:ce:eb:78:16:18:84:23:86:
ea:a6:5d:bf:75:28:81:ad:fc:3b:14:f2:ce:65:67:f0:8a:d7:
32:66:71:9b:03:79:b6:03:ab:05:ba:99:77:49:40:1a:fb:92:
40:04:30:51:3f:e8:dd:11:b7:1d:f6:df:4b:61:24:c1:02:43:
7c:09:fc:ba:b8:20:11:35:13:a3:25:5b:9d:10:34:ea:29:41:
c4:3b:a0:cd:29:e8:da:06:39:e0:0b:82:93:ef:89:b1:98:7a:
d9:a3:05:29:f5:fb:f0:9b:5f:65:46:21:e8:48:9c:34:5e:55:
25:d3:ee:a5:a4:11:82:bf:fd:91:d2:3b:6d:46:66:01:be:98:
02:51:b5:aa:16:3f:f4:5d:3c:59:32:07:ba:a1:e0:27:6a:4d:
94:f4:9d:30:77:bd:e8:e4:f3:04:3b:00:cc:1c:83:d5:22:ef:
8e:06:e0:26:95:1d:a3:f8:60:aa:aa:76:db:49:d2:86:f3:ea:
5d:14:7f:9b:15:fe:56:77:02:98:01:07:d7:d2:ce:fa:41:0b:
66:5b:74:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:13:55 2026 by rpki-client