Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SIGMA/0/3130332e3233342e3230342e302f32322d3234203d3e2034373830.roa
File: 3130332e3233342e3230342e302f32322d3234203d3e2034373830.roa (raw, json)
Hash identifier: /PhuLY8p6Oua1l5KCqX4bFRZnrNWV8wcQU7vnFRJkIQ=
Subject key identifier: AC:75:4E:D8:5A:3C:34:B2:38:EF:55:73:BA:75:63:8E:26:00:93:5C
Certificate issuer: /CN=61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D
Certificate serial: 4CFD1BAAA87836FD3A3892AC1C208A834BCFE5E8
Authority key identifier: 61:B9:0F:DE:CC:1D:EA:73:75:22:68:F9:A6:D7:F9:D9:F8:F8:79:3D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SIGMA/0/3130332e3233342e3230342e302f32322d3234203d3e2034373830.roa
Signing time: Mon 11 May 2026 17:06:11 +0000
ROA not before: Mon 11 May 2026 17:01:11 +0000
ROA not after: Mon 10 May 2027 17:06:11 +0000
asID: 4780
IP address blocks: 103.234.204.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4c:fd:1b:aa:a8:78:36:fd:3a:38:92:ac:1c:20:8a:83:4b:cf:e5:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D
Validity
Not Before: May 11 17:01:11 2026 GMT
Not After : May 10 17:06:11 2027 GMT
Subject: CN=AC754ED85A3C34B238EF5573BA75638E2600935C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:11:b7:2e:35:d7:3b:0f:dc:59:00:53:22:9c:
03:52:9e:61:c1:f0:60:78:10:c7:a9:e3:c1:90:b1:
6d:0c:f4:b2:e6:da:88:5b:5c:db:6c:8b:bb:68:60:
8e:cc:18:fa:31:94:ee:12:1e:53:19:86:d9:4b:ce:
55:89:91:d9:e8:be:5b:55:56:0d:c5:a2:50:35:1d:
c4:b2:b3:bf:7d:f3:6e:3e:42:77:00:ff:21:d6:18:
e2:7d:e8:7b:e3:34:43:4c:a5:d0:63:bd:33:84:67:
1b:08:1b:3f:39:f5:52:1a:7e:fa:8f:41:c5:c0:e9:
48:bd:bb:69:e8:10:d0:24:95:8f:f9:6d:21:24:66:
91:ec:a7:a1:01:4b:c5:ca:e1:ed:63:0e:70:d3:b8:
ba:fc:29:18:8f:bf:62:1f:31:53:43:3c:12:f9:13:
43:41:a9:78:4f:36:61:a9:e5:83:39:ed:26:61:1d:
73:30:90:ef:49:af:c6:be:b6:b1:a4:6b:9a:7e:51:
f1:b7:5c:b5:94:06:26:67:a3:12:ff:94:4c:ea:1c:
65:09:3c:c1:89:5e:15:1e:71:6a:53:60:78:77:1c:
a5:4d:cd:f0:24:ed:3d:72:44:f2:f7:c2:e0:3c:79:
82:b7:46:6b:fa:ce:84:17:1b:6c:26:8c:5b:1c:f4:
eb:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:75:4E:D8:5A:3C:34:B2:38:EF:55:73:BA:75:63:8E:26:00:93:5C
X509v3 Authority Key Identifier:
keyid:61:B9:0F:DE:CC:1D:EA:73:75:22:68:F9:A6:D7:F9:D9:F8:F8:79:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SIGMA/0/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SIGMA/0/3130332e3233342e3230342e302f32322d3234203d3e2034373830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.234.204.0/22
Signature Algorithm: sha256WithRSAEncryption
bb:f2:5b:7a:ce:0c:c2:98:90:76:13:94:f5:cb:ad:e9:6c:1f:
17:bd:16:94:38:2e:c4:a7:04:1f:48:9d:23:d3:98:b0:04:b0:
90:8b:85:e4:b3:ae:27:17:cf:58:4e:97:05:ef:69:c6:2e:7a:
60:ee:73:73:05:22:58:63:21:6a:a2:80:99:a6:00:23:11:fc:
fa:b0:da:f7:37:f1:19:5d:92:8c:0d:e6:f8:ab:a4:5d:8b:ea:
ed:01:19:e0:62:60:6d:be:42:88:1d:5c:80:7f:2d:6e:05:dd:
cd:b6:01:c0:f9:8c:c5:34:2f:1a:16:be:41:3e:f9:79:49:4e:
4d:4d:71:25:8d:eb:51:e5:96:9f:27:db:40:5a:82:da:16:89:
a7:54:94:82:b4:72:c9:4b:25:f8:be:46:ce:4c:3e:58:18:34:
7d:6c:36:93:93:03:68:7a:d4:b9:d3:6f:35:bd:c5:25:a5:9b:
10:04:c7:35:fe:2e:58:3a:8d:2d:16:f0:70:39:8f:b8:b4:52:
b0:b6:98:dd:ee:4e:2a:ef:1a:ea:5f:2e:1b:13:e9:76:2b:a0:
2c:b9:9c:8f:a3:ce:f8:a7:2f:07:92:89:ec:7e:76:e9:39:17:
ef:92:63:80:ac:b0:68:94:24:e8:f6:f9:b3:27:43:71:39:75:
f1:c6:2e:5b
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgIUTP0bqqh4Nv06OJKsHCCKg0vP5egwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFCOTBGREVDQzFERUE3Mzc1MjI2OEY5QTZEN0Y5RDlG
OEY4NzkzRDAeFw0yNjA1MTExNzAxMTFaFw0yNzA1MTAxNzA2MTFaMDMxMTAvBgNV
BAMTKEFDNzU0RUQ4NUEzQzM0QjIzOEVGNTU3M0JBNzU2MzhFMjYwMDkzNUMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1EbcuNdc7D9xZAFMinANSnmHB
8GB4EMep48GQsW0M9LLm2ohbXNtsi7toYI7MGPoxlO4SHlMZhtlLzlWJkdnovltV
Vg3FolA1HcSys799824+QncA/yHWGOJ96HvjNENMpdBjvTOEZxsIGz859VIafvqP
QcXA6Ui9u2noENAklY/5bSEkZpHsp6EBS8XK4e1jDnDTuLr8KRiPv2IfMVNDPBL5
E0NBqXhPNmGp5YM57SZhHXMwkO9Jr8a+trGka5p+UfG3XLWUBiZnoxL/lEzqHGUJ
PMGJXhUecWpTYHh3HKVNzfAk7T1yRPL3wuA8eYK3Rmv6zoQXG2wmjFsc9OvPAgMB
AAGjggHhMIIB3TAdBgNVHQ4EFgQUrHVO2Fo8NLI471VzunVjjiYAk1wwHwYDVR0j
BBgwFoAUYbkP3swd6nN1Imj5ptf52fj4eT0wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud
HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0lHTUEv
MC82MUI5MEZERUNDMURFQTczNzUyMjY4RjlBNkQ3RjlEOUY4Rjg3OTNELmNybDBv
BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS8xLzYxQjkwRkRFQ0MxREVBNzM3NTIyNjhGOUE2RDdG
OUQ5RjhGODc5M0QuY2VyMHsGCCsGAQUFBwELBG8wbTBrBggrBgEFBQcwC4ZfcnN5
bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TSUdNQS8wLzMxMzAzMzJlMzIzMzM0
MmUzMjMwMzQyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM3MzgzMC5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAmfqzDANBgkqhkiG9w0BAQsFAAOCAQEAu/Jbes4MwpiQdhOU9cut6WwfF70W
lDguxKcEH0idI9OYsASwkIuF5LOuJxfPWE6XBe9pxi56YO5zcwUiWGMhaqKAmaYA
IxH8+rDa9zfxGV2SjA3m+KukXYvq7QEZ4GJgbb5CiB1cgH8tbgXdzbYBwPmMxTQv
Gha+QT75eUlOTU1xJY3rUeWWnyfbQFqC2haJp1SUgrRyyUsl+L5Gzkw+WBg0fWw2
k5MDaHrUudNvNb3FJaWbEATHNf4uWDqNLRbwcDmPuLRSsLaY3e5OKu8a6l8uGxPp
diugLLmcj6PO+KcvB5KJ7H526TkX75JjgKywaJQk6Pb5sydDcTl18cYuWw==
-----END CERTIFICATE-----
Generated at Tue May 12 22:56:17 2026 by rpki-client