Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SIGMA/0/3135302e3132392e37322e302f32322d3234203d3e2034373830.roa
File: 3135302e3132392e37322e302f32322d3234203d3e2034373830.roa (raw, json)
Hash identifier: PfxF5cMJKNbz/D/bYb5FrcVb4ZRer2FUle8aX6+VeOY=
Subject key identifier: 37:E3:4F:0D:87:8D:04:95:39:88:CA:20:7C:8B:F4:C6:7B:14:81:17
Certificate issuer: /CN=61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D
Certificate serial: 187D0EC110A13565860A5D160003B557D818649E
Authority key identifier: 61:B9:0F:DE:CC:1D:EA:73:75:22:68:F9:A6:D7:F9:D9:F8:F8:79:3D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SIGMA/0/3135302e3132392e37322e302f32322d3234203d3e2034373830.roa
Signing time: Mon 11 May 2026 16:41:47 +0000
ROA not before: Mon 11 May 2026 16:36:47 +0000
ROA not after: Mon 10 May 2027 16:41:47 +0000
asID: 4780
IP address blocks: 150.129.72.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
18:7d:0e:c1:10:a1:35:65:86:0a:5d:16:00:03:b5:57:d8:18:64:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D
Validity
Not Before: May 11 16:36:47 2026 GMT
Not After : May 10 16:41:47 2027 GMT
Subject: CN=37E34F0D878D04953988CA207C8BF4C67B148117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:3c:0b:cb:46:a6:52:3a:6c:d8:3d:a2:7d:4d:
ac:b7:93:7c:85:f0:c3:f0:8f:cb:c4:af:63:b2:d5:
16:34:dc:89:6d:2b:b6:fc:44:7b:8c:3e:0e:6f:40:
0f:99:15:8a:a9:00:e8:34:28:9a:89:e4:61:b0:62:
dd:b4:a7:39:5b:c7:8f:8a:eb:88:80:27:01:7c:cb:
c0:52:3a:42:d3:1d:f5:fc:45:4e:e0:fd:73:58:ec:
13:da:94:76:b9:b6:96:22:f5:d5:f8:71:ed:52:ed:
7d:c3:f9:fe:25:81:4b:bc:be:b5:fb:bb:77:4c:15:
06:41:af:e3:7d:bb:54:43:16:d1:6f:73:00:85:60:
6b:a2:69:42:26:7a:dc:c4:db:da:08:5a:9b:6e:a0:
e5:e7:78:2d:78:1b:32:ae:0b:72:80:4f:90:2f:e4:
38:3b:bc:71:72:7a:52:1d:0a:8f:d9:91:cd:b3:3e:
2f:63:2b:c5:df:c0:e6:68:19:5c:f3:95:02:8c:40:
90:a0:bf:e1:14:91:75:6a:74:83:a5:0b:e6:e9:ec:
a4:15:8d:b0:f4:92:99:3b:82:b5:90:3c:f0:02:6e:
ec:df:03:59:68:22:8a:e3:fc:46:79:bb:b3:e5:67:
f7:24:d7:df:d3:93:90:ae:ad:5a:db:68:8b:3f:72:
53:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:E3:4F:0D:87:8D:04:95:39:88:CA:20:7C:8B:F4:C6:7B:14:81:17
X509v3 Authority Key Identifier:
keyid:61:B9:0F:DE:CC:1D:EA:73:75:22:68:F9:A6:D7:F9:D9:F8:F8:79:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SIGMA/0/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SIGMA/0/3135302e3132392e37322e302f32322d3234203d3e2034373830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.129.72.0/22
Signature Algorithm: sha256WithRSAEncryption
06:19:7c:59:71:e2:2a:83:cf:a4:49:ae:06:c3:e8:7f:ae:33:
ee:b9:8f:df:34:b8:aa:eb:8d:0c:4d:10:9e:d1:ee:f9:de:de:
1d:7e:46:d6:58:3d:c4:22:b7:a4:7a:3b:1b:57:b3:ba:96:7d:
53:74:54:9e:4f:e8:9f:56:1c:d9:cf:1e:1d:ef:f0:1d:cc:bf:
9d:02:ab:36:0f:40:01:14:e1:e3:cf:96:8e:11:73:a7:03:d7:
ff:81:4f:79:81:9f:ab:bb:2a:77:21:f5:20:74:49:c4:9b:a4:
eb:c4:92:07:92:ef:c3:97:08:fe:58:c8:b1:92:ee:b2:3a:b9:
6c:3c:a4:e2:6f:48:e9:72:2f:43:15:be:a6:95:9e:6f:c5:ce:
3b:0d:b4:b8:48:4a:e8:2f:4b:8c:34:3a:65:34:17:23:af:1b:
b7:1f:1c:a6:71:c6:26:e5:ea:2b:c8:2d:88:d1:e5:e9:4a:4b:
24:ea:18:99:aa:19:f9:c3:ff:f0:4f:35:9f:9c:ba:c8:a6:04:
1e:29:89:7e:91:40:04:8b:b2:1a:f8:47:fe:ef:79:24:da:09:
ad:b6:ea:e6:00:36:e1:cd:06:38:fb:12:67:f3:45:06:40:bd:
db:f0:ad:c6:bc:8f:45:d4:57:53:13:27:1f:84:1b:18:9d:c5:
68:03:84:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:13:35 2026 by rpki-client