Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SIGMA/0/3230332e3132312e3232342e302f32302d3234203d3e2034373830.roa
File: 3230332e3132312e3232342e302f32302d3234203d3e2034373830.roa (raw, json)
Hash identifier: V+IjLMmELjjEqH5Hw3PPk+1Z4RngY1ss3HBPFD2O7o8=
Subject key identifier: C6:12:9A:C6:45:05:C9:9D:1A:F6:F9:A8:17:DD:54:0F:E1:07:46:9E
Certificate issuer: /CN=61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D
Certificate serial: 7E857CBC402A0DC5429FA32CAC4238EE9179818F
Authority key identifier: 61:B9:0F:DE:CC:1D:EA:73:75:22:68:F9:A6:D7:F9:D9:F8:F8:79:3D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SIGMA/0/3230332e3132312e3232342e302f32302d3234203d3e2034373830.roa
Signing time: Mon 11 May 2026 16:41:50 +0000
ROA not before: Mon 11 May 2026 16:36:50 +0000
ROA not after: Mon 10 May 2027 16:41:50 +0000
asID: 4780
IP address blocks: 203.121.224.0/20 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7e:85:7c:bc:40:2a:0d:c5:42:9f:a3:2c:ac:42:38:ee:91:79:81:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D
Validity
Not Before: May 11 16:36:50 2026 GMT
Not After : May 10 16:41:50 2027 GMT
Subject: CN=C6129AC64505C99D1AF6F9A817DD540FE107469E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:fc:e2:db:4f:75:ec:aa:fe:65:64:59:48:bf:
b9:b1:ff:03:39:f7:2c:51:b9:7e:58:7b:1c:06:e4:
7a:cf:3a:ba:12:35:52:0d:31:64:d6:68:da:e3:8c:
59:af:ae:b3:f1:59:03:fe:60:72:24:3a:9f:20:e0:
93:93:ca:81:9a:32:94:9d:6f:c5:07:05:0b:2b:d7:
86:d8:df:9d:12:a8:5f:a9:66:ef:32:e4:ac:87:f4:
41:f1:96:bb:a2:28:30:5c:56:90:10:80:0c:18:99:
bd:be:0a:60:30:72:a1:1a:2c:89:32:e9:f3:fb:9d:
87:25:3e:44:8b:bf:16:f8:32:9d:b0:8e:c3:3d:75:
47:4f:17:88:1e:2c:4e:61:e3:03:6e:01:ce:af:f3:
c2:b6:de:d7:16:17:d3:9f:db:d8:7b:16:5c:89:65:
68:37:5f:b5:ac:ae:ea:ba:b5:99:c5:32:d9:48:74:
70:85:26:35:bb:be:8a:48:ba:89:b8:ae:8c:f4:ac:
97:b1:90:4b:61:22:ab:ba:cf:2c:46:c5:af:6f:9c:
d0:6a:39:37:50:b0:71:29:0d:f0:2e:35:46:1a:60:
aa:78:6e:f0:4f:0e:7c:c9:90:f0:06:e3:ea:26:2c:
ac:e1:57:69:ad:1a:83:f0:c2:cd:04:bd:f7:fa:b6:
4a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:12:9A:C6:45:05:C9:9D:1A:F6:F9:A8:17:DD:54:0F:E1:07:46:9E
X509v3 Authority Key Identifier:
keyid:61:B9:0F:DE:CC:1D:EA:73:75:22:68:F9:A6:D7:F9:D9:F8:F8:79:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SIGMA/0/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SIGMA/0/3230332e3132312e3232342e302f32302d3234203d3e2034373830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.121.224.0/20
Signature Algorithm: sha256WithRSAEncryption
79:d5:29:ff:db:34:62:de:ff:6e:66:52:81:9e:fa:0c:c0:fc:
63:65:36:c8:9d:83:01:74:9a:75:9d:b3:f0:87:8f:87:d1:d4:
67:7d:ae:ee:45:1d:95:58:68:cc:e1:50:85:49:15:8e:c7:c3:
64:ab:05:95:42:f3:0c:bb:43:71:88:84:33:e6:8c:c5:23:4a:
9e:3a:3d:ca:e2:be:0c:8d:33:f8:05:c4:82:88:b9:a8:16:71:
1e:14:60:1e:62:e6:a0:bf:17:56:cf:53:73:bd:d5:df:ad:27:
b3:f7:1e:c9:4d:fa:0b:14:ce:e5:bc:f8:73:81:f4:50:90:6a:
b9:4b:7f:a5:81:23:39:ea:60:73:34:7b:10:0c:b2:0c:c5:5b:
cc:ed:fe:f1:62:ab:b3:cc:0f:84:00:f8:f2:f5:f4:25:2e:9e:
e2:43:53:bc:33:5b:51:19:aa:86:2a:b5:10:80:86:91:b7:6a:
94:6a:44:2c:33:a3:eb:a1:a8:5b:73:0c:af:20:7c:e4:49:54:
66:bf:6d:98:74:e5:dd:b4:04:84:f9:7c:04:96:f6:c1:2c:2b:
a6:60:af:ee:88:c0:ad:c8:12:97:10:40:5a:47:0e:a0:af:a1:
d0:a5:0c:0f:00:0f:a1:2f:6d:e6:9c:34:2d:be:e6:68:09:7e:
69:56:42:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:46:14 2026 by rpki-client