Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SIGMA/0/3230332e3132312e3234302e302f32302d3234203d3e2034373830.roa
File: 3230332e3132312e3234302e302f32302d3234203d3e2034373830.roa (raw, json)
Hash identifier: Oi0azm+y0rM/Zx6aqBPzMajG9sgpCgCOE+eqm8q0G44=
Subject key identifier: A7:29:5D:93:25:13:6F:06:E2:9B:B9:D8:EC:0B:13:F5:79:3C:F0:49
Certificate issuer: /CN=61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D
Certificate serial: 225BD62471FD36791A2C80FB73D237916AD08E19
Authority key identifier: 61:B9:0F:DE:CC:1D:EA:73:75:22:68:F9:A6:D7:F9:D9:F8:F8:79:3D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SIGMA/0/3230332e3132312e3234302e302f32302d3234203d3e2034373830.roa
Signing time: Mon 11 May 2026 16:41:51 +0000
ROA not before: Mon 11 May 2026 16:36:51 +0000
ROA not after: Mon 10 May 2027 16:41:51 +0000
asID: 4780
IP address blocks: 203.121.240.0/20 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
22:5b:d6:24:71:fd:36:79:1a:2c:80:fb:73:d2:37:91:6a:d0:8e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D
Validity
Not Before: May 11 16:36:51 2026 GMT
Not After : May 10 16:41:51 2027 GMT
Subject: CN=A7295D9325136F06E29BB9D8EC0B13F5793CF049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:6c:9a:05:20:1f:dd:c1:a7:16:32:e2:1d:6f:
16:91:1c:0e:a3:b1:e0:7c:25:63:0e:e0:44:6f:aa:
ab:e4:24:6b:32:50:e8:8a:33:d0:00:de:7d:63:1d:
33:bb:68:d0:26:ce:89:87:7f:3e:06:35:b1:56:5d:
42:54:18:d1:e3:ba:cf:71:2d:ac:4b:5d:a0:49:de:
ec:dd:39:b4:0e:d4:b9:7d:8d:7b:4e:7a:b9:16:87:
63:00:91:25:c1:b4:af:c8:b5:c1:32:c9:81:a0:b7:
09:4a:f6:94:99:e1:62:95:cf:68:84:32:4f:19:62:
e9:06:d5:f9:2e:d3:04:ce:a7:3b:f4:73:62:33:3b:
ad:32:04:52:bc:a9:44:95:31:f3:b5:9f:26:9c:ef:
17:07:58:02:8b:5a:aa:d7:17:e5:c2:ec:e4:a0:f4:
46:ef:f1:09:6b:e7:76:df:e9:b8:78:a2:c1:4e:b7:
e0:67:bc:7a:d1:58:9b:5f:fc:2e:b2:eb:9c:9c:fa:
8e:af:9b:31:a7:b4:d9:5b:68:f4:60:b7:b4:44:3b:
a2:54:d8:4b:d1:3a:96:4e:8e:d3:7c:5d:cb:ad:71:
ba:86:d9:38:39:22:ce:43:4c:69:43:cf:e5:15:8a:
fd:6d:e4:c6:4d:77:f3:a8:b4:68:ef:10:54:dd:f3:
63:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:29:5D:93:25:13:6F:06:E2:9B:B9:D8:EC:0B:13:F5:79:3C:F0:49
X509v3 Authority Key Identifier:
keyid:61:B9:0F:DE:CC:1D:EA:73:75:22:68:F9:A6:D7:F9:D9:F8:F8:79:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SIGMA/0/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SIGMA/0/3230332e3132312e3234302e302f32302d3234203d3e2034373830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
203.121.240.0/20
Signature Algorithm: sha256WithRSAEncryption
62:fa:67:86:2b:f4:f3:54:1b:50:0d:d1:c9:a7:f5:a6:c3:95:
6f:be:ea:e3:d4:7c:bc:21:c7:67:ca:95:f4:19:f9:ce:31:58:
3a:33:05:a9:85:ac:98:73:09:2d:99:c3:26:a6:fa:79:9f:f3:
8d:b6:53:4f:49:59:f1:0e:e6:c3:35:5e:37:90:07:a6:e9:ec:
f0:eb:ca:ee:9b:fe:1c:f2:62:fc:3f:ac:08:8e:e2:c2:1a:ef:
fc:4e:9d:51:3a:77:da:e8:ae:ff:8b:0b:0a:8c:4b:26:df:c9:
1e:40:85:ca:77:05:ed:9c:2c:88:b3:3a:11:2b:43:24:9a:bd:
a5:af:7c:34:95:e3:a1:2a:57:01:42:95:39:be:db:8d:bc:62:
52:ca:c0:83:29:c6:5e:ff:fd:ef:46:63:b3:3a:80:6e:3c:5c:
61:45:11:7b:17:ee:c1:b9:09:74:f6:63:41:3a:00:73:12:ce:
70:78:3c:37:37:af:cb:76:35:e4:60:0c:ba:1b:58:60:76:82:
cc:fd:21:a7:bf:b5:40:af:d3:c6:fc:f3:0a:82:75:20:d4:b7:
fe:7a:b4:08:a5:a3:77:9f:dd:c3:f3:f5:6c:b5:03:21:23:de:
59:a1:1d:d0:3a:32:b6:e5:b0:00:55:1e:88:7c:4d:5c:81:dd:
2e:f6:39:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:13:48 2026 by rpki-client