Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SMCI/0/3130332e3136322e38342e302f32332d3234203d3e203633383934.roa
File: 3130332e3136322e38342e302f32332d3234203d3e203633383934.roa (raw, json)
Hash identifier: 64VWfWpwPEaWvDLB9FclOWVpeag/ViOxY6Yn4Un8azo=
Subject key identifier: 80:03:0A:CE:39:00:33:99:57:4D:10:CF:E7:DF:0C:51:72:64:BA:5D
Certificate issuer: /CN=D44F2A492A54CEF17E23EBCBA3BD57730005DBCD
Certificate serial: 68C5322E63AB2971E5020A2D3376FE118FB4798B
Authority key identifier: D4:4F:2A:49:2A:54:CE:F1:7E:23:EB:CB:A3:BD:57:73:00:05:DB:CD
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/D44F2A492A54CEF17E23EBCBA3BD57730005DBCD.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SMCI/0/3130332e3136322e38342e302f32332d3234203d3e203633383934.roa
Signing time: Mon 11 May 2026 17:17:29 +0000
ROA not before: Mon 11 May 2026 17:12:29 +0000
ROA not after: Mon 10 May 2027 17:17:29 +0000
asID: 63894
IP address blocks: 103.162.84.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
68:c5:32:2e:63:ab:29:71:e5:02:0a:2d:33:76:fe:11:8f:b4:79:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D44F2A492A54CEF17E23EBCBA3BD57730005DBCD
Validity
Not Before: May 11 17:12:29 2026 GMT
Not After : May 10 17:17:29 2027 GMT
Subject: CN=80030ACE39003399574D10CFE7DF0C517264BA5D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:40:7a:84:2c:f6:56:bf:8e:41:29:0c:25:cf:
5f:92:e2:da:d3:76:6e:9a:97:57:43:0e:d6:a9:e5:
10:e1:8b:ac:32:cb:77:5b:67:b5:6e:4e:df:18:d2:
bb:a7:33:88:a5:c4:40:5d:72:ea:ae:95:c9:9d:66:
74:8e:7b:f6:8c:58:34:b2:c0:95:a1:4a:aa:ec:82:
a4:8f:2b:5d:c3:11:74:b2:a3:38:a0:35:c8:d5:17:
3d:67:db:20:28:0e:1d:cd:6f:06:fc:f6:e4:3c:2e:
db:e1:aa:d6:29:ed:7e:49:04:41:bc:50:55:96:fc:
b9:62:95:6f:99:b9:4f:aa:6a:f6:84:2c:c4:1f:e9:
c9:e4:bd:40:0f:7f:b2:37:2b:c8:1a:ab:1d:1a:9d:
c3:0e:2b:60:c7:36:ad:69:91:90:a2:45:47:38:54:
23:7d:b0:27:01:5d:f8:fd:e8:37:87:93:80:47:10:
ca:14:88:3e:60:c2:38:3f:1d:6f:84:c2:6f:65:f7:
06:d0:24:86:74:96:22:0e:d4:b6:e9:b3:35:4b:53:
0f:2e:7a:c8:8b:b6:0b:be:06:43:f1:90:cb:5c:eb:
61:96:97:7d:a4:fe:60:8f:75:fc:06:db:26:74:a9:
cc:7b:c9:17:56:9c:53:5e:9e:7b:e9:e6:96:82:3a:
73:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:03:0A:CE:39:00:33:99:57:4D:10:CF:E7:DF:0C:51:72:64:BA:5D
X509v3 Authority Key Identifier:
keyid:D4:4F:2A:49:2A:54:CE:F1:7E:23:EB:CB:A3:BD:57:73:00:05:DB:CD
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SMCI/0/D44F2A492A54CEF17E23EBCBA3BD57730005DBCD.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/D44F2A492A54CEF17E23EBCBA3BD57730005DBCD.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SMCI/0/3130332e3136322e38342e302f32332d3234203d3e203633383934.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.162.84.0/23
Signature Algorithm: sha256WithRSAEncryption
65:64:7d:bf:94:68:c0:91:7f:04:59:fe:05:54:03:79:3c:7c:
01:c1:69:ea:1e:60:f3:04:93:41:88:67:98:43:e4:d9:b8:42:
a7:c1:91:98:4a:98:6a:82:da:6a:7e:a0:5a:e5:aa:48:11:14:
b9:7d:1a:55:ab:1b:50:cf:6b:66:4e:16:4c:a8:04:f4:da:d5:
1a:c9:26:85:54:85:01:ac:06:12:26:c2:94:2a:11:c5:9d:b4:
b8:29:cd:e2:65:fb:3a:52:5a:16:4b:e0:1e:ac:10:0d:2b:ba:
f0:ea:fe:89:70:a3:41:a1:6b:b7:74:4e:e4:45:27:0b:28:8e:
77:73:bd:a2:9f:94:f9:3e:bf:8b:21:c4:05:07:d6:d4:84:12:
73:89:90:a8:17:4c:af:b4:f9:b6:76:f6:6b:08:c3:1a:06:81:
49:9b:09:18:34:82:26:46:97:bf:f3:36:27:d4:5f:67:ce:2f:
6b:91:2d:0c:c6:9a:f5:c3:ae:a4:84:36:31:58:a8:d5:38:47:
12:fb:ec:aa:e5:71:6d:0d:19:7e:a6:36:f5:3f:9f:a3:29:af:
dd:af:31:45:ca:81:2b:5f:fa:5e:38:6c:a8:ce:37:b8:8e:77:
0b:d9:ff:e3:40:d0:94:c9:92:d5:fe:d8:5e:09:53:28:a7:d9:
68:39:5c:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:16:59 2026 by rpki-client