Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SMTRTCH/0/3130332e33372e352e302f32342d3234203d3e2039363738.roa
File: 3130332e33372e352e302f32342d3234203d3e2039363738.roa (raw, json)
Hash identifier: vq7Kkz8vi0K2HzkGDtDsKnFEZtHIaVtYlOC9mpxUIrQ=
Subject key identifier: CB:03:21:6F:A0:77:89:F5:08:0D:05:1D:70:F2:0F:9D:AF:AB:BE:66
Certificate issuer: /CN=08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE
Certificate serial: 10A7DC30A93647C3DF912DE867339C160178967D
Authority key identifier: 08:A0:3C:F9:C1:D3:AF:93:CF:DB:0A:2C:1D:87:8D:A6:02:75:D4:FE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SMTRTCH/0/3130332e33372e352e302f32342d3234203d3e2039363738.roa
Signing time: Mon 11 May 2026 17:39:09 +0000
ROA not before: Mon 11 May 2026 17:34:09 +0000
ROA not after: Mon 10 May 2027 17:39:09 +0000
asID: 9678
IP address blocks: 103.37.5.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
10:a7:dc:30:a9:36:47:c3:df:91:2d:e8:67:33:9c:16:01:78:96:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE
Validity
Not Before: May 11 17:34:09 2026 GMT
Not After : May 10 17:39:09 2027 GMT
Subject: CN=CB03216FA07789F5080D051D70F20F9DAFABBE66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:b3:31:c3:91:76:7d:2b:73:1d:1a:e4:79:45:
b0:55:88:21:20:74:5b:e0:e4:1e:17:17:b5:83:7f:
1b:64:61:03:57:8c:72:31:1d:c8:70:e4:89:ad:94:
30:f0:7e:60:16:fc:f9:77:da:b5:ef:91:33:d4:b4:
59:4b:00:2a:0d:41:46:0d:48:c6:a3:de:5d:70:7a:
8c:46:68:1b:1a:cf:80:c9:f6:0f:1a:49:32:5a:9a:
16:33:28:31:f4:33:b7:3b:59:97:53:68:dc:08:ba:
02:ec:51:36:92:b4:6b:72:9d:16:42:0b:85:3c:5f:
91:6d:73:c9:30:65:cd:35:f9:54:68:34:3f:9d:60:
31:41:2a:1b:d9:56:70:9a:f0:1d:7b:fd:78:0b:56:
c4:b4:a5:ce:b0:f1:c7:98:f4:91:05:34:ee:ca:ae:
42:e1:9b:19:3d:96:f8:7c:1c:15:ac:71:8f:4f:50:
8c:e1:27:50:f6:0a:9f:2e:7b:6e:0b:50:6c:78:0e:
fc:d8:12:f2:ef:31:d3:5d:31:21:95:b8:a4:55:dd:
21:ba:ae:38:ff:0d:95:0b:f9:f8:c3:42:60:73:85:
49:82:80:67:38:c2:ef:87:f5:4c:40:4e:55:87:0d:
f5:1b:42:7f:29:09:2c:16:c5:39:5f:a2:2e:48:e3:
61:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:03:21:6F:A0:77:89:F5:08:0D:05:1D:70:F2:0F:9D:AF:AB:BE:66
X509v3 Authority Key Identifier:
keyid:08:A0:3C:F9:C1:D3:AF:93:CF:DB:0A:2C:1D:87:8D:A6:02:75:D4:FE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SMTRTCH/0/08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/08A03CF9C1D3AF93CFDB0A2C1D878DA60275D4FE.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SMTRTCH/0/3130332e33372e352e302f32342d3234203d3e2039363738.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.37.5.0/24
Signature Algorithm: sha256WithRSAEncryption
67:f7:02:4a:48:d1:11:83:f9:3b:33:c6:a4:08:fe:6d:fb:b0:
e7:3c:eb:5b:d5:c4:5d:19:61:2c:d7:35:d9:12:58:0c:36:47:
9b:cd:8f:ee:37:52:e5:b6:a4:7e:15:84:54:87:f8:d9:ac:0b:
85:ae:48:31:7f:75:8b:23:43:b5:0a:37:31:54:b4:cb:b3:3f:
d9:00:0a:07:ef:f1:5d:f8:c3:f3:41:07:38:ef:ba:b1:4c:f9:
af:ab:ac:39:d4:f6:e1:59:88:f5:8a:de:93:42:5e:58:20:ae:
bd:66:cf:d6:84:7e:a3:de:1c:45:5e:de:06:b7:cf:38:5e:55:
0f:ab:58:e7:80:a0:2d:4d:b4:4c:2f:93:fe:15:4c:78:20:f9:
62:c0:c6:61:ab:67:bb:e0:29:bc:d6:db:56:bb:5d:e6:09:81:
0f:61:07:23:ed:11:2b:1d:83:6e:85:0a:a0:4f:49:c4:20:31:
97:3f:07:38:95:44:9f:2c:4d:71:7b:1c:39:af:43:da:34:21:
96:f9:e1:c9:80:01:e6:4c:02:16:aa:09:26:00:7a:9c:c7:34:
0f:da:9e:1c:d3:60:4b:8a:3c:02:30:84:63:c7:e4:1a:0f:56:
eb:f1:5f:a3:a8:01:b0:0f:88:50:8f:44:6b:8b:5a:28:a1:74:
75:25:65:78
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:44:21 2026 by rpki-client