Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SONET/0/33392e312e302e302f32302d3234203d3e2039393232.roa
File: 33392e312e302e302f32302d3234203d3e2039393232.roa (raw, json)
Hash identifier: XsN+8OXikSiKwT554Z/8JtJMRKlDNFZ1zHxkg1sQLrI=
Subject key identifier: C5:2C:A6:38:88:C0:1C:BE:54:99:B5:53:A1:08:CD:F8:1D:A4:81:26
Certificate issuer: /CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF
Certificate serial: 143F4BB2564BEDBE05EF7895222EB59D307D1FA7
Authority key identifier: 3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SONET/0/33392e312e302e302f32302d3234203d3e2039393232.roa
Signing time: Mon 11 May 2026 17:32:41 +0000
ROA not before: Mon 11 May 2026 17:27:41 +0000
ROA not after: Mon 10 May 2027 17:32:41 +0000
asID: 9922
IP address blocks: 39.1.0.0/20 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
14:3f:4b:b2:56:4b:ed:be:05:ef:78:95:22:2e:b5:9d:30:7d:1f:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF
Validity
Not Before: May 11 17:27:41 2026 GMT
Not After : May 10 17:32:41 2027 GMT
Subject: CN=C52CA63888C01CBE5499B553A108CDF81DA48126
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c4:95:85:45:d5:df:f6:39:3c:de:63:c6:c4:
04:00:6d:a5:20:bf:34:98:33:45:0f:d5:5c:73:d7:
1f:73:10:f4:24:1b:f1:6d:d6:a5:a2:48:36:a0:22:
8d:3f:7c:25:e3:b3:20:d7:4c:f3:5a:8a:85:08:c3:
0e:f8:f1:d5:63:06:89:a7:49:2a:50:8a:c4:ee:af:
c7:2c:ef:5f:70:59:71:23:e7:c0:16:61:47:85:1c:
88:91:a4:5e:f9:e3:9a:b8:9f:b9:49:3d:4c:08:48:
21:a9:dd:3d:48:f4:dd:36:ca:34:4c:1d:4a:cc:d2:
0b:a3:95:b8:d2:b5:76:f5:d4:fe:66:cd:3a:62:bb:
a7:b9:b2:8e:ec:32:7e:bd:c1:dc:8d:58:49:16:44:
b3:cd:5e:bd:f7:20:c0:92:f0:3f:9c:df:af:90:4e:
fd:0f:65:63:13:e1:d6:65:9a:c1:50:b6:6d:ee:38:
2a:dc:39:74:86:a3:aa:b5:e2:d8:ee:bf:9b:ff:bb:
32:57:fe:db:d6:c0:e0:46:16:7c:df:bc:e1:08:38:
74:d8:76:2d:18:80:22:b5:6e:d6:64:ad:b7:01:99:
46:94:eb:86:5c:5f:fe:c6:fd:58:3b:e1:af:95:f7:
7f:63:f7:53:3a:d4:ee:15:c4:f5:f1:df:90:64:b4:
ad:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:2C:A6:38:88:C0:1C:BE:54:99:B5:53:A1:08:CD:F8:1D:A4:81:26
X509v3 Authority Key Identifier:
keyid:3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SONET/0/33392e312e302e302f32302d3234203d3e2039393232.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
39.1.0.0/20
Signature Algorithm: sha256WithRSAEncryption
18:75:ce:02:45:ee:0d:9f:54:3c:da:55:ae:ac:72:bb:f7:96:
b9:e4:ae:a3:9f:a2:be:67:c7:10:62:2c:df:2e:06:a3:d2:c2:
6e:f9:a7:14:98:c8:c8:07:34:ad:40:3c:0d:97:6c:9d:fc:b5:
1c:24:db:e9:71:56:a7:ae:50:a5:82:d3:20:fe:ac:2c:a5:d2:
18:99:31:31:ed:29:c0:9b:2f:c0:21:80:9e:04:3a:42:8a:38:
db:19:de:e2:5c:16:8f:f9:30:3a:43:d6:15:f8:4a:c0:e7:d2:
cc:18:12:04:23:4b:3b:8a:6a:b2:fc:0b:97:ce:05:a6:a1:f5:
7e:84:32:a1:67:5d:45:71:cb:86:eb:df:9e:55:18:f8:ae:04:
c7:54:7c:4d:83:c7:8a:60:d7:69:2f:68:93:cc:0b:2d:13:51:
69:47:34:e9:d4:73:95:67:82:ad:9d:a7:d6:11:f5:80:d2:fe:
db:5c:69:8a:89:0e:a8:34:75:36:b8:43:94:d6:98:d8:e6:d9:
92:13:e9:86:1b:83:d8:f2:0a:ae:cc:c0:a4:7f:c6:36:ef:bc:
52:d7:a2:01:2c:d0:59:0c:f3:ff:19:b1:80:80:bf:b1:ae:97:
11:93:ee:f6:95:c0:dc:12:b5:b7:55:8d:8e:62:81:50:ae:2f:
4a:e3:0b:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:46:14 2026 by rpki-client