Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SONET/0/36312e36342e36342e302f31382d3234203d3e203138313832.roa
File: 36312e36342e36342e302f31382d3234203d3e203138313832.roa (raw, json)
Hash identifier: ZufTl96QJSTGjjHHnlV902JYYFFNTIDFxh070LDkULs=
Subject key identifier: 8A:D9:44:3E:F5:47:F3:EC:DD:EB:3E:90:9B:41:B3:95:43:F3:3B:22
Certificate issuer: /CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF
Certificate serial: 78FB6C474765BA2B624123F9E6C1CB5201CF70D3
Authority key identifier: 3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SONET/0/36312e36342e36342e302f31382d3234203d3e203138313832.roa
Signing time: Mon 11 May 2026 16:54:28 +0000
ROA not before: Mon 11 May 2026 16:49:28 +0000
ROA not after: Mon 10 May 2027 16:54:28 +0000
asID: 18182
IP address blocks: 61.64.64.0/18 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
78:fb:6c:47:47:65:ba:2b:62:41:23:f9:e6:c1:cb:52:01:cf:70:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF
Validity
Not Before: May 11 16:49:28 2026 GMT
Not After : May 10 16:54:28 2027 GMT
Subject: CN=8AD9443EF547F3ECDDEB3E909B41B39543F33B22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:4c:fe:1b:4d:46:88:ee:9d:01:be:b4:90:0c:
24:47:ca:74:9e:1a:e7:25:0a:aa:50:3a:6c:e8:15:
78:21:e5:40:e1:98:56:75:6d:47:98:1b:ae:81:0e:
84:34:be:2a:37:11:2a:f7:c9:3a:a3:85:60:bd:d1:
33:c2:32:a7:cd:a6:b1:ec:ad:d7:3c:50:8d:ca:a5:
d4:6f:5a:f8:76:43:fc:17:c0:91:dd:e6:cd:ef:bb:
b4:fd:e0:c2:a9:ec:56:21:24:bb:bc:3f:de:d1:b8:
64:49:07:e9:9b:84:00:f4:48:66:41:35:a6:6c:48:
65:9d:10:13:64:2c:32:48:15:c3:09:31:a1:de:dc:
90:b2:44:ef:e7:fa:2f:34:45:54:a3:54:cd:b2:13:
6c:17:ab:3b:22:98:05:33:b7:b8:eb:04:c5:95:02:
49:55:3b:e0:c6:2e:d2:27:3e:04:c3:ac:e9:70:36:
7c:d0:a2:ba:79:95:b6:72:ea:76:45:71:20:aa:04:
85:f1:93:fa:f9:2b:a1:ad:75:93:60:a6:ab:1e:b9:
65:2f:13:a2:a5:2a:49:0f:c0:a7:64:f2:64:0a:83:
f8:be:a5:14:4e:46:dd:1b:00:4e:44:70:11:6e:26:
db:21:94:9a:95:25:47:35:c5:e8:c8:af:ed:94:77:
c7:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D9:44:3E:F5:47:F3:EC:DD:EB:3E:90:9B:41:B3:95:43:F3:3B:22
X509v3 Authority Key Identifier:
keyid:3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SONET/0/36312e36342e36342e302f31382d3234203d3e203138313832.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
61.64.64.0/18
Signature Algorithm: sha256WithRSAEncryption
30:65:81:4d:2e:6c:bb:fe:79:ab:2c:2f:ad:5b:f3:b2:af:0c:
c9:0c:54:fb:9b:15:2f:29:59:29:8c:2e:b5:3b:3f:c8:56:51:
99:17:ed:88:c5:27:1b:2d:3f:65:02:fa:34:f8:86:96:28:aa:
fa:ab:2c:18:20:ea:ab:5b:8e:45:8b:92:fe:e6:a4:9b:8e:b5:
f8:21:e3:f8:13:9f:aa:6f:37:a0:16:5b:ef:40:03:f6:f1:8d:
50:c8:82:c0:0f:a1:4e:a0:ff:fb:76:c7:06:16:72:b1:6b:91:
eb:f0:29:41:19:17:75:45:5e:57:51:ad:c0:fb:95:7b:1a:1c:
61:5e:bd:6b:d8:5e:fb:4f:0c:5e:09:76:da:08:60:37:de:8b:
ce:81:11:97:05:dc:9c:dd:5d:da:4b:40:92:30:4e:78:5a:ee:
f8:b2:7e:a4:40:3f:78:5e:f1:a7:24:1b:eb:c8:2a:70:a8:b3:
01:84:03:70:81:4c:30:0e:ca:69:e1:11:89:0e:dc:65:77:60:
0c:8c:c5:ee:42:26:04:1f:4e:7d:00:77:93:d3:5c:ab:44:3f:
75:da:28:e0:82:3d:81:a1:b9:6e:80:89:8a:0d:f0:01:f1:03:
de:6d:45:af:48:90:01:13:da:96:25:36:d2:e6:1b:31:79:76:
ac:a5:a1:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:21:03 2026 by rpki-client