Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SPUSER/0/323430363a3330303a3a2f33322d3332203d3e2033343632.roa
File: 323430363a3330303a3a2f33322d3332203d3e2033343632.roa (raw, json)
Hash identifier: Mx2hdpo1JSD9a9oOTPfRMGnVumGCxyTkbl1EN6cIp8s=
Subject key identifier: C3:48:45:06:92:27:C5:31:D5:27:CE:DA:60:43:CA:B7:2A:B6:87:B1
Certificate issuer: /CN=164EB710D7AA83CB67EE2E709B4F195437239363
Certificate serial: 5E48F9A42925DFD8AB265C5EEE337536C83760F6
Authority key identifier: 16:4E:B7:10:D7:AA:83:CB:67:EE:2E:70:9B:4F:19:54:37:23:93:63
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/164EB710D7AA83CB67EE2E709B4F195437239363.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SPUSER/0/323430363a3330303a3a2f33322d3332203d3e2033343632.roa
Signing time: Mon 11 May 2026 17:58:48 +0000
ROA not before: Mon 11 May 2026 17:53:48 +0000
ROA not after: Mon 10 May 2027 17:58:48 +0000
asID: 3462
IP address blocks: 2406:300::/32 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:48:f9:a4:29:25:df:d8:ab:26:5c:5e:ee:33:75:36:c8:37:60:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=164EB710D7AA83CB67EE2E709B4F195437239363
Validity
Not Before: May 11 17:53:48 2026 GMT
Not After : May 10 17:58:48 2027 GMT
Subject: CN=C34845069227C531D527CEDA6043CAB72AB687B1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:19:75:2d:a0:7c:fd:2b:cb:86:b4:ea:a4:71:
ca:0a:5f:3c:bb:bb:c2:00:47:ae:c8:d3:d8:e9:0e:
97:8b:d3:fb:6f:c5:ad:af:33:13:ee:95:d5:55:ae:
f9:0a:e8:0f:6c:3f:e0:98:79:6f:24:8b:7d:dc:fc:
dc:0a:ae:16:db:f3:9f:fe:a6:9f:93:b7:ff:9d:e8:
a7:1f:13:4d:28:bd:6d:7f:4d:e1:29:53:55:84:89:
24:8c:a1:8e:e1:24:69:4e:31:94:c9:e8:62:b2:36:
71:8a:23:73:ab:b9:f4:a6:06:f1:46:11:c8:67:5b:
f2:a9:d7:68:dc:67:ce:29:02:08:9d:b6:d1:c2:0e:
30:05:1a:32:cd:c8:22:6b:d3:c3:78:dd:a7:2f:c4:
77:34:5b:83:3c:23:17:91:8f:24:73:ce:44:cf:5a:
94:80:16:7b:41:5e:58:97:c1:d6:a1:0f:22:2e:9b:
32:c2:59:29:ff:ba:fb:bb:4d:1b:90:b2:7b:7f:75:
e0:8f:5f:ab:d5:6d:5f:76:bd:ab:87:93:13:8d:22:
2c:b5:d4:66:f2:a9:1c:f9:4c:f0:a1:7e:c5:b4:5f:
61:bb:e3:25:30:8e:b1:1b:bb:38:3e:6d:94:09:27:
d4:dc:19:ff:02:e3:c7:e2:5b:27:05:c3:f7:bc:a0:
12:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:48:45:06:92:27:C5:31:D5:27:CE:DA:60:43:CA:B7:2A:B6:87:B1
X509v3 Authority Key Identifier:
keyid:16:4E:B7:10:D7:AA:83:CB:67:EE:2E:70:9B:4F:19:54:37:23:93:63
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SPUSER/0/164EB710D7AA83CB67EE2E709B4F195437239363.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/164EB710D7AA83CB67EE2E709B4F195437239363.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SPUSER/0/323430363a3330303a3a2f33322d3332203d3e2033343632.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2406:300::/32
Signature Algorithm: sha256WithRSAEncryption
69:dd:15:0e:0d:2b:86:54:04:d0:39:dc:54:ea:d5:11:ea:ec:
97:64:a1:ed:03:e3:5f:7b:47:f0:df:c8:bd:d9:9c:50:4e:ac:
1e:79:13:27:c9:1b:bc:f8:8d:71:1c:01:75:ef:11:45:29:3b:
f9:e5:62:ce:3d:45:eb:55:75:71:44:e5:61:fd:55:91:0c:b0:
5a:25:bb:5f:d3:b0:1b:fd:73:48:5d:24:d1:76:8a:da:73:95:
33:0c:d2:f6:7d:5f:0a:52:34:39:2a:74:5f:49:c6:d2:88:b8:
cb:bb:d5:c3:f1:1e:ac:b3:80:a5:8c:64:56:35:e3:c4:af:6a:
22:d9:37:a8:23:4e:8f:2c:0d:49:56:7f:69:d7:b7:d8:be:9c:
82:de:ab:70:d7:e7:dc:3f:02:34:d4:6f:9c:be:4f:48:a9:57:
07:6f:8a:66:dd:4d:e9:f4:77:43:a5:1d:77:36:ad:12:f1:24:
6b:f7:e3:25:b2:6d:71:46:bf:11:8e:25:50:ce:7e:21:f5:7d:
d1:83:f7:e6:d4:ef:8a:de:02:03:f1:50:b7:c4:8e:ea:dc:f2:
e3:f4:e7:4a:78:b0:7e:11:0d:2a:f6:62:8b:81:56:01:2e:3f:
1e:ae:a8:65:67:9f:aa:69:eb:fd:5e:b5:27:7c:8b:e4:33:b1:
9d:50:1a:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:31:42 2026 by rpki-client