Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SYSNET/0/3231302e36372e3131322e302f32302d3234203d3e2034373833.roa
File: 3231302e36372e3131322e302f32302d3234203d3e2034373833.roa (raw, json)
Hash identifier: BM8k9MBagiU8IsLNqTHPl5SkAPeVPuJgXWsdfYnE6C4=
Subject key identifier: C3:BB:0B:B3:B8:4D:68:B9:24:7E:69:E1:7C:3D:28:05:FD:8F:A3:CE
Certificate issuer: /CN=EDE7389B6D9A335D6B6FDD4286DB79011F87554B
Certificate serial: 0FA9A0A07A6EBCCD414D7C986EF4A56159CA5259
Authority key identifier: ED:E7:38:9B:6D:9A:33:5D:6B:6F:DD:42:86:DB:79:01:1F:87:55:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/EDE7389B6D9A335D6B6FDD4286DB79011F87554B.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SYSNET/0/3231302e36372e3131322e302f32302d3234203d3e2034373833.roa
Signing time: Mon 11 May 2026 16:54:23 +0000
ROA not before: Mon 11 May 2026 16:49:23 +0000
ROA not after: Mon 10 May 2027 16:54:23 +0000
asID: 4783
IP address blocks: 210.67.112.0/20 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
0f:a9:a0:a0:7a:6e:bc:cd:41:4d:7c:98:6e:f4:a5:61:59:ca:52:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDE7389B6D9A335D6B6FDD4286DB79011F87554B
Validity
Not Before: May 11 16:49:23 2026 GMT
Not After : May 10 16:54:23 2027 GMT
Subject: CN=C3BB0BB3B84D68B9247E69E17C3D2805FD8FA3CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:a5:c7:b8:80:1e:ab:ce:d1:12:12:4d:34:db:
33:5d:34:06:b9:25:43:fb:61:95:30:61:6c:a5:05:
19:b8:b9:54:1d:4c:ef:e0:a0:79:30:9a:88:f1:4c:
6e:8e:39:fe:3e:01:44:c2:36:90:47:a0:84:3a:4a:
66:6a:b4:7d:37:a4:5e:70:7c:57:7e:37:a4:72:57:
d2:5b:90:13:59:ee:96:89:c7:bc:e4:0d:01:28:d8:
90:ef:c5:f1:04:42:55:a5:13:02:47:71:47:0f:e5:
a9:bb:c8:d8:5f:e8:7b:fc:7f:c8:9b:40:99:56:e9:
6b:51:45:2a:33:bf:de:53:44:ec:8c:7c:a6:19:1a:
39:de:4b:b2:9b:4d:8b:7a:d9:2f:d4:d1:ab:6e:2d:
db:a0:e6:06:44:ff:22:8f:95:2c:73:82:3d:48:3a:
f6:39:07:67:6a:5f:5b:22:20:77:65:ee:fa:0c:ff:
c1:a8:22:eb:0f:6d:d3:fe:d1:8e:d1:43:09:1a:c3:
69:2a:7a:04:7b:a2:b0:72:29:25:dd:dc:4b:a7:6c:
cd:8c:78:e9:ff:b3:5a:81:6f:50:fe:aa:1a:1f:90:
ae:72:e1:a5:55:b6:9f:72:42:8d:d9:ac:a1:af:4f:
72:bd:6d:7f:1a:49:49:41:77:4d:fe:03:de:26:79:
be:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:BB:0B:B3:B8:4D:68:B9:24:7E:69:E1:7C:3D:28:05:FD:8F:A3:CE
X509v3 Authority Key Identifier:
keyid:ED:E7:38:9B:6D:9A:33:5D:6B:6F:DD:42:86:DB:79:01:1F:87:55:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SYSNET/0/EDE7389B6D9A335D6B6FDD4286DB79011F87554B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/EDE7389B6D9A335D6B6FDD4286DB79011F87554B.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SYSNET/0/3231302e36372e3131322e302f32302d3234203d3e2034373833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.67.112.0/20
Signature Algorithm: sha256WithRSAEncryption
b3:c7:1d:12:a9:f6:3c:ad:16:7b:f4:a5:d5:76:0a:97:d1:6a:
2f:4c:ab:d2:9d:fb:89:77:0f:ba:5d:e4:1a:e4:86:92:f3:16:
76:ba:d3:4c:9f:1d:cd:ca:10:3e:26:76:5c:7e:02:1a:15:e2:
c1:d7:f7:7e:b1:a7:a4:37:a6:51:2d:1c:ec:20:35:5c:47:16:
e5:23:b1:c7:69:f3:0b:cf:c4:61:b6:21:27:e6:28:19:9f:a5:
2d:0c:e7:2d:2b:93:19:5e:1d:e2:ce:33:4f:c4:e3:64:75:ff:
4f:b8:eb:b8:de:f5:59:c1:53:a9:9b:42:0a:c8:a0:4b:89:9e:
ce:e5:56:de:cb:9d:cc:1a:3b:c7:2a:e0:b2:c4:79:d3:49:50:
b9:a5:38:2d:21:2e:3a:f7:c0:31:4f:b9:90:42:a7:1a:eb:8f:
e4:a3:23:1d:21:1c:fb:3e:20:29:b6:89:2f:06:d9:b8:39:e5:
f1:6c:39:aa:1c:44:40:7a:ce:48:92:c4:38:e5:b5:fc:f8:0b:
8a:aa:ed:23:e7:6b:68:0d:2e:98:e0:0c:46:56:77:bd:f8:68:
a6:74:4a:96:27:7c:cd:d2:85:f4:c4:96:65:32:e4:7c:b6:3f:
d4:ce:68:dd:40:df:e8:d8:00:2a:4c:73:86:5d:82:d6:2a:b1:
79:8b:25:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:59:53 2026 by rpki-client