Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SYVC/0/323430303a363365303a3a2f33322d3438203d3e2037343833.roa
File: 323430303a363365303a3a2f33322d3438203d3e2037343833.roa (raw, json)
Hash identifier: rHuxaTKbxFOG3QVLxlmDpVGC4VQ2hgu+8e9CRQbtD+o=
Subject key identifier: 91:27:FF:D3:0E:C7:CE:94:90:5B:47:77:70:DA:C7:B1:30:A5:0D:9D
Certificate issuer: /CN=3F3E6E8DF4F46DDFE048F71C5AEC8616FDD7D737
Certificate serial: 6D26010D378DB3742A5AC96E053CD4D61A003C05
Authority key identifier: 3F:3E:6E:8D:F4:F4:6D:DF:E0:48:F7:1C:5A:EC:86:16:FD:D7:D7:37
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F3E6E8DF4F46DDFE048F71C5AEC8616FDD7D737.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SYVC/0/323430303a363365303a3a2f33322d3438203d3e2037343833.roa
Signing time: Mon 11 May 2026 17:37:41 +0000
ROA not before: Mon 11 May 2026 17:32:41 +0000
ROA not after: Mon 10 May 2027 17:37:41 +0000
asID: 7483
IP address blocks: 2400:63e0::/32 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6d:26:01:0d:37:8d:b3:74:2a:5a:c9:6e:05:3c:d4:d6:1a:00:3c:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F3E6E8DF4F46DDFE048F71C5AEC8616FDD7D737
Validity
Not Before: May 11 17:32:41 2026 GMT
Not After : May 10 17:37:41 2027 GMT
Subject: CN=9127FFD30EC7CE94905B477770DAC7B130A50D9D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:fa:6f:46:81:5e:b4:2d:6d:63:81:59:50:02:
d6:90:ed:60:3e:33:84:8e:04:7c:37:5e:3b:02:f3:
23:84:6d:db:cd:95:3f:76:40:8d:f4:72:91:1a:3e:
61:81:21:a8:a0:f6:83:80:c0:96:69:be:9b:1e:1e:
34:bb:1d:7d:ae:9a:c1:db:67:0a:14:ca:18:41:17:
c0:85:7f:1b:d2:d3:3e:81:ae:12:67:d7:52:31:ca:
ad:90:53:36:f5:d9:14:72:03:97:d7:03:d8:7f:4e:
e5:a5:a1:6a:0f:5d:0a:af:a9:b0:22:93:1f:42:06:
0c:8a:9c:af:e0:dc:c2:31:44:38:56:8c:1a:a7:2d:
94:d7:81:56:ed:71:bd:63:b6:b8:e7:33:60:2b:8b:
71:4e:0a:56:c6:fe:ac:eb:17:f0:99:8c:a9:5d:30:
cd:75:6e:76:bd:72:0c:b7:cc:ef:0d:8d:44:82:0a:
58:c4:ef:55:0d:bb:21:94:1e:26:0c:6b:0c:53:5a:
42:a4:49:56:b1:59:ba:aa:9f:23:1e:24:cd:af:e2:
39:f2:11:e1:e2:c9:ca:f8:65:a8:5d:eb:7c:b4:8f:
28:85:1d:64:fd:ce:56:3c:aa:5a:c9:49:ac:6d:61:
96:1d:48:63:3a:fa:71:82:35:6f:38:17:b9:c2:64:
40:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:27:FF:D3:0E:C7:CE:94:90:5B:47:77:70:DA:C7:B1:30:A5:0D:9D
X509v3 Authority Key Identifier:
keyid:3F:3E:6E:8D:F4:F4:6D:DF:E0:48:F7:1C:5A:EC:86:16:FD:D7:D7:37
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SYVC/0/3F3E6E8DF4F46DDFE048F71C5AEC8616FDD7D737.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F3E6E8DF4F46DDFE048F71C5AEC8616FDD7D737.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SYVC/0/323430303a363365303a3a2f33322d3438203d3e2037343833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2400:63e0::/32
Signature Algorithm: sha256WithRSAEncryption
72:b2:b3:79:96:bd:a7:05:a2:9e:7a:3e:ba:76:e2:99:3f:44:
2d:2b:90:56:68:df:de:24:16:54:4a:b2:25:ec:62:07:9b:d2:
bb:04:94:22:44:b8:c1:5b:d0:7e:38:28:4a:69:20:e5:2c:38:
4c:5d:ae:c0:4e:bd:42:eb:82:00:4b:6a:fb:00:60:9e:7b:92:
06:8a:1b:72:f0:23:65:a9:38:e6:17:22:05:1b:ab:7b:e6:4b:
9a:12:27:f0:fa:f2:ce:36:f6:e7:b5:d1:03:e0:c8:2c:c1:06:
30:9e:73:5a:45:51:5d:ec:d6:49:6e:11:82:92:84:06:b4:97:
83:4d:dc:5b:ed:eb:e3:77:21:ad:ca:08:ec:a8:ff:fc:53:06:
a4:24:cf:d3:8f:e0:de:68:ac:d1:31:93:97:92:12:6e:bc:22:
d5:56:e4:1c:43:6e:c5:80:36:71:b9:6b:9d:53:fb:3f:ed:79:
d5:43:c6:91:a3:89:95:2a:5a:8f:fa:a1:68:ce:c8:93:77:9c:
76:f9:c2:f5:6f:90:75:7e:b1:2c:e3:53:29:cb:95:46:af:18:
84:36:f9:98:19:d0:3f:4d:83:20:ce:82:ca:b5:96:eb:6c:a5:
28:72:24:78:b9:2d:8e:74:a2:0a:e5:91:bb:72:71:f7:38:af:
ba:f3:76:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:21:38 2026 by rpki-client