Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TAIFO7716/0/3130312e332e302e302f31362d3234203d3e20313331353834.roa
File: 3130312e332e302e302f31362d3234203d3e20313331353834.roa (raw, json)
Hash identifier: QK58oNISExBH1krqwRJCbzRqCkLst8b3ND7bZr4lRXQ=
Subject key identifier: 9A:34:FC:C1:F1:33:96:90:63:D1:5C:D5:11:EB:B4:A0:41:1D:56:C3
Certificate issuer: /CN=E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B
Certificate serial: 038712AF72B0D606EF84963BE2AFFAEB9D834BC7
Authority key identifier: E7:E1:DA:39:A6:AC:AC:13:A4:43:4C:0B:07:A1:5F:DD:6D:C3:93:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TAIFO7716/0/3130312e332e302e302f31362d3234203d3e20313331353834.roa
Signing time: Mon 11 May 2026 17:19:46 +0000
ROA not before: Mon 11 May 2026 17:14:46 +0000
ROA not after: Mon 10 May 2027 17:19:46 +0000
asID: 131584
IP address blocks: 101.3.0.0/16 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
03:87:12:af:72:b0:d6:06:ef:84:96:3b:e2:af:fa:eb:9d:83:4b:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B
Validity
Not Before: May 11 17:14:46 2026 GMT
Not After : May 10 17:19:46 2027 GMT
Subject: CN=9A34FCC1F133969063D15CD511EBB4A0411D56C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:1a:20:b9:77:70:c1:d4:9a:e8:73:14:29:66:
a6:37:2c:ed:97:9f:e6:b0:da:3c:06:34:40:60:ff:
cd:a8:c0:8e:65:3b:f1:14:56:17:bc:bb:80:62:73:
73:1f:dc:a8:03:97:9c:07:60:fe:14:4e:a2:70:64:
e4:f0:dc:74:54:b8:eb:d3:e3:08:b1:e9:eb:83:68:
9d:5e:32:b5:16:a2:14:e2:78:3c:1a:96:57:5d:92:
d0:2e:75:8e:96:30:d1:69:b6:cc:80:c7:23:42:d5:
39:10:7b:47:9e:40:9b:80:b0:12:81:3a:7a:7e:2f:
7b:78:be:13:94:ee:f6:40:4d:af:90:8a:a8:e9:4c:
23:78:6c:14:78:51:23:67:3f:d6:cc:45:c4:5c:a5:
ac:4a:fa:0f:31:10:30:b0:da:25:17:89:3d:90:c4:
6d:ce:d1:29:b7:d0:19:08:3f:a8:a1:2b:21:13:57:
5b:0f:f9:2e:fb:f2:81:b3:c5:94:15:68:36:71:67:
8f:1d:68:93:24:68:7a:67:2b:7d:b7:28:5d:3d:5b:
d1:95:76:29:d7:f8:a0:fe:f4:fb:16:f8:87:fe:95:
1f:f8:a9:bd:97:76:ab:31:e0:5a:2b:8c:e8:27:e4:
fd:f1:20:02:5c:7b:c9:49:48:13:22:e7:24:b0:82:
94:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:34:FC:C1:F1:33:96:90:63:D1:5C:D5:11:EB:B4:A0:41:1D:56:C3
X509v3 Authority Key Identifier:
keyid:E7:E1:DA:39:A6:AC:AC:13:A4:43:4C:0B:07:A1:5F:DD:6D:C3:93:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TAIFO7716/0/E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E7E1DA39A6ACAC13A4434C0B07A15FDD6DC3934B.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TAIFO7716/0/3130312e332e302e302f31362d3234203d3e20313331353834.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
101.3.0.0/16
Signature Algorithm: sha256WithRSAEncryption
12:ba:2e:c5:10:fd:b7:49:49:de:30:4a:a6:8e:b8:7d:fb:2c:
77:c8:a1:76:b1:2b:45:01:79:fd:66:0f:11:80:34:1a:2f:8e:
1e:70:d3:81:ef:34:cb:39:7e:04:3a:50:9d:bf:13:7d:45:65:
3b:0f:88:ce:ee:7d:70:fc:69:30:7d:b3:67:63:c7:41:e7:fa:
53:e5:76:fa:27:8c:6f:32:63:2d:73:97:61:44:db:69:2d:1b:
f9:02:d2:90:36:6c:52:82:19:d9:2f:c1:ae:aa:bb:c1:6c:f1:
22:f2:77:d4:32:e8:65:46:2b:77:04:70:aa:4f:5c:5e:21:2a:
46:1e:50:c4:bd:08:2a:37:f9:87:ce:d6:6f:45:f7:e8:dc:1c:
2d:00:57:59:43:fd:ab:cb:90:6a:87:8e:9f:b8:26:fe:3d:05:
81:3a:ef:b1:a2:15:e9:a6:ff:cd:ec:3e:45:1f:bf:88:4d:82:
10:aa:33:3a:2d:c7:da:76:80:c2:70:04:a6:77:a6:9e:22:27:
72:d9:a7:93:02:01:db:69:8e:70:5b:19:83:d5:8b:b5:d6:14:
89:0d:77:26:4f:5f:43:3e:2d:09:07:31:60:6e:1c:25:65:e2:
07:2e:47:da:4b:66:40:6b:1a:bd:b0:54:0f:b2:59:57:9d:df:
80:35:3c:03
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Wed May 13 02:27:20 2026 by rpki-client