Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TIH/0/3130332e3132392e3134342e302f32342d3234203d3e2035303635.roa
File: 3130332e3132392e3134342e302f32342d3234203d3e2035303635.roa (raw, json)
Hash identifier: r6atDIqgperuF3RfaudvB73QXSoXlYlurO9YxRuzsEo=
Subject key identifier: A1:35:14:4E:15:AA:34:24:D5:E5:D6:2C:EF:25:D5:44:4B:0B:46:F3
Certificate issuer: /CN=56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3
Certificate serial: 49CAAFC433FB996AE54FB170050BDDBF9383FF3F
Authority key identifier: 56:D2:E2:5E:40:9F:E9:56:A1:4A:8F:5A:5C:0E:EA:69:CC:F5:0E:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TIH/0/3130332e3132392e3134342e302f32342d3234203d3e2035303635.roa
Signing time: Mon 11 May 2026 17:39:47 +0000
ROA not before: Mon 11 May 2026 17:34:47 +0000
ROA not after: Mon 10 May 2027 17:39:47 +0000
asID: 5065
IP address blocks: 103.129.144.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
49:ca:af:c4:33:fb:99:6a:e5:4f:b1:70:05:0b:dd:bf:93:83:ff:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3
Validity
Not Before: May 11 17:34:47 2026 GMT
Not After : May 10 17:39:47 2027 GMT
Subject: CN=A135144E15AA3424D5E5D62CEF25D5444B0B46F3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:6e:a3:27:69:27:a4:1b:a0:9f:7d:fa:c0:a2:
a7:2d:aa:e6:3c:69:0d:16:89:89:6e:b3:fc:33:9b:
95:f1:7b:90:68:5a:e9:4a:0e:81:f2:1d:f5:dc:0b:
f1:e0:18:d9:8c:f0:0d:0a:90:cc:29:17:f2:bf:67:
b0:cb:9c:3e:84:08:74:a3:01:b6:b3:d9:15:04:e7:
41:e3:15:14:bf:ed:bc:ca:3a:c0:bd:45:29:a4:f3:
c4:9a:1e:93:bb:e4:42:3a:5f:f5:40:3e:1d:6c:b4:
3f:0b:e0:c7:59:47:88:da:9d:5f:cf:93:31:9f:ab:
b2:64:b0:e6:db:8b:73:82:1b:32:cb:b6:4e:b5:56:
8a:1f:95:fd:03:0f:de:48:1a:d6:c3:02:77:20:8f:
74:3d:e5:cd:18:02:88:8f:d1:0d:3d:1d:e6:e7:23:
d4:88:4f:c0:92:5f:ba:1b:40:9a:e5:3a:21:51:df:
d7:5d:3a:5d:66:81:6e:44:89:50:9a:01:f5:8b:71:
10:1f:d9:14:64:b4:17:73:4f:e1:93:37:97:bb:3d:
e9:c6:ef:67:5d:8e:9e:cd:ae:9f:9c:d9:69:ea:af:
8b:ac:f7:18:e4:c8:41:e3:76:e3:e1:26:f6:df:41:
50:34:a8:c1:70:3b:80:a0:3b:8a:94:46:ab:71:17:
00:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:35:14:4E:15:AA:34:24:D5:E5:D6:2C:EF:25:D5:44:4B:0B:46:F3
X509v3 Authority Key Identifier:
keyid:56:D2:E2:5E:40:9F:E9:56:A1:4A:8F:5A:5C:0E:EA:69:CC:F5:0E:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TIH/0/3130332e3132392e3134342e302f32342d3234203d3e2035303635.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.129.144.0/24
Signature Algorithm: sha256WithRSAEncryption
5f:bf:71:81:2c:94:ee:da:a8:5d:dd:8a:fb:48:ee:f4:0d:9c:
ab:b2:5e:b0:15:0d:d3:04:d1:4a:3d:41:09:07:8a:71:1b:46:
c6:12:59:e7:13:c5:59:75:76:2c:12:4c:f9:1e:16:6d:f3:58:
1c:0f:9a:30:70:76:b0:b5:b1:82:83:e7:53:f5:c4:b9:08:34:
8e:2e:3c:cc:08:5d:d6:c0:23:fc:bc:75:03:29:eb:d9:6e:87:
bd:69:18:8b:cd:46:df:12:40:b8:b9:a9:f1:17:1a:e1:08:70:
f5:ee:5b:cd:a7:22:3b:30:3b:c2:5d:15:41:f9:09:15:e6:14:
6b:bd:0e:44:78:5c:bd:15:15:30:04:eb:d0:9d:1f:b8:ab:c4:
d0:1b:02:cd:69:ea:36:0f:ff:d0:97:c8:c3:10:75:35:49:34:
e0:0d:02:38:de:a1:91:dc:b5:55:1b:1f:0f:18:75:d0:30:78:
51:ca:92:21:98:92:6a:78:6f:35:54:d1:f3:0f:72:bc:54:e5:
61:6e:e5:0a:63:03:12:6b:b1:8e:04:2e:65:0a:d0:4a:d6:6b:
a2:85:26:a7:6c:e9:26:44:6a:5f:7a:e1:63:e2:de:65:a3:f3:
90:14:b8:8e:9f:c4:ad:19:67:91:0b:36:ed:88:3c:82:c4:8d:
a5:47:d3:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:19:28 2026 by rpki-client