Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TIH/0/3130332e3132392e3134372e302f32342d3234203d3e203230343733.roa
File: 3130332e3132392e3134372e302f32342d3234203d3e203230343733.roa (raw, json)
Hash identifier: jLHkK85y6D6I/P5jhpzcJkW6hQFZ18OruOJ4poV43Y8=
Subject key identifier: A3:03:EA:09:42:74:28:68:FB:AA:54:8C:E5:7F:A3:74:59:A8:4D:B1
Certificate issuer: /CN=56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3
Certificate serial: 51CF6CD4D209B334E32DD0E8D41D617BB39DF5F7
Authority key identifier: 56:D2:E2:5E:40:9F:E9:56:A1:4A:8F:5A:5C:0E:EA:69:CC:F5:0E:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TIH/0/3130332e3132392e3134372e302f32342d3234203d3e203230343733.roa
Signing time: Mon 11 May 2026 16:50:17 +0000
ROA not before: Mon 11 May 2026 16:45:17 +0000
ROA not after: Mon 10 May 2027 16:50:17 +0000
asID: 20473
IP address blocks: 103.129.147.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
51:cf:6c:d4:d2:09:b3:34:e3:2d:d0:e8:d4:1d:61:7b:b3:9d:f5:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3
Validity
Not Before: May 11 16:45:17 2026 GMT
Not After : May 10 16:50:17 2027 GMT
Subject: CN=A303EA0942742868FBAA548CE57FA37459A84DB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:b8:8a:c9:20:4c:bf:a2:78:be:37:f9:e9:3e:
94:f3:0b:a7:47:74:7b:6e:ed:c4:6f:07:9f:45:27:
8e:b7:cf:41:ee:ef:82:d1:10:84:43:c4:d4:d2:af:
9c:11:6f:cb:17:0f:83:73:ec:cc:96:c7:a3:8b:83:
13:24:8a:1e:e9:c4:b6:4b:5a:d6:bd:52:f3:ad:96:
82:21:ce:c1:bf:e0:c7:6d:34:b6:fc:96:89:a5:6e:
8e:17:4f:09:04:57:33:00:cf:ba:77:16:52:98:63:
9f:f4:10:de:08:18:20:dc:a4:f5:d3:01:b4:f7:53:
31:42:37:40:52:30:94:7b:3f:97:06:09:00:2d:55:
1a:72:a1:bb:50:9b:e2:ed:c4:2a:e2:46:f8:1e:ff:
ac:e6:61:db:f3:1c:77:6a:fc:5a:ee:13:02:c9:fc:
5b:5c:aa:8c:b8:f8:c5:ba:6a:11:c2:69:aa:8d:65:
42:e0:10:14:e9:f1:0c:e9:20:e6:2e:25:f1:aa:2a:
a5:95:07:35:b1:c4:48:0c:69:c9:1b:5d:00:dd:80:
da:f5:59:ff:b2:0d:dc:2f:66:88:de:93:39:b1:24:
7b:0b:c3:92:79:b8:53:96:56:c8:65:09:b5:e8:33:
e9:5a:20:0c:fb:af:73:e2:5a:84:a4:7a:2e:78:cd:
ee:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:03:EA:09:42:74:28:68:FB:AA:54:8C:E5:7F:A3:74:59:A8:4D:B1
X509v3 Authority Key Identifier:
keyid:56:D2:E2:5E:40:9F:E9:56:A1:4A:8F:5A:5C:0E:EA:69:CC:F5:0E:A3
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TIH/0/3130332e3132392e3134372e302f32342d3234203d3e203230343733.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.129.147.0/24
Signature Algorithm: sha256WithRSAEncryption
6c:e8:5e:4a:10:90:cd:e7:5d:59:53:cc:e7:5c:5e:fd:a7:e5:
ea:5d:fa:a6:b6:30:ff:99:c3:b3:a9:18:ce:ca:f7:fb:32:17:
a4:be:d0:82:9b:14:a3:f7:ba:8d:6f:78:99:d9:0a:28:70:b4:
cb:71:57:5d:04:b9:c2:d7:b3:55:46:78:ef:20:f1:1c:34:fe:
9b:69:67:06:aa:b8:50:25:d1:22:e8:71:a3:b2:6f:c3:72:ff:
40:78:a1:ec:fd:8c:ce:6a:74:2e:b7:6f:b6:d1:90:a7:98:ae:
86:d5:ad:6e:a3:3c:59:65:0c:14:19:7a:98:51:f2:a2:7d:e6:
c1:5e:11:b3:eb:96:73:5f:7f:31:03:39:0a:69:ff:79:1e:c7:
5c:54:1d:cc:f4:e8:d9:fa:d5:0c:04:9e:cd:2d:e3:e1:37:51:
27:2e:9d:a5:7c:a7:ea:cd:fb:5b:c2:a5:39:cd:16:29:50:0a:
4c:9d:85:d1:80:86:1c:ea:b1:d1:fd:81:01:bf:3a:e3:44:5a:
0e:b7:eb:b3:47:53:9e:b8:80:37:37:8c:aa:83:36:d9:49:1b:
21:29:d7:a3:8f:c6:3d:b6:61:19:24:f1:06:9d:34:1a:d6:69:
6f:c9:5c:af:49:c3:b1:20:66:67:80:49:28:a3:a3:07:94:4d:
76:45:2c:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:44:53 2026 by rpki-client