Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWT/0/3130332e3232392e3130302e302f32332d3233203d3e203338383531.roa
File: 3130332e3232392e3130302e302f32332d3233203d3e203338383531.roa (raw, json)
Hash identifier: LLKqTVeKrjc2C1jKfd0XhQ5DwV55DZrdbsX87bNg7Bg=
Subject key identifier: EF:57:4A:4E:13:3A:66:2C:21:6B:2C:38:A2:D0:2F:78:1D:E5:67:D5
Certificate issuer: /CN=E8B38FAD1BC9D7E426603F6C204566C4AF30938F
Certificate serial: 07DEC0B511D20CE7BCBE642125DD9EDF71963E23
Authority key identifier: E8:B3:8F:AD:1B:C9:D7:E4:26:60:3F:6C:20:45:66:C4:AF:30:93:8F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E8B38FAD1BC9D7E426603F6C204566C4AF30938F.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWT/0/3130332e3232392e3130302e302f32332d3233203d3e203338383531.roa
Signing time: Mon 11 May 2026 16:42:30 +0000
ROA not before: Mon 11 May 2026 16:37:30 +0000
ROA not after: Mon 10 May 2027 16:42:30 +0000
asID: 38851
IP address blocks: 103.229.100.0/23 maxlen: 23
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
07:de:c0:b5:11:d2:0c:e7:bc:be:64:21:25:dd:9e:df:71:96:3e:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E8B38FAD1BC9D7E426603F6C204566C4AF30938F
Validity
Not Before: May 11 16:37:30 2026 GMT
Not After : May 10 16:42:30 2027 GMT
Subject: CN=EF574A4E133A662C216B2C38A2D02F781DE567D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:98:e2:81:a7:c0:b9:a1:81:7a:bd:78:de:7a:
d7:d0:65:03:1b:ff:66:f2:25:b3:a7:53:63:43:c7:
89:03:88:8d:b6:d4:f2:d0:33:64:16:68:52:0b:80:
f1:c1:82:12:38:f0:34:d0:af:47:4e:5f:49:6e:91:
8c:2e:6f:05:c1:81:1a:39:07:aa:07:bd:e8:5f:b0:
b3:6d:c8:6b:61:84:82:fb:03:5d:9e:f4:67:03:16:
b3:55:20:32:a8:c8:af:11:0b:59:1d:39:e3:97:67:
ab:14:d2:60:b9:51:98:62:47:8b:83:4c:d4:61:e3:
ea:44:1a:bb:83:78:c1:4d:9e:2e:a1:a7:43:e0:d6:
78:78:02:79:5e:d9:53:b9:60:de:b1:40:c4:6a:c8:
bc:08:1e:d5:17:83:7d:a2:f9:9a:7d:a5:52:04:c7:
8e:9b:1a:cf:18:b3:51:6a:c4:ef:a7:db:0c:3d:d0:
fd:07:a4:54:6f:4b:84:99:0f:9a:90:04:41:12:a1:
21:90:fd:4c:2f:c4:92:e3:3a:1e:da:fe:6a:1a:ef:
43:5d:ca:82:8f:2b:71:a8:64:00:b9:72:00:bd:d9:
3d:dd:a1:c5:c0:b0:5e:71:81:51:21:3d:6e:ad:27:
28:3b:07:6f:b7:c7:61:9a:cf:ea:55:78:fa:98:3a:
4d:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:57:4A:4E:13:3A:66:2C:21:6B:2C:38:A2:D0:2F:78:1D:E5:67:D5
X509v3 Authority Key Identifier:
keyid:E8:B3:8F:AD:1B:C9:D7:E4:26:60:3F:6C:20:45:66:C4:AF:30:93:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWT/0/E8B38FAD1BC9D7E426603F6C204566C4AF30938F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E8B38FAD1BC9D7E426603F6C204566C4AF30938F.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWT/0/3130332e3232392e3130302e302f32332d3233203d3e203338383531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.229.100.0/23
Signature Algorithm: sha256WithRSAEncryption
77:3b:0e:7d:0a:6c:e4:aa:18:75:3c:f0:5d:df:db:42:0d:23:
f1:c9:39:62:87:d8:b4:f5:ed:3c:2f:9c:0a:90:f2:bb:80:47:
97:87:cd:46:ad:c7:f0:c4:2a:1b:d8:d9:c0:7e:4e:2f:6c:59:
24:b5:f0:c3:3e:1f:0c:b9:0c:66:d1:3a:6d:0c:00:19:ee:25:
a3:55:b8:10:a9:2a:ff:88:78:9b:72:c3:7e:c4:70:16:87:c1:
f3:04:b5:ff:92:46:8b:32:7c:69:c1:c1:50:4d:05:d9:44:af:
20:fe:17:56:3f:7b:e0:95:3f:67:fd:e4:29:fa:cb:08:d2:f8:
75:29:0e:a6:1a:e6:c5:3d:d2:b2:f2:d1:a2:b8:dc:65:23:20:
cf:4a:a9:7a:4d:6a:dc:4c:74:38:a9:78:45:97:8c:13:3f:59:
10:d2:d5:6b:c8:d6:75:79:cd:15:7e:42:34:8e:eb:e3:3b:74:
14:67:68:10:3e:36:1d:3c:2b:28:c2:1a:2e:77:68:1a:1f:60:
0a:80:ce:72:dd:c8:3c:2c:3e:d9:e0:18:ad:75:7a:27:fd:5b:
55:5f:5c:37:44:7c:da:8c:77:a2:b2:4a:d2:21:57:1a:be:92:
9d:ef:22:f0:e8:06:80:04:9b:66:d9:f0:db:02:6f:99:22:b0:
91:22:d5:1b
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgIUB97AtRHSDOe8vmQhJd2e33GWPiMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRThCMzhGQUQxQkM5RDdFNDI2NjAzRjZDMjA0NTY2QzRB
RjMwOTM4RjAeFw0yNjA1MTExNjM3MzBaFw0yNzA1MTAxNjQyMzBaMDMxMTAvBgNV
BAMTKEVGNTc0QTRFMTMzQTY2MkMyMTZCMkMzOEEyRDAyRjc4MURFNTY3RDUwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYmOKBp8C5oYF6vXjeetfQZQMb
/2byJbOnU2NDx4kDiI221PLQM2QWaFILgPHBghI48DTQr0dOX0lukYwubwXBgRo5
B6oHvehfsLNtyGthhIL7A12e9GcDFrNVIDKoyK8RC1kdOeOXZ6sU0mC5UZhiR4uD
TNRh4+pEGruDeMFNni6hp0Pg1nh4Anle2VO5YN6xQMRqyLwIHtUXg32i+Zp9pVIE
x46bGs8Ys1FqxO+n2ww90P0HpFRvS4SZD5qQBEESoSGQ/UwvxJLjOh7a/moa70Nd
yoKPK3GoZAC5cgC92T3docXAsF5xgVEhPW6tJyg7B2+3x2Gaz+pVePqYOk0/AgMB
AAGjggHfMIIB2zAdBgNVHQ4EFgQU71dKThM6Ziwhayw4otAveB3lZ9UwHwYDVR0j
BBgwFoAU6LOPrRvJ1+QmYD9sIEVmxK8wk48wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud
HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdULzAv
RThCMzhGQUQxQkM5RDdFNDI2NjAzRjZDMjA0NTY2QzRBRjMwOTM4Ri5jcmwwbwYI
KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50
dy9ycGtpL1RXTklDQ0EvMS9FOEIzOEZBRDFCQzlEN0U0MjY2MDNGNkMyMDQ1NjZD
NEFGMzA5MzhGLmNlcjB7BggrBgEFBQcBCwRvMG0wawYIKwYBBQUHMAuGX3JzeW5j
Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdULzAvMzEzMDMzMmUzMjMyMzkyZTMx
MzAzMDJlMzAyZjMyMzMyZDMyMzMyMDNkM2UyMDMzMzgzODM1MzEucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAFn5WQwDQYJKoZIhvcNAQELBQADggEBAHc7Dn0KbOSqGHU88F3f20INI/HJOWKH
2LT17TwvnAqQ8ruAR5eHzUatx/DEKhvY2cB+Ti9sWSS18MM+Hwy5DGbROm0MABnu
JaNVuBCpKv+IeJtyw37EcBaHwfMEtf+SRosyfGnBwVBNBdlEryD+F1Y/e+CVP2f9
5Cn6ywjS+HUpDqYa5sU90rLy0aK43GUjIM9KqXpNatxMdDipeEWXjBM/WRDS1WvI
1nV5zRV+QjSO6+M7dBRnaBA+Nh08KyjCGi53aBofYAqAznLdyDwsPtngGK11eif9
W1VfXDdEfNqMd6KyStIhVxq+kp3vIvDoBoAEm2bZ8NsCb5kisJEi1Rs=
-----END CERTIFICATE-----
Generated at Tue May 12 22:32:11 2026 by rpki-client