Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/UNIGATE/0/3130332e3132342e34322e302f32332d3234203d3e20313331363237.roa
File: 3130332e3132342e34322e302f32332d3234203d3e20313331363237.roa (raw, json)
Hash identifier: ahzbTn0ryIxcgtgNPBswFdM5hAnHdiiLMvDKSEOceoQ=
Subject key identifier: CD:4D:75:DC:63:D6:86:2B:9C:08:64:90:A0:08:1F:C9:8C:DD:15:BF
Certificate issuer: /CN=3442A34301CC610CF272F765ABBAFC9ED1F4A9BE
Certificate serial: 7125E41E041022CBCE6B0CCC87E47517F2CF7243
Authority key identifier: 34:42:A3:43:01:CC:61:0C:F2:72:F7:65:AB:BA:FC:9E:D1:F4:A9:BE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/UNIGATE/0/3130332e3132342e34322e302f32332d3234203d3e20313331363237.roa
Signing time: Mon 11 May 2026 17:39:57 +0000
ROA not before: Mon 11 May 2026 17:34:57 +0000
ROA not after: Mon 10 May 2027 17:39:57 +0000
asID: 131627
IP address blocks: 103.124.42.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
71:25:e4:1e:04:10:22:cb:ce:6b:0c:cc:87:e4:75:17:f2:cf:72:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3442A34301CC610CF272F765ABBAFC9ED1F4A9BE
Validity
Not Before: May 11 17:34:57 2026 GMT
Not After : May 10 17:39:57 2027 GMT
Subject: CN=CD4D75DC63D6862B9C086490A0081FC98CDD15BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f8:29:6d:56:e9:89:9f:91:16:17:02:79:18:
4e:53:d4:1c:da:93:8e:b6:e4:5a:67:00:f1:cf:cd:
c5:2b:26:03:97:14:46:66:11:4e:f6:08:62:61:12:
35:79:d2:1c:cc:de:74:91:1a:c5:1b:35:8e:7d:8a:
3e:b4:5d:2c:d5:9c:d6:9d:85:f1:83:4f:47:8e:79:
38:e2:12:4d:5f:1a:82:e1:7b:08:85:9b:5f:b1:cf:
98:e0:8b:7e:8a:bd:d9:6d:72:15:59:bd:5a:47:56:
c3:8a:d7:9b:e6:d7:84:3b:6b:6c:98:22:24:ba:3e:
e0:7f:6e:ad:13:4f:32:4f:50:6f:c8:14:35:9a:7b:
1c:c6:64:7e:28:1e:04:bb:76:88:9b:46:78:a1:86:
54:76:c0:d0:1e:86:47:fb:67:43:46:f3:3a:9b:2a:
e9:b4:0d:c9:98:d4:4d:a8:b4:bc:7a:9b:0f:5e:83:
3f:32:76:9c:20:a4:41:be:bf:a4:91:09:74:77:ec:
0e:95:e4:9e:b2:20:45:ff:b1:12:8d:68:8a:3e:2e:
59:33:56:c2:08:34:f5:f9:97:f4:55:86:b6:d7:45:
fd:86:2c:e7:08:20:52:14:af:e9:10:97:b8:c8:48:
72:25:bc:b2:30:6e:a5:c5:b6:70:a7:40:1d:4a:90:
10:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:4D:75:DC:63:D6:86:2B:9C:08:64:90:A0:08:1F:C9:8C:DD:15:BF
X509v3 Authority Key Identifier:
keyid:34:42:A3:43:01:CC:61:0C:F2:72:F7:65:AB:BA:FC:9E:D1:F4:A9:BE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/UNIGATE/0/3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3442A34301CC610CF272F765ABBAFC9ED1F4A9BE.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/UNIGATE/0/3130332e3132342e34322e302f32332d3234203d3e20313331363237.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.124.42.0/23
Signature Algorithm: sha256WithRSAEncryption
10:9e:fb:d0:8e:03:27:a8:46:22:f2:cd:75:95:e3:26:13:93:
6c:82:6a:a5:8a:36:2c:47:28:45:48:95:70:0c:8c:ee:e8:7e:
36:97:eb:f5:20:9f:4f:46:7e:b0:16:36:af:c0:00:6d:7c:ff:
40:27:14:92:66:22:b7:09:ac:1d:8c:14:b8:83:4b:f5:61:30:
a3:cf:56:2f:cd:81:28:86:0c:98:56:cd:fd:80:66:63:26:3e:
6e:b2:43:99:63:44:8d:32:10:04:10:46:83:e3:ad:14:6d:34:
33:8b:a6:63:ad:25:6a:5f:01:f5:97:c6:be:d3:07:cc:12:32:
9a:64:15:05:a3:51:b4:3d:f3:30:2b:1a:e5:22:c0:a6:76:73:
28:2a:22:bc:da:2b:28:bd:17:60:a6:e5:5e:e2:bd:77:70:a0:
07:f0:74:03:f3:c9:7c:58:3e:6c:d0:88:67:ac:59:71:0d:ae:
3b:65:29:99:95:cc:83:60:aa:e2:4e:e9:70:98:81:25:50:55:
48:3c:b3:de:cd:09:3d:44:6c:01:c8:7c:97:0e:1b:af:b2:9d:
12:6a:94:ed:56:ae:60:6b:06:28:b1:42:68:0a:f2:a6:63:a3:
39:35:b8:f1:3a:c6:4b:a0:7e:cf:4b:43:82:cd:88:23:a0:1d:
73:b5:0e:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:36:48 2026 by rpki-client