Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/wWIF46KOlJ6Ji66uprRX1_kOLII.roa
File: wWIF46KOlJ6Ji66uprRX1_kOLII.roa (raw, json)
Hash identifier: 0HB6pKDMLPF/WkvAD+H+77/GNQBy0MbivA1mrgjPQ5U=
Subject key identifier: C1:62:05:E3:A2:8E:94:9E:89:8B:AE:AE:A6:B4:57:D7:F9:0E:2C:82
Certificate issuer: /CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C
Certificate serial: 97
Authority key identifier: FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/wWIF46KOlJ6Ji66uprRX1_kOLII.roa
Signing time: Wed 28 Jan 2026 08:05:42 +0000
ROA not before: Wed 28 Jan 2026 08:05:42 +0000
ROA not after: Wed 30 Dec 2026 15:30:20 +0000
asID: 152612
IP address blocks: 2402:43e0:c::/48 maxlen: 64
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 151 (0x97)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C
Validity
Not Before: Jan 28 08:05:42 2026 GMT
Not After : Dec 30 15:30:20 2026 GMT
Subject: CN=C16205E3A28E949E898BAEAEA6B457D7F90E2C82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:90:1c:02:9a:8b:17:c5:2b:af:0e:82:f0:59:
86:06:99:ea:61:23:7d:87:b0:e2:ee:56:a1:55:5a:
1d:dc:08:19:94:7b:6f:41:50:05:b8:14:d0:b4:bc:
08:1e:83:3f:fb:86:74:8d:cf:9f:4b:a0:e9:09:85:
80:b0:7c:a8:9c:d6:cf:95:44:c6:2e:7d:27:e1:3c:
74:0d:39:8f:25:99:8d:56:8c:0a:39:4b:3b:39:27:
2d:56:b8:cf:b5:bf:6f:f0:e6:7b:fb:03:8c:54:f4:
46:d1:06:ef:af:58:45:b5:67:e9:e6:70:21:85:03:
73:e0:cc:7a:59:a5:d5:b1:3e:4d:c5:d7:16:6c:9d:
9d:39:6a:6f:09:2c:c5:8d:9c:70:35:1f:be:a5:01:
ad:a3:35:45:5d:d1:12:88:c1:dd:02:fc:78:e6:f8:
65:fa:fc:cf:6b:8d:7b:54:a0:cf:bc:e5:b1:92:d9:
62:66:3a:9e:14:87:f7:a7:cb:24:38:da:8b:74:82:
ce:79:fa:f1:47:5f:fd:a3:d0:6c:7e:cb:04:3d:57:
f6:60:f6:62:29:7c:fb:e0:59:86:db:10:87:8d:01:
22:c4:57:a0:92:cd:e0:0c:e0:cf:c9:6e:80:e7:ff:
48:94:ba:93:82:a3:23:15:b9:49:dd:ff:f4:2b:0f:
19:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C1:62:05:E3:A2:8E:94:9E:89:8B:AE:AE:A6:B4:57:D7:F9:0E:2C:82
X509v3 Authority Key Identifier:
keyid:FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/wWIF46KOlJ6Ji66uprRX1_kOLII.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:43e0:c::/48
Signature Algorithm: sha256WithRSAEncryption
25:4d:86:2f:87:67:e5:b5:91:ac:14:c3:9d:06:5a:a5:90:01:
09:05:90:5b:95:15:4d:b4:72:2e:fe:22:16:29:24:1f:7c:b7:
c9:ba:70:6d:e0:52:42:69:74:0c:bb:a6:2a:f8:8b:55:c8:fc:
23:8b:b3:60:c3:60:63:3b:75:46:e9:2a:6c:14:02:e9:6e:1d:
99:9b:89:de:fb:80:1b:20:d1:83:62:7f:e0:72:97:a1:45:60:
91:13:c1:cc:a8:8e:17:17:24:63:4a:e2:36:01:3c:77:33:0d:
e2:c2:88:cc:4b:ab:8e:e9:78:f0:5f:df:9f:9f:34:d8:76:86:
10:b2:90:c7:85:ff:5f:57:83:90:60:f1:fc:9b:8d:55:00:e4:
95:e9:0f:b4:2c:6b:00:ce:af:22:a5:ee:73:f0:64:e9:b7:ce:
7b:74:88:47:56:d3:ea:b2:af:d6:4a:3d:4a:b1:a8:2e:a4:58:
93:d3:55:10:39:67:d5:68:6d:e6:59:1d:63:0d:5d:c3:75:ef:
24:a1:ea:29:02:8f:02:a3:09:6f:ce:31:5d:82:09:46:1f:a8:
01:25:33:dd:da:34:01:47:70:8a:e1:25:c1:8d:c3:50:bf:b0:
48:6c:03:cf:ec:44:28:74:94:d7:e9:4d:e1:b7:98:08:7f:08:
98:e0:23:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:57:30 2026 by rpki-client