Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/104IT/0/3230322e382e31342e302f32332d3234203d3e203138343130.roa
File: 3230322e382e31342e302f32332d3234203d3e203138343130.roa (raw, json)
Hash identifier: tZyg6sWa2FgNEO9W1AtN8+txS3cqFlmDzyg2hHDPbYs=
Subject key identifier: FB:73:0A:5F:DB:6B:B2:9A:D9:82:06:79:11:2D:A4:7A:FF:82:63:EF
Certificate issuer: /CN=F8132DC534387893755F94AE2B0F8685BA7C8D6C
Certificate serial: 4755B36805033A19AE16B412FF81D213068BF735
Authority key identifier: F8:13:2D:C5:34:38:78:93:75:5F:94:AE:2B:0F:86:85:BA:7C:8D:6C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F8132DC534387893755F94AE2B0F8685BA7C8D6C.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/104IT/0/3230322e382e31342e302f32332d3234203d3e203138343130.roa
Signing time: Mon 11 May 2026 17:39:13 +0000
ROA not before: Mon 11 May 2026 17:34:13 +0000
ROA not after: Mon 10 May 2027 17:39:13 +0000
asID: 18410
IP address blocks: 202.8.14.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
47:55:b3:68:05:03:3a:19:ae:16:b4:12:ff:81:d2:13:06:8b:f7:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F8132DC534387893755F94AE2B0F8685BA7C8D6C
Validity
Not Before: May 11 17:34:13 2026 GMT
Not After : May 10 17:39:13 2027 GMT
Subject: CN=FB730A5FDB6BB29AD9820679112DA47AFF8263EF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:2f:c5:f3:54:3d:66:ce:7c:f5:80:63:42:f3:
f7:08:d0:88:fd:77:82:da:9b:48:92:88:52:7a:ac:
2d:ba:af:43:e5:40:d1:4f:c3:5b:b3:87:d5:c5:00:
f6:fd:13:b5:ed:dd:ea:7c:34:fd:17:a1:b6:3c:ba:
1b:5f:f3:88:81:58:23:5d:ad:69:fa:af:2a:60:96:
10:75:16:7f:0e:eb:70:e4:5c:9b:90:0e:04:43:4c:
f8:cb:2b:4d:b3:c1:8f:75:47:53:e2:fa:5d:d7:ac:
df:4f:9d:e7:9f:0a:e6:47:df:7d:27:8e:95:24:8e:
a2:b1:96:a0:34:10:c5:d2:4e:4c:73:db:af:a2:b2:
3b:fe:c6:9e:1f:4c:aa:93:22:14:a1:02:bb:a1:b7:
e8:74:7d:16:b1:27:67:ca:0d:27:50:d4:7c:44:03:
e2:13:68:da:81:de:a2:00:52:8d:23:1e:16:f0:77:
3b:77:7c:46:da:ba:08:e1:1b:b6:ac:a0:ce:1c:ac:
de:77:fe:ab:8e:21:de:9f:70:97:a4:14:48:6b:b3:
04:ae:3d:49:fe:7f:ff:74:90:3e:51:10:d2:ff:21:
57:9f:92:57:75:37:5a:76:96:37:24:d3:f3:16:2f:
bd:a5:18:24:73:ee:25:8c:41:42:87:ff:ac:d4:03:
73:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:73:0A:5F:DB:6B:B2:9A:D9:82:06:79:11:2D:A4:7A:FF:82:63:EF
X509v3 Authority Key Identifier:
keyid:F8:13:2D:C5:34:38:78:93:75:5F:94:AE:2B:0F:86:85:BA:7C:8D:6C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/104IT/0/F8132DC534387893755F94AE2B0F8685BA7C8D6C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F8132DC534387893755F94AE2B0F8685BA7C8D6C.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/104IT/0/3230322e382e31342e302f32332d3234203d3e203138343130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.8.14.0/23
Signature Algorithm: sha256WithRSAEncryption
29:af:13:b6:12:bf:94:70:ed:c5:de:b5:7e:33:6a:81:45:94:
6c:a0:64:81:e5:85:c0:50:5e:c3:b5:d4:ca:b8:a6:1b:4a:e9:
97:8f:19:f0:0f:6e:3f:f3:1c:8d:a8:01:48:85:a7:84:d0:45:
f5:b0:40:5a:b4:18:e0:da:77:19:9e:62:83:94:eb:26:05:ca:
f2:6d:59:19:f3:f1:77:5b:0b:7e:b0:cb:6b:c9:69:13:94:2e:
cf:0b:78:36:39:11:a8:cc:cd:46:24:4c:e2:0b:a1:89:18:a2:
43:cb:82:56:70:3a:a3:93:ae:a6:85:2f:99:cb:31:90:7a:e7:
52:1c:7e:eb:13:ee:e4:8c:27:a8:bf:66:6f:0b:f7:6f:ee:24:
b0:2a:05:95:80:51:18:dd:f4:40:fd:64:12:68:d2:64:80:07:
63:9c:9f:ba:72:62:1c:00:1e:b6:45:04:26:b0:b4:95:b1:5e:
0f:47:7e:c5:bb:bf:b7:86:cd:33:0e:9e:c3:03:54:c5:0a:14:
d0:b2:09:3b:69:d5:97:c6:44:cd:ae:78:ed:d5:b5:f3:7f:41:
82:da:28:68:9a:21:7e:db:4a:54:80:e8:73:a4:0c:29:51:b3:
f2:7f:70:69:4c:a6:fc:f2:ab:d9:1c:e6:c4:08:b4:22:c2:e9:
76:57:69:8b
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIUR1WzaAUDOhmuFrQS/4HSEwaL9zUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRjgxMzJEQzUzNDM4Nzg5Mzc1NUY5NEFFMkIwRjg2ODVC
QTdDOEQ2QzAeFw0yNjA1MTExNzM0MTNaFw0yNzA1MTAxNzM5MTNaMDMxMTAvBgNV
BAMTKEZCNzMwQTVGREI2QkIyOUFEOTgyMDY3OTExMkRBNDdBRkY4MjYzRUYwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxL8XzVD1mznz1gGNC8/cI0Ij9
d4Lam0iSiFJ6rC26r0PlQNFPw1uzh9XFAPb9E7Xt3ep8NP0XobY8uhtf84iBWCNd
rWn6rypglhB1Fn8O63DkXJuQDgRDTPjLK02zwY91R1Pi+l3XrN9PneefCuZH330n
jpUkjqKxlqA0EMXSTkxz26+isjv+xp4fTKqTIhShAruht+h0fRaxJ2fKDSdQ1HxE
A+ITaNqB3qIAUo0jHhbwdzt3fEbaugjhG7asoM4crN53/quOId6fcJekFEhrswSu
PUn+f/90kD5RENL/IVefkld1N1p2ljck0/MWL72lGCRz7iWMQUKH/6zUA3MBAgMB
AAGjggHdMIIB2TAdBgNVHQ4EFgQU+3MKX9trsprZggZ5ES2kev+CY+8wHwYDVR0j
BBgwFoAU+BMtxTQ4eJN1X5SuKw+Ghbp8jWwwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud
HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvMTA0SVQv
MC9GODEzMkRDNTM0Mzg3ODkzNzU1Rjk0QUUyQjBGODY4NUJBN0M4RDZDLmNybDBv
BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS8xL0Y4MTMyREM1MzQzODc4OTM3NTVGOTRBRTJCMEY4
Njg1QkE3QzhENkMuY2VyMHcGCCsGAQUFBwELBGswaTBnBggrBgEFBQcwC4ZbcnN5
bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS8xMDRJVC8wLzMyMzAzMjJlMzgyZTMx
MzQyZTMwMmYzMjMzMmQzMjM0MjAzZDNlMjAzMTM4MzQzMTMwLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB
yggOMA0GCSqGSIb3DQEBCwUAA4IBAQAprxO2Er+UcO3F3rV+M2qBRZRsoGSB5YXA
UF7DtdTKuKYbSumXjxnwD24/8xyNqAFIhaeE0EX1sEBatBjg2ncZnmKDlOsmBcry
bVkZ8/F3Wwt+sMtryWkTlC7PC3g2ORGozM1GJEziC6GJGKJDy4JWcDqjk66mhS+Z
yzGQeudSHH7rE+7kjCeov2ZvC/dv7iSwKgWVgFEY3fRA/WQSaNJkgAdjnJ+6cmIc
AB62RQQmsLSVsV4PR37Fu7+3hs0zDp7DA1TFChTQsgk7adWXxkTNrnjt1bXzf0GC
2ihomiF+20pUgOhzpAwpUbPyf3BpTKb88qvZHObECLQiwul2V2mL
-----END CERTIFICATE-----
Generated at Wed May 13 00:21:43 2026 by rpki-client