Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CATHDD/1/3136302e3139312e382e302f32332d3234203d3e20313530373636.roa
File: 3136302e3139312e382e302f32332d3234203d3e20313530373636.roa (raw, json)
Hash identifier: BxOTrJ4kAeU/jIshca7/vnqFH5T34oiHpb989w5ilgs=
Subject key identifier: 96:89:CA:4A:D7:85:46:75:61:B0:D5:63:6B:5D:82:54:6D:28:F7:92
Certificate issuer: /CN=8242A39E0577E8E82BF863D0124FF5AF2F53C9C8
Certificate serial: 75A8D803C1E8E1F93CCE210543F32183B9C8B64E
Authority key identifier: 82:42:A3:9E:05:77:E8:E8:2B:F8:63:D0:12:4F:F5:AF:2F:53:C9:C8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/8242A39E0577E8E82BF863D0124FF5AF2F53C9C8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CATHDD/1/3136302e3139312e382e302f32332d3234203d3e20313530373636.roa
Signing time: Mon 11 May 2026 17:58:27 +0000
ROA not before: Mon 11 May 2026 17:53:27 +0000
ROA not after: Mon 10 May 2027 17:58:27 +0000
asID: 150766
IP address blocks: 160.191.8.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
75:a8:d8:03:c1:e8:e1:f9:3c:ce:21:05:43:f3:21:83:b9:c8:b6:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8242A39E0577E8E82BF863D0124FF5AF2F53C9C8
Validity
Not Before: May 11 17:53:27 2026 GMT
Not After : May 10 17:58:27 2027 GMT
Subject: CN=9689CA4AD785467561B0D5636B5D82546D28F792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c5:7b:68:63:bf:7b:83:c7:41:a7:7f:51:f9:
dc:1f:cb:b6:80:96:1b:00:57:4c:ff:fd:ee:4b:5a:
3a:45:2f:9b:58:28:ee:e1:b4:49:96:7b:12:68:c9:
45:10:65:f6:88:3d:36:b7:30:46:57:d4:e2:17:1f:
e6:46:83:32:75:20:f6:14:d4:db:43:75:13:de:e5:
b2:2c:30:42:50:f9:2d:ab:36:12:b9:d3:98:c7:c2:
d9:c5:de:f4:8e:90:c5:ef:5a:00:d4:a2:b8:cb:ee:
fa:a5:5c:13:0f:cd:24:13:5d:3d:8b:1f:30:9c:49:
1b:43:96:b5:63:1a:c2:32:b8:ea:c6:0c:a6:97:18:
f7:33:3e:01:fa:ed:46:0c:28:0d:da:08:e1:fe:53:
16:b5:b7:b0:3a:09:05:03:a9:4f:f0:f3:0b:a7:6e:
00:44:a5:de:24:fa:c0:68:c9:d6:ac:e3:a4:78:ce:
8a:46:af:06:84:b8:95:49:48:cc:00:89:fd:93:04:
f3:ac:65:10:d5:0f:45:50:1c:a1:71:7c:57:52:a4:
42:ea:41:7b:cd:ac:f3:95:08:9a:36:bf:cd:0d:3d:
e9:17:52:5f:35:ce:58:35:5f:7f:60:0b:b1:ce:76:
a4:cb:07:7a:99:55:79:1a:26:9a:1e:9d:d6:20:00:
04:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:89:CA:4A:D7:85:46:75:61:B0:D5:63:6B:5D:82:54:6D:28:F7:92
X509v3 Authority Key Identifier:
keyid:82:42:A3:9E:05:77:E8:E8:2B:F8:63:D0:12:4F:F5:AF:2F:53:C9:C8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CATHDD/1/8242A39E0577E8E82BF863D0124FF5AF2F53C9C8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/8242A39E0577E8E82BF863D0124FF5AF2F53C9C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CATHDD/1/3136302e3139312e382e302f32332d3234203d3e20313530373636.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.191.8.0/23
Signature Algorithm: sha256WithRSAEncryption
55:6a:99:c3:1e:1a:d5:e9:94:7a:c0:78:03:ae:d9:2a:8f:32:
95:db:91:9a:a1:5a:48:b8:90:5d:5b:59:ba:eb:80:c6:c3:bd:
a6:54:f2:59:df:2b:f7:85:db:bb:71:ae:01:f5:1a:9d:d3:07:
1e:88:09:01:58:d7:d9:8b:61:9f:91:66:f2:4d:82:16:fe:22:
70:86:cb:91:98:ab:0a:0d:57:94:66:1c:04:98:d1:73:c5:95:
36:32:99:f4:8d:ed:3e:50:3c:6a:c0:58:4b:36:b8:7b:d2:35:
b8:da:10:89:cc:8e:04:31:c6:77:39:0a:7c:3a:9b:c1:d9:77:
5c:1c:fe:0d:2c:c4:ce:22:68:82:1a:8b:56:05:93:c5:fa:b7:
e4:8c:22:09:e8:eb:5a:45:d0:2d:5b:9c:72:d9:40:8d:0b:15:
65:74:4f:2c:5a:c9:82:f6:30:d6:c3:6f:b6:7c:69:c0:ae:f5:
1b:30:f3:99:42:68:ff:b4:11:84:2f:08:30:6b:1e:5a:41:a0:
92:f0:ed:7d:22:35:3e:a8:a9:c6:71:01:9d:57:69:22:bf:e1:
9c:a7:60:1f:bf:b3:4e:bf:fc:c7:fa:c7:dd:11:51:f4:61:d3:
31:97:b7:1a:4b:54:3a:4e:79:1d:1d:3a:60:98:f1:14:ec:e8:
81:d2:6c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:44:01 2026 by rpki-client