Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CLOUDBASE/0/323430323a346432303a313a3a2f34382d3438203d3e20313331363533.roa
File: 323430323a346432303a313a3a2f34382d3438203d3e20313331363533.roa (raw, json)
Hash identifier: X9wIzhuw1c0lYPQ7mtcEb2gQt9tzHi6f24KHdsIqRUI=
Subject key identifier: 45:4D:8F:02:87:11:C3:8D:F6:12:31:19:61:41:FE:09:FD:1B:49:0A
Certificate issuer: /CN=BED725C413C7A436F5A200F207F3CB3A7A9E05DA
Certificate serial: 056062C44FA6891072A3BE9B678732A7D4D1C438
Authority key identifier: BE:D7:25:C4:13:C7:A4:36:F5:A2:00:F2:07:F3:CB:3A:7A:9E:05:DA
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/323430323a346432303a313a3a2f34382d3438203d3e20313331363533.roa
Signing time: Mon 11 May 2026 17:58:08 +0000
ROA not before: Mon 11 May 2026 17:53:08 +0000
ROA not after: Mon 10 May 2027 17:58:08 +0000
asID: 131653
IP address blocks: 2402:4d20:1::/48 maxlen: 48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
05:60:62:c4:4f:a6:89:10:72:a3:be:9b:67:87:32:a7:d4:d1:c4:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BED725C413C7A436F5A200F207F3CB3A7A9E05DA
Validity
Not Before: May 11 17:53:08 2026 GMT
Not After : May 10 17:58:08 2027 GMT
Subject: CN=454D8F028711C38DF61231196141FE09FD1B490A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:fa:0e:39:b7:28:1f:64:f3:41:e2:f8:7e:22:
ed:5c:09:47:36:e6:73:75:ca:95:a0:f0:ba:6b:91:
ca:60:ed:e2:e5:e5:46:de:21:1a:07:2e:ff:ad:98:
d2:84:98:f1:37:14:d3:13:59:fa:87:c7:7a:58:be:
37:c1:e2:6b:64:b3:ae:f4:93:64:24:a4:ef:58:c4:
1e:22:34:53:38:aa:82:32:e5:40:3f:67:09:81:9d:
81:c1:43:60:fb:af:25:b7:68:a5:a9:f6:bf:29:68:
2f:6c:06:87:66:49:bf:63:27:6c:05:ec:c5:56:eb:
21:fd:fc:78:7d:95:c1:59:3d:e5:02:2d:80:67:36:
5a:42:35:6c:10:b2:68:a8:bf:de:77:23:ce:b2:28:
35:f6:26:b4:02:af:38:88:cb:2e:14:11:da:16:2f:
4a:4e:7f:38:26:72:2c:20:9f:fa:b2:38:25:29:92:
b5:02:67:ed:a9:ce:8b:a4:f5:af:b5:df:38:d0:53:
ae:aa:75:d3:21:ec:fa:a4:a7:08:f5:ed:66:57:d4:
1f:51:1e:fd:52:aa:43:f5:8b:54:95:ac:6b:1e:7b:
d7:07:8c:3f:ab:1c:19:e5:04:3f:b8:e9:f5:74:8f:
2f:54:fa:14:d0:2c:c9:4d:f4:d1:f8:4b:2d:4f:16:
f6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:4D:8F:02:87:11:C3:8D:F6:12:31:19:61:41:FE:09:FD:1B:49:0A
X509v3 Authority Key Identifier:
keyid:BE:D7:25:C4:13:C7:A4:36:F5:A2:00:F2:07:F3:CB:3A:7A:9E:05:DA
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/323430323a346432303a313a3a2f34382d3438203d3e20313331363533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv6:
2402:4d20:1::/48
Signature Algorithm: sha256WithRSAEncryption
75:a9:73:43:ff:49:a4:84:31:81:4b:8f:d7:be:7c:8b:d6:3e:
35:12:4a:6f:29:5c:62:99:3a:1e:8f:d4:4e:28:0d:ca:ad:d1:
52:f1:da:d4:5e:b7:ae:8f:c7:93:fc:12:10:c1:69:1d:54:56:
51:6e:eb:b7:6d:05:72:47:c1:64:8f:18:28:4b:46:41:cf:de:
7d:eb:4a:dd:c2:f2:2e:0d:98:16:fd:3a:89:22:ec:a0:9b:a6:
05:23:49:1c:a5:9c:2b:92:e2:bb:5b:00:a9:23:8f:6d:2f:c8:
4d:05:7b:ce:6f:a7:8e:07:6a:04:74:b9:ce:cd:a8:21:33:0d:
96:4a:69:a3:50:fd:b5:4f:8c:98:ac:14:52:77:6a:1a:c7:f8:
fc:fc:38:39:5a:af:21:6e:6b:99:e1:9c:85:3b:b6:33:25:48:
2d:40:a5:ed:83:e9:f0:40:cf:f3:40:f4:c9:44:dc:8c:93:b6:
73:6d:6f:52:91:50:1d:62:bd:ca:13:e4:56:5d:54:55:3e:b0:
e2:84:d8:09:90:1c:0f:b1:bd:07:da:b8:50:07:64:a6:5a:e6:
26:9e:46:5c:eb:b3:22:c0:f6:19:24:65:94:f9:a9:94:b3:a7:
e4:6a:cd:37:b0:88:c8:68:8c:c5:a9:f7:43:4d:67:b7:5e:25:
85:1b:af:48
-----BEGIN CERTIFICATE-----
MIIE5zCCA8+gAwIBAgIUBWBixE+miRByo76bZ4cyp9TRxDgwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQkVENzI1QzQxM0M3QTQzNkY1QTIwMEYyMDdGM0NCM0E3
QTlFMDVEQTAeFw0yNjA1MTExNzUzMDhaFw0yNzA1MTAxNzU4MDhaMDMxMTAvBgNV
BAMTKDQ1NEQ4RjAyODcxMUMzOERGNjEyMzExOTYxNDFGRTA5RkQxQjQ5MEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCj+g45tygfZPNB4vh+Iu1cCUc2
5nN1ypWg8Lprkcpg7eLl5UbeIRoHLv+tmNKEmPE3FNMTWfqHx3pYvjfB4mtks670
k2QkpO9YxB4iNFM4qoIy5UA/ZwmBnYHBQ2D7ryW3aKWp9r8paC9sBodmSb9jJ2wF
7MVW6yH9/Hh9lcFZPeUCLYBnNlpCNWwQsmiov953I86yKDX2JrQCrziIyy4UEdoW
L0pOfzgmciwgn/qyOCUpkrUCZ+2pzouk9a+13zjQU66qddMh7Pqkpwj17WZX1B9R
Hv1SqkP1i1SVrGsee9cHjD+rHBnlBD+46fV0jy9U+hTQLMlN9NH4Sy1PFvaxAgMB
AAGjggHxMIIB7TAdBgNVHQ4EFgQURU2PAocRw432EjEZYUH+Cf0bSQowHwYDVR0j
BBgwFoAUvtclxBPHpDb1ogDyB/PLOnqeBdowDgYDVR0PAQH/BAQDAgeAMGYGA1Ud
HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVURC
QVNFLzAvQkVENzI1QzQxM0M3QTQzNkY1QTIwMEYyMDdGM0NCM0E3QTlFMDVEQS5j
cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvMS9CRUQ3MjVDNDEzQzdBNDM2RjVBMjAwRjIw
N0YzQ0IzQTdBOUUwNURBLmNlcjCBgwYIKwYBBQUHAQsEdzB1MHMGCCsGAQUFBzAL
hmdyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NMT1VEQkFTRS8wLzMyMzQz
MDMyM2EzNDY0MzIzMDNhMzEzYTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzEz
NjM1MzMucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcB
Af8EEzARMA8EAgACMAkDBwAkAk0gAAEwDQYJKoZIhvcNAQELBQADggEBAHWpc0P/
SaSEMYFLj9e+fIvWPjUSSm8pXGKZOh6P1E4oDcqt0VLx2tRet66Px5P8EhDBaR1U
VlFu67dtBXJHwWSPGChLRkHP3n3rSt3C8i4NmBb9Ooki7KCbpgUjSRylnCuS4rtb
AKkjj20vyE0Fe85vp44HagR0uc7NqCEzDZZKaaNQ/bVPjJisFFJ3ahrH+Pz8ODla
ryFua5nhnIU7tjMlSC1Ape2D6fBAz/NA9MlE3IyTtnNtb1KRUB1ivcoT5FZdVFU+
sOKE2AmQHA+xvQfauFAHZKZa5iaeRlzrsyLA9hkkZZT5qZSzp+RqzTewiMhojMWp
90NNZ7deJYUbr0g=
-----END CERTIFICATE-----
Generated at Tue May 12 22:49:40 2026 by rpki-client