Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CLOUDBASE/1/3136352e3130312e32382e302f32332d3234203d3e20313331363533.roa
File: 3136352e3130312e32382e302f32332d3234203d3e20313331363533.roa (raw, json)
Hash identifier: f8Wm++qXpNxVHGZKo201vAM9Z2Uy7/WdNvruK2l9Afw=
Subject key identifier: 3F:88:25:46:DB:89:AA:9B:EA:C8:A9:60:41:85:0C:F2:84:00:26:D7
Certificate issuer: /CN=385249635956536ABAE4461A37AC4824F9DC8FD6
Certificate serial: 567E039511BD1E639D9148EBA6113F1CE0FD6F3D
Authority key identifier: 38:52:49:63:59:56:53:6A:BA:E4:46:1A:37:AC:48:24:F9:DC:8F:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/3136352e3130312e32382e302f32332d3234203d3e20313331363533.roa
Signing time: Mon 11 May 2026 17:58:03 +0000
ROA not before: Mon 11 May 2026 17:53:03 +0000
ROA not after: Mon 10 May 2027 17:58:03 +0000
asID: 131653
IP address blocks: 165.101.28.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
56:7e:03:95:11:bd:1e:63:9d:91:48:eb:a6:11:3f:1c:e0:fd:6f:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385249635956536ABAE4461A37AC4824F9DC8FD6
Validity
Not Before: May 11 17:53:03 2026 GMT
Not After : May 10 17:58:03 2027 GMT
Subject: CN=3F882546DB89AA9BEAC8A96041850CF2840026D7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:2c:a4:f4:d1:fc:5f:0b:bf:0f:14:3e:23:3c:
99:1c:44:7f:ee:9e:4c:78:f6:04:72:58:61:f7:35:
2b:11:9e:40:76:ab:81:b4:ef:aa:10:f9:ea:fa:34:
b5:3c:0d:d7:d4:32:97:09:5b:f5:54:8b:02:e9:c9:
ef:a2:eb:46:9f:01:7c:24:d8:03:87:fb:1a:bf:ba:
06:5d:ac:dc:b1:fc:06:bd:3a:5c:6e:00:40:a4:c1:
5e:a6:50:9f:5a:82:d6:e0:c3:61:92:bf:6d:01:d7:
9f:87:7f:a0:77:60:75:dc:5a:5a:77:74:b1:bc:64:
84:a5:02:98:20:a6:ae:2d:05:41:19:37:d7:84:af:
9d:0b:96:be:02:e1:42:62:ce:4b:4e:a7:3a:84:fc:
ff:a3:a9:6a:70:a5:8c:4d:da:75:cc:26:81:94:23:
2f:e8:20:9d:89:d3:af:40:d2:d9:98:74:1c:53:d3:
fb:95:46:cb:0e:00:3b:fd:18:72:16:e5:3c:04:19:
31:ee:fb:d7:52:6e:0a:24:fd:3c:07:a0:d2:73:05:
a4:da:68:2b:8a:f2:0c:0e:95:b7:f1:29:1d:03:c7:
6d:e9:15:23:97:ce:3a:9a:0e:82:27:a0:27:09:a2:
f7:97:e5:59:cd:ba:a9:1b:e7:7e:9b:82:ac:96:4c:
60:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:88:25:46:DB:89:AA:9B:EA:C8:A9:60:41:85:0C:F2:84:00:26:D7
X509v3 Authority Key Identifier:
keyid:38:52:49:63:59:56:53:6A:BA:E4:46:1A:37:AC:48:24:F9:DC:8F:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/3136352e3130312e32382e302f32332d3234203d3e20313331363533.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
165.101.28.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:4d:ba:df:fd:93:32:bc:4f:1d:b0:b0:7a:e6:f1:6f:29:a3:
ed:93:38:42:a7:4d:98:22:ed:e0:94:65:75:e9:90:63:f8:e5:
f4:9f:cb:c6:d2:91:00:4a:07:12:e8:b1:31:bc:04:ba:8b:79:
6d:15:96:5f:89:d0:61:9e:d2:d8:69:61:1f:5a:45:78:88:49:
46:1e:98:68:e9:b4:83:b9:cd:8e:73:7a:d5:31:62:14:d3:99:
4b:bf:56:e9:14:d2:2b:f2:6e:60:da:31:f6:39:c4:0e:b4:7c:
0b:9e:dc:0c:64:99:e4:28:35:09:9e:5e:1c:20:1c:76:d1:ab:
d4:ad:a1:c6:34:d0:99:1f:ae:ed:64:03:4d:ee:d1:99:ee:1a:
15:31:79:6f:89:b9:22:f8:b3:f9:06:f5:b4:d4:6c:c6:27:70:
0a:83:f7:06:26:d4:98:be:e6:55:c3:8b:4d:0d:69:18:d3:e5:
81:1d:c2:97:41:26:d1:bc:7f:af:80:bf:80:59:c8:c0:46:c4:
b0:8e:4e:2d:3a:25:0a:0e:46:94:e2:50:65:bb:77:56:7b:db:
bb:6b:61:0b:57:13:03:0f:ce:fc:51:7d:c1:f9:15:86:aa:b8:
dd:db:6e:25:73:3e:aa:66:9f:38:b0:e2:70:0e:ea:56:35:60:
6d:e9:50:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:31:58 2026 by rpki-client