Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CLOUDBASE/1/3136352e3130312e32382e302f32332d3234203d3e20323133343330.roa
File: 3136352e3130312e32382e302f32332d3234203d3e20323133343330.roa (raw, json)
Hash identifier: 35okLdMHqqFwUJOW9E0osinYU4tPIsxaiWo2zlSSj84=
Subject key identifier: D8:C9:22:79:99:53:4F:30:6B:00:08:BE:F1:6B:7D:24:52:55:99:3F
Certificate issuer: /CN=385249635956536ABAE4461A37AC4824F9DC8FD6
Certificate serial: 642C4DE8E33EFA3169DFAE38A0A5F596FF4E8800
Authority key identifier: 38:52:49:63:59:56:53:6A:BA:E4:46:1A:37:AC:48:24:F9:DC:8F:D6
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/3136352e3130312e32382e302f32332d3234203d3e20323133343330.roa
Signing time: Mon 11 May 2026 17:58:05 +0000
ROA not before: Mon 11 May 2026 17:53:05 +0000
ROA not after: Mon 10 May 2027 17:58:05 +0000
asID: 213430
IP address blocks: 165.101.28.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
64:2c:4d:e8:e3:3e:fa:31:69:df:ae:38:a0:a5:f5:96:ff:4e:88:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=385249635956536ABAE4461A37AC4824F9DC8FD6
Validity
Not Before: May 11 17:53:05 2026 GMT
Not After : May 10 17:58:05 2027 GMT
Subject: CN=D8C9227999534F306B0008BEF16B7D245255993F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c9:30:48:6d:4d:e5:f0:25:83:67:48:4e:3d:
94:a6:6a:e3:12:9e:6c:71:44:77:89:0b:7a:e8:6d:
75:ce:6f:f0:26:dc:8e:34:b6:ac:52:35:16:9b:0a:
8c:fd:74:7d:75:09:4b:cf:52:dc:91:57:1f:37:6a:
53:d2:2c:34:5c:62:3a:07:29:6e:c4:57:6a:13:f4:
3b:15:b3:8e:43:c0:82:1f:f1:e7:aa:ed:c3:27:92:
4c:7c:d3:e4:80:01:bf:41:2d:2e:67:bb:95:80:98:
e3:82:b3:ae:76:28:63:b6:93:db:5a:51:a4:cf:de:
85:c6:f4:c3:c0:d4:99:bb:d2:3c:10:db:b9:b7:6e:
a5:31:98:2f:c3:02:53:da:f6:04:c3:ab:9f:b2:7b:
54:6a:67:1c:2a:1b:5e:19:e9:88:6b:50:20:75:6d:
9d:39:5f:61:7d:a9:24:05:5b:3d:57:2c:cb:3d:10:
b6:1c:51:18:3d:6a:42:95:fe:f5:20:12:4f:19:12:
f7:ab:9b:7a:a1:db:97:94:b7:2a:ef:d1:92:fd:43:
c4:15:8d:d2:6b:b2:6f:a9:15:07:1f:7c:00:4e:74:
b7:a5:a8:38:b9:e2:59:b7:43:f1:c6:f4:f4:10:71:
8b:50:37:42:49:90:6a:a3:14:e6:57:0a:67:dd:23:
0e:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:C9:22:79:99:53:4F:30:6B:00:08:BE:F1:6B:7D:24:52:55:99:3F
X509v3 Authority Key Identifier:
keyid:38:52:49:63:59:56:53:6A:BA:E4:46:1A:37:AC:48:24:F9:DC:8F:D6
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/3136352e3130312e32382e302f32332d3234203d3e20323133343330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
165.101.28.0/23
Signature Algorithm: sha256WithRSAEncryption
74:64:ea:d1:f8:3f:a5:4b:d6:64:97:21:aa:cf:5e:2d:b5:02:
1f:7b:2f:73:3c:62:90:2c:e2:43:a5:8b:7e:06:56:76:8c:71:
e8:2c:a7:cb:12:60:a7:a2:9c:61:ca:c9:e7:6b:00:ce:cd:9e:
ed:b1:ed:73:94:1f:16:8a:a9:b9:30:b3:be:f3:64:ab:7e:e9:
ed:7e:eb:ec:be:76:c4:9e:99:35:ef:81:e6:73:0b:86:56:3c:
df:30:4f:b7:f0:52:49:53:37:4f:42:86:c6:58:38:f9:0e:b3:
e6:3e:36:e5:4d:b1:ce:c5:37:e5:eb:d9:c9:7c:cd:4e:45:a8:
a8:aa:55:a6:70:92:55:f4:db:29:fe:0b:22:a9:79:ca:b7:80:
d5:45:19:8d:6b:9f:ec:cf:23:f5:af:8b:5e:22:0e:2e:37:4f:
95:4f:0b:33:62:de:0c:4e:90:ee:9a:04:f7:2e:8d:a7:fe:37:
74:05:e8:8c:0c:61:f1:0c:97:0f:81:8f:b0:3f:22:2d:c9:c1:
e3:10:a7:b9:2e:6c:d9:08:3e:9e:35:7c:5a:4e:f6:6c:ef:dc:
57:56:f0:95:17:aa:a1:c5:f7:9f:d9:db:c4:2e:37:3a:f0:59:
3f:10:ec:7a:d3:09:4f:53:4c:88:fd:79:0d:76:de:94:cf:7e:
93:34:76:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 00:31:55 2026 by rpki-client