Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/CLOUDNODE/0/3232332e32362e31302e302f32332d3234203d3e2037343833.roa
File: 3232332e32362e31302e302f32332d3234203d3e2037343833.roa (raw, json)
Hash identifier: KY91dZeL6/YwGvfBK0FnKFAVL/6EOM1qXx3UNjlNsSo=
Subject key identifier: 0B:6F:B2:01:47:63:E2:61:21:01:D3:0E:9E:90:02:19:80:B1:EF:8D
Certificate issuer: /CN=E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB
Certificate serial: 43826EC0DC5EC4598A74912E6F7099D57128E971
Authority key identifier: E3:82:3D:FE:A2:1F:EF:04:E3:26:9E:B9:AC:C3:BD:AC:1E:38:7E:CB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/CLOUDNODE/0/3232332e32362e31302e302f32332d3234203d3e2037343833.roa
Signing time: Mon 11 May 2026 17:56:17 +0000
ROA not before: Mon 11 May 2026 17:51:17 +0000
ROA not after: Mon 10 May 2027 17:56:17 +0000
asID: 7483
IP address blocks: 223.26.10.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
43:82:6e:c0:dc:5e:c4:59:8a:74:91:2e:6f:70:99:d5:71:28:e9:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB
Validity
Not Before: May 11 17:51:17 2026 GMT
Not After : May 10 17:56:17 2027 GMT
Subject: CN=0B6FB2014763E2612101D30E9E90021980B1EF8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ac:5b:5d:49:69:c4:7e:0a:5f:19:5a:36:62:
e5:f3:bb:a7:58:2d:10:b0:bf:13:15:a4:67:be:78:
43:08:fd:f6:24:83:4e:6c:52:24:9b:66:fc:5e:9a:
27:0b:a0:cd:fc:3a:43:74:b8:16:c2:b0:e6:c4:ae:
9c:00:17:0b:07:02:95:67:6c:73:4a:58:2c:68:bc:
81:19:75:b5:11:b9:02:ec:21:f9:0f:80:4b:f6:80:
c7:23:ed:1a:9d:7b:01:7b:33:a6:aa:15:08:d3:bc:
ed:b2:6e:90:69:c7:ec:98:9e:38:7e:ed:ad:53:8b:
86:28:22:57:0b:ba:e7:84:80:31:40:03:ae:6f:0b:
05:4a:2c:fb:ba:61:a0:74:b7:19:02:95:bd:24:d8:
d0:cb:f6:f6:a0:b0:11:11:c8:1c:11:fc:37:d3:24:
35:72:a9:5f:40:d5:4d:25:72:0b:b4:67:93:e1:c6:
aa:d7:21:be:c1:f5:0f:0c:c8:2b:08:c3:1a:f3:6e:
42:64:c6:ff:18:ea:e1:d6:91:78:3e:8f:1c:92:64:
3a:b4:dd:6b:49:9b:47:a8:50:f3:71:0a:4d:c0:d8:
17:71:82:93:a8:d2:f7:a5:64:5a:44:73:bf:e1:ab:
06:fd:6c:c9:96:2d:36:16:8b:cb:4b:7b:95:29:1c:
5f:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:6F:B2:01:47:63:E2:61:21:01:D3:0E:9E:90:02:19:80:B1:EF:8D
X509v3 Authority Key Identifier:
keyid:E3:82:3D:FE:A2:1F:EF:04:E3:26:9E:B9:AC:C3:BD:AC:1E:38:7E:CB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/CLOUDNODE/0/E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CLOUDNODE/0/3232332e32362e31302e302f32332d3234203d3e2037343833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.26.10.0/23
Signature Algorithm: sha256WithRSAEncryption
4b:3d:8e:66:a7:3e:6b:67:62:fb:be:58:20:55:21:34:b3:65:
27:c1:72:ca:ae:16:e7:9f:4c:de:b2:93:5d:f1:83:9b:d7:f0:
98:87:8c:7d:d0:13:d3:5d:57:a5:7a:3e:3e:bf:17:da:fd:ef:
6d:a3:f2:76:f1:fb:3b:c4:3b:05:00:30:05:72:bf:ce:74:5d:
98:72:a7:24:97:ea:67:65:e9:04:63:4b:27:d5:0e:70:72:60:
f9:86:f2:11:7c:70:15:a1:1d:ec:f0:53:92:c8:66:14:89:cc:
86:5d:cf:72:00:6d:29:15:18:eb:35:ee:59:61:fb:29:d9:d3:
44:c3:17:d7:df:ad:9f:d5:9e:dc:59:db:77:9b:6a:16:2d:ae:
44:44:0b:f9:e4:93:59:d3:81:34:31:45:ee:fe:e3:61:de:3d:
37:6e:1f:46:d4:3c:a9:76:f5:30:32:ea:e4:84:c9:01:8e:de:
d5:5b:c0:ba:c7:ec:04:5b:82:bd:26:00:9c:3c:02:6b:a9:9b:
b2:1b:f2:ec:34:ba:01:f5:46:82:cc:b4:36:3e:56:5e:6a:a8:
2a:7c:3b:fc:77:ea:fb:61:06:bb:74:6d:79:2a:58:a0:b7:92:
55:d0:36:86:9b:e1:42:f8:26:a4:96:58:2f:89:fd:82:9e:e8:
79:9f:25:b3
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue May 12 23:06:59 2026 by rpki-client