Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/DAFU/0/3231302e312e3233342e302f32332d3332203d3e20313334383233.roa
File: 3231302e312e3233342e302f32332d3332203d3e20313334383233.roa (raw, json)
Hash identifier: HWI5VQZaFjKYV+LScUBkUhCoJacVyotR7e1ayxfccA8=
Subject key identifier: EC:73:E9:00:99:AC:DF:62:60:F2:92:69:2B:F7:7B:9E:8E:0D:CB:EA
Certificate issuer: /CN=9D0F6D536F053C3BB5233E68E0636F8A6FADA460
Certificate serial: 3EA58BD34D5F69D4F3137127B8F850660EAD5813
Authority key identifier: 9D:0F:6D:53:6F:05:3C:3B:B5:23:3E:68:E0:63:6F:8A:6F:AD:A4:60
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D0F6D536F053C3BB5233E68E0636F8A6FADA460.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/DAFU/0/3231302e312e3233342e302f32332d3332203d3e20313334383233.roa
Signing time: Mon 11 May 2026 17:55:34 +0000
ROA not before: Mon 11 May 2026 17:50:34 +0000
ROA not after: Mon 10 May 2027 17:55:34 +0000
asID: 134823
IP address blocks: 210.1.234.0/23 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3e:a5:8b:d3:4d:5f:69:d4:f3:13:71:27:b8:f8:50:66:0e:ad:58:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9D0F6D536F053C3BB5233E68E0636F8A6FADA460
Validity
Not Before: May 11 17:50:34 2026 GMT
Not After : May 10 17:55:34 2027 GMT
Subject: CN=EC73E90099ACDF6260F292692BF77B9E8E0DCBEA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:4f:bd:57:f6:5e:cd:a5:83:96:75:46:1c:32:
ea:38:e3:a1:a2:ef:2b:af:68:e9:bd:74:3e:b9:f8:
49:e6:6b:c4:c4:8c:c0:28:ae:c6:ee:cc:21:61:e5:
4c:e0:5e:42:59:88:02:36:1f:43:c4:5e:52:c5:66:
6c:57:8b:e4:d9:58:c7:e1:a0:07:41:56:29:ff:cd:
74:f4:3f:57:02:53:af:0e:90:e3:91:0d:f6:84:22:
c8:ed:c0:09:1f:8f:c3:97:f5:53:15:f8:2e:09:b9:
37:07:6c:83:79:6d:56:3d:d8:e9:97:7e:6f:d6:65:
60:0e:ec:ee:b4:27:8b:09:d7:21:01:c5:6d:8e:5a:
3e:42:2f:d8:38:c2:83:6d:f1:2e:50:fd:b3:0c:b7:
ae:ee:e1:65:32:35:b3:28:09:74:5c:cc:96:b9:bd:
84:ab:4b:6d:c0:72:f8:1c:b8:12:ad:16:8a:c2:82:
41:7b:3f:e2:16:29:51:4f:c6:d4:82:a8:35:15:1a:
9b:e3:09:87:6d:cd:3d:38:ca:3e:18:8b:a4:cf:75:
86:f1:93:f9:57:c3:e2:2e:ff:d9:28:69:51:9c:31:
5a:73:73:29:1a:c2:d1:dd:91:3d:b9:ff:79:70:eb:
ec:bf:42:8f:88:c8:ae:6d:9a:aa:78:20:dc:a3:b1:
64:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:73:E9:00:99:AC:DF:62:60:F2:92:69:2B:F7:7B:9E:8E:0D:CB:EA
X509v3 Authority Key Identifier:
keyid:9D:0F:6D:53:6F:05:3C:3B:B5:23:3E:68:E0:63:6F:8A:6F:AD:A4:60
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/DAFU/0/9D0F6D536F053C3BB5233E68E0636F8A6FADA460.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D0F6D536F053C3BB5233E68E0636F8A6FADA460.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DAFU/0/3231302e312e3233342e302f32332d3332203d3e20313334383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.1.234.0/23
Signature Algorithm: sha256WithRSAEncryption
9e:fb:8b:36:3f:6e:ae:4e:bb:4e:f2:90:97:d5:83:1e:52:8f:
ef:fa:1f:f9:83:df:44:30:76:db:c4:e9:ac:93:f1:90:9c:04:
ee:1a:21:3a:c8:60:f2:75:d3:cb:90:16:8d:27:95:ed:31:c3:
70:b5:5a:eb:b4:c6:2b:71:3c:bf:f0:ae:8e:b9:43:15:e8:5b:
59:a0:0f:06:f4:fc:b6:97:01:84:14:f1:53:0c:50:72:5e:c1:
69:09:b5:29:35:1d:4f:3e:43:b3:7e:77:68:fb:e7:c2:82:52:
c5:f6:d9:a7:e1:0c:a2:76:8f:e7:4d:df:a2:70:82:49:2c:4c:
e3:4c:23:70:b1:15:91:c2:e3:67:9c:49:f6:7c:20:53:ef:ed:
ae:a7:cb:6b:fb:6b:63:b2:60:c5:9e:20:f9:7b:16:bb:33:8f:
1c:87:09:ba:49:5e:4a:e6:6c:e2:a0:1b:ad:00:e5:61:d2:a9:
f5:01:d2:f1:8a:8f:ca:09:44:59:8e:32:56:02:1c:59:03:c9:
d9:29:7f:96:ec:4d:28:de:d8:22:5e:58:1b:dc:12:c0:e4:24:
96:ed:39:a1:dc:60:ff:6d:b9:34:e4:fe:6e:2f:36:b6:da:04:
e1:19:69:0c:f9:cd:35:a4:14:7d:45:4c:e9:0c:34:ae:75:47:
7b:4c:54:c3
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgIUPqWL001fadTzE3EnuPhQZg6tWBMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoOUQwRjZENTM2RjA1M0MzQkI1MjMzRTY4RTA2MzZGOEE2
RkFEQTQ2MDAeFw0yNjA1MTExNzUwMzRaFw0yNzA1MTAxNzU1MzRaMDMxMTAvBgNV
BAMTKEVDNzNFOTAwOTlBQ0RGNjI2MEYyOTI2OTJCRjc3QjlFOEUwRENCRUEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9T71X9l7NpYOWdUYcMuo446Gi
7yuvaOm9dD65+Enma8TEjMAorsbuzCFh5UzgXkJZiAI2H0PEXlLFZmxXi+TZWMfh
oAdBVin/zXT0P1cCU68OkOORDfaEIsjtwAkfj8OX9VMV+C4JuTcHbIN5bVY92OmX
fm/WZWAO7O60J4sJ1yEBxW2OWj5CL9g4woNt8S5Q/bMMt67u4WUyNbMoCXRczJa5
vYSrS23AcvgcuBKtForCgkF7P+IWKVFPxtSCqDUVGpvjCYdtzT04yj4Yi6TPdYbx
k/lXw+Iu/9koaVGcMVpzcykawtHdkT25/3lw6+y/Qo+IyK5tmqp4INyjsWTfAgMB
AAGjggHfMIIB2zAdBgNVHQ4EFgQU7HPpAJms32Jg8pJpK/d7no4Ny+owHwYDVR0j
BBgwFoAUnQ9tU28FPDu1Iz5o4GNvim+tpGAwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud
HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvREFGVS8w
LzlEMEY2RDUzNkYwNTNDM0JCNTIzM0U2OEUwNjM2RjhBNkZBREE0NjAuY3JsMG8G
CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu
dHcvcnBraS9UV05JQ0NBLzEvOUQwRjZENTM2RjA1M0MzQkI1MjMzRTY4RTA2MzZG
OEE2RkFEQTQ2MC5jZXIwegYIKwYBBQUHAQsEbjBsMGoGCCsGAQUFBzALhl5yc3lu
YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0RBRlUvMC8zMjMxMzAyZTMxMmUzMjMz
MzQyZTMwMmYzMjMzMmQzMzMyMjAzZDNlMjAzMTMzMzQzODMyMzMucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAHSAeowDQYJKoZIhvcNAQELBQADggEBAJ77izY/bq5Ou07ykJfVgx5Sj+/6H/mD
30QwdtvE6ayT8ZCcBO4aITrIYPJ108uQFo0nle0xw3C1Wuu0xitxPL/wro65QxXo
W1mgDwb0/LaXAYQU8VMMUHJewWkJtSk1HU8+Q7N+d2j758KCUsX22afhDKJ2j+dN
36JwgkksTONMI3CxFZHC42ecSfZ8IFPv7a6ny2v7a2OyYMWeIPl7FrszjxyHCbpJ
XkrmbOKgG60A5WHSqfUB0vGKj8oJRFmOMlYCHFkDydkpf5bsTSje2CJeWBvcEsDk
JJbtOaHcYP9tuTTk/m4vNrbaBOEZaQz5zTWkFH1FTOkMNK51R3tMVMM=
-----END CERTIFICATE-----
Generated at Wed May 13 00:31:17 2026 by rpki-client