Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/DWINS/0/34332e3232342e32332e302f32342d3234203d3e20313331363436.roa
File: 34332e3232342e32332e302f32342d3234203d3e20313331363436.roa (raw, json)
Hash identifier: 6SGE2td+SruVzE8RTP0oAaYfc3isBgmmTrc/lKGCQhk=
Subject key identifier: D1:9A:60:43:D3:A6:76:DC:ED:77:B4:DF:0B:54:43:6E:DC:24:82:27
Certificate issuer: /CN=C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93
Certificate serial: 5E9370EFDA442E5E1D46EA7250E9FE9AFEDB70B5
Authority key identifier: C5:DF:31:D9:EE:B5:DA:72:66:8D:58:FB:8D:B0:E7:5E:3A:D7:BF:93
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/DWINS/0/34332e3232342e32332e302f32342d3234203d3e20313331363436.roa
Signing time: Mon 11 May 2026 17:55:41 +0000
ROA not before: Mon 11 May 2026 17:50:41 +0000
ROA not after: Mon 10 May 2027 17:55:41 +0000
asID: 131646
IP address blocks: 43.224.23.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5e:93:70:ef:da:44:2e:5e:1d:46:ea:72:50:e9:fe:9a:fe:db:70:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93
Validity
Not Before: May 11 17:50:41 2026 GMT
Not After : May 10 17:55:41 2027 GMT
Subject: CN=D19A6043D3A676DCED77B4DF0B54436EDC248227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:b2:e5:5e:1c:7d:06:d5:98:6a:b1:87:39:33:
ad:f9:bd:c2:be:62:a5:08:4b:c6:c1:81:51:9e:02:
35:cb:da:ca:ce:55:e3:09:a5:5e:75:26:0d:1a:d1:
59:03:34:02:3b:ec:59:35:2b:a6:02:60:0a:ae:cc:
73:59:52:ec:cf:d6:4f:b8:11:b3:d0:db:1c:da:2a:
be:43:42:31:65:96:47:fb:5f:4d:90:ba:a5:c5:c4:
f9:fc:d8:96:c9:06:0f:77:de:bf:b3:96:88:11:c8:
cb:33:16:05:27:aa:4d:dc:7e:a1:9d:ea:23:04:49:
a4:cd:19:aa:e4:bd:68:e8:c2:a9:1d:87:4f:df:d3:
2c:62:8f:73:94:07:a0:c7:d9:17:7c:99:89:4a:dc:
1e:35:e7:58:d5:a9:af:1a:78:fc:12:99:60:8d:5b:
0e:6e:8f:e7:b6:40:60:80:67:6a:b0:c9:81:d7:51:
c7:0d:a2:a2:56:a2:a9:de:1f:b4:77:3c:e1:97:27:
ae:5b:f0:9b:8d:3f:86:e2:ae:e3:c9:ea:92:ca:67:
db:6e:3d:ee:c0:3e:4c:1a:42:46:61:4c:a6:8d:58:
46:de:9a:94:a4:2a:5c:95:35:8c:80:b1:8b:a3:18:
57:65:2e:dd:63:cc:48:0e:c0:e9:67:9e:6f:7d:45:
8f:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:9A:60:43:D3:A6:76:DC:ED:77:B4:DF:0B:54:43:6E:DC:24:82:27
X509v3 Authority Key Identifier:
keyid:C5:DF:31:D9:EE:B5:DA:72:66:8D:58:FB:8D:B0:E7:5E:3A:D7:BF:93
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/DWINS/0/C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/C5DF31D9EEB5DA72668D58FB8DB0E75E3AD7BF93.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DWINS/0/34332e3232342e32332e302f32342d3234203d3e20313331363436.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.224.23.0/24
Signature Algorithm: sha256WithRSAEncryption
2d:af:e9:04:ba:2f:db:a2:fc:9c:81:82:32:3f:1e:db:5a:d1:
85:32:14:70:7d:8d:4f:48:61:23:fa:7c:f9:00:62:6d:b9:32:
45:59:8d:b7:d7:02:82:09:27:b6:b9:0f:4b:f3:00:97:35:20:
a5:92:75:dc:c9:15:21:bd:fd:0a:6f:63:e7:c8:c5:83:52:a1:
b0:4a:8c:9b:5c:bf:5e:83:5c:87:29:83:c5:27:e7:13:1e:fb:
c5:b8:ff:55:37:ad:46:8b:ac:b6:d2:af:41:54:54:62:5b:ff:
25:74:5a:93:7f:7a:f2:6f:76:1c:be:61:0f:ee:cf:c9:9f:11:
e8:92:3a:28:c8:67:25:ee:82:00:07:16:eb:40:e3:d9:fe:e0:
ce:84:1b:0c:38:7a:d7:ed:61:78:83:97:a6:1c:6b:bd:27:24:
ce:a1:dd:79:6d:d6:67:03:43:8e:12:31:90:8e:47:df:71:c3:
63:53:e8:15:a3:b6:0a:31:63:9b:e2:2e:b7:a5:9c:c1:d6:7a:
fa:74:bb:59:1e:a2:0a:6f:22:97:3c:09:41:ae:7f:90:7a:94:
8a:e1:cc:f6:7b:fb:fe:9d:0c:19:13:99:17:b8:12:cf:71:88:
b0:6e:62:fb:02:e3:a2:5f:19:c1:5c:5b:b8:91:5e:f6:ef:29:
3f:c6:b5:ee
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgIUXpNw79pELl4dRupyUOn+mv7bcLUwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQzVERjMxRDlFRUI1REE3MjY2OEQ1OEZCOERCMEU3NUUz
QUQ3QkY5MzAeFw0yNjA1MTExNzUwNDFaFw0yNzA1MTAxNzU1NDFaMDMxMTAvBgNV
BAMTKEQxOUE2MDQzRDNBNjc2RENFRDc3QjRERjBCNTQ0MzZFREMyNDgyMjcwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD5suVeHH0G1ZhqsYc5M635vcK+
YqUIS8bBgVGeAjXL2srOVeMJpV51Jg0a0VkDNAI77Fk1K6YCYAquzHNZUuzP1k+4
EbPQ2xzaKr5DQjFllkf7X02QuqXFxPn82JbJBg933r+zlogRyMszFgUnqk3cfqGd
6iMESaTNGarkvWjowqkdh0/f0yxij3OUB6DH2Rd8mYlK3B4151jVqa8aePwSmWCN
Ww5uj+e2QGCAZ2qwyYHXUccNoqJWoqneH7R3POGXJ65b8JuNP4biruPJ6pLKZ9tu
Pe7APkwaQkZhTKaNWEbempSkKlyVNYyAsYujGFdlLt1jzEgOwOlnnm99RY8xAgMB
AAGjggHhMIIB3TAdBgNVHQ4EFgQU0ZpgQ9Omdtztd7TfC1RDbtwkgicwHwYDVR0j
BBgwFoAUxd8x2e612nJmjVj7jbDnXjrXv5MwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud
HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRFdJTlMv
MC9DNURGMzFEOUVFQjVEQTcyNjY4RDU4RkI4REIwRTc1RTNBRDdCRjkzLmNybDBv
BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS8xL0M1REYzMUQ5RUVCNURBNzI2NjhENThGQjhEQjBF
NzVFM0FEN0JGOTMuY2VyMHsGCCsGAQUFBwELBG8wbTBrBggrBgEFBQcwC4ZfcnN5
bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9EV0lOUy8wLzM0MzMyZTMyMzIzNDJl
MzIzMzJlMzAyZjMyMzQyZDMyMzQyMDNkM2UyMDMxMzMzMTM2MzQzNi5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEACvgFzANBgkqhkiG9w0BAQsFAAOCAQEALa/pBLov26L8nIGCMj8e21rRhTIU
cH2NT0hhI/p8+QBibbkyRVmNt9cCggkntrkPS/MAlzUgpZJ13MkVIb39Cm9j58jF
g1KhsEqMm1y/XoNchymDxSfnEx77xbj/VTetRousttKvQVRUYlv/JXRak3968m92
HL5hD+7PyZ8R6JI6KMhnJe6CAAcW60Dj2f7gzoQbDDh61+1heIOXphxrvSckzqHd
eW3WZwNDjhIxkI5H33HDY1PoFaO2CjFjm+Iut6WcwdZ6+nS7WR6iCm8ilzwJQa5/
kHqUiuHM9nv7/p0MGROZF7gSz3GIsG5i+wLjol8ZwVxbuJFe9u8pP8a17g==
-----END CERTIFICATE-----
Generated at Tue May 12 23:27:41 2026 by rpki-client