Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/IMYKL/0/3136302e3139312e342e302f32332d3234203d3e20313334383233.roa
File: 3136302e3139312e342e302f32332d3234203d3e20313334383233.roa (raw, json)
Hash identifier: MvSn3+N3E0x49y2zyFZseXhPFbhPYX7FDxa/hvK0XxA=
Subject key identifier: 3B:3E:FC:E5:9B:28:D7:42:92:E7:DB:AE:05:18:FB:32:E2:C5:4E:B9
Certificate issuer: /CN=EF1D10484EFA79ABC018FA0EFA7F3B0C16EE43A7
Certificate serial: 620DBEFE9BE8E8FA13F8465F05CBB217A764B50F
Authority key identifier: EF:1D:10:48:4E:FA:79:AB:C0:18:FA:0E:FA:7F:3B:0C:16:EE:43:A7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/EF1D10484EFA79ABC018FA0EFA7F3B0C16EE43A7.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/IMYKL/0/3136302e3139312e342e302f32332d3234203d3e20313334383233.roa
Signing time: Mon 11 May 2026 17:38:21 +0000
ROA not before: Mon 11 May 2026 17:33:21 +0000
ROA not after: Mon 10 May 2027 17:38:21 +0000
asID: 134823
IP address blocks: 160.191.4.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
62:0d:be:fe:9b:e8:e8:fa:13:f8:46:5f:05:cb:b2:17:a7:64:b5:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EF1D10484EFA79ABC018FA0EFA7F3B0C16EE43A7
Validity
Not Before: May 11 17:33:21 2026 GMT
Not After : May 10 17:38:21 2027 GMT
Subject: CN=3B3EFCE59B28D74292E7DBAE0518FB32E2C54EB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0f:90:d8:4e:3d:3a:62:f5:56:a7:7f:3e:14:
c1:68:ae:12:45:66:0c:c9:c3:a7:40:86:0b:63:f5:
1a:2c:94:c1:aa:62:9e:76:45:96:cd:51:26:56:6b:
c4:49:7f:62:c6:e9:7e:80:e2:91:35:06:ea:a7:60:
3a:a7:3d:e9:cd:83:c0:90:5a:db:7f:a7:a4:bb:a8:
80:aa:f7:14:e9:9f:5e:4c:a1:88:a1:e5:0e:d2:c4:
92:24:76:b6:b6:52:48:a5:a3:b3:e7:d5:0c:eb:f1:
19:0a:9d:22:a0:62:07:de:4c:0d:e7:f6:bd:96:9f:
1e:4d:33:af:1f:1a:8f:ac:d3:9d:36:28:2e:22:6d:
3d:6b:9e:ac:ec:e0:6c:ba:20:f1:02:af:f2:30:f8:
11:99:06:e0:35:48:cc:ed:ce:4e:60:60:66:73:1c:
f9:6a:e8:b3:6a:ff:1c:5a:21:5b:fa:90:a6:0e:9d:
9d:c0:95:3e:c5:f1:96:56:38:20:7c:3e:07:8f:d0:
2c:d4:6f:2c:5e:15:b1:df:13:91:10:38:87:b8:13:
51:c6:96:c0:ae:04:9a:05:79:c1:07:18:4a:64:a1:
80:d8:e8:e8:bb:a2:bc:a2:be:bd:c4:cb:cf:09:20:
df:d1:f1:29:17:cb:f6:ca:be:c9:f3:9d:f2:0d:cd:
ab:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:3E:FC:E5:9B:28:D7:42:92:E7:DB:AE:05:18:FB:32:E2:C5:4E:B9
X509v3 Authority Key Identifier:
keyid:EF:1D:10:48:4E:FA:79:AB:C0:18:FA:0E:FA:7F:3B:0C:16:EE:43:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/IMYKL/0/EF1D10484EFA79ABC018FA0EFA7F3B0C16EE43A7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/EF1D10484EFA79ABC018FA0EFA7F3B0C16EE43A7.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/IMYKL/0/3136302e3139312e342e302f32332d3234203d3e20313334383233.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.191.4.0/23
Signature Algorithm: sha256WithRSAEncryption
89:bf:06:80:d4:dd:7c:65:2c:bb:db:32:c5:2f:1f:6b:74:d2:
34:59:e4:8a:ed:9d:41:d5:bc:ac:8c:dd:56:e2:1d:52:24:71:
8b:3a:b4:82:61:aa:c5:d9:b9:c4:84:2d:09:22:1e:3a:26:35:
c1:1f:5a:bc:91:96:cc:dd:d8:9c:27:cb:e3:47:93:cf:9c:15:
dd:d5:2f:dd:88:b2:b9:97:6d:16:9a:57:90:7e:41:7d:17:64:
e9:aa:5f:79:4c:07:8a:3e:e4:f2:21:b5:b4:81:53:32:07:22:
08:a5:0d:74:bf:dd:cf:4d:a0:17:d7:16:e4:b8:7a:d7:9b:2b:
fc:36:1c:a3:fc:36:f1:74:d5:1f:63:62:3a:4c:50:70:9d:dd:
bc:bf:9f:f6:1f:e8:f1:e1:73:6a:3f:bf:e3:75:f1:93:04:44:
31:df:c3:9e:c0:b0:ce:cf:97:05:35:b5:4e:85:7b:dd:b0:2f:
7c:06:72:ac:1a:12:2a:d2:a5:1b:33:d0:e1:84:b9:83:7e:b4:
9d:88:7f:07:f1:6a:cf:2d:49:96:65:72:9f:bd:e1:b5:af:04:
0b:db:21:6c:fc:a7:08:56:c1:79:69:b2:af:ed:b6:3f:1b:27:
ab:fd:28:2f:e3:4e:9b:2b:b1:74:6a:d0:99:f7:98:9d:bc:1c:
85:70:93:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:31:48 2026 by rpki-client