Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/IMYKL/0/3136302e3139312e342e302f32332d3234203d3e203338303432.roa
File: 3136302e3139312e342e302f32332d3234203d3e203338303432.roa (raw, json)
Hash identifier: uC4SAyffO7EbE3rGS0jHS6n7C39qBWkfFa7uUUduW8s=
Subject key identifier: 91:C1:ED:9F:57:43:4D:DF:46:86:71:29:10:D7:3F:23:D0:99:24:8B
Certificate issuer: /CN=EF1D10484EFA79ABC018FA0EFA7F3B0C16EE43A7
Certificate serial: 339623E7C8B93E476BB515A2D2FF273F5E82EF9D
Authority key identifier: EF:1D:10:48:4E:FA:79:AB:C0:18:FA:0E:FA:7F:3B:0C:16:EE:43:A7
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/EF1D10484EFA79ABC018FA0EFA7F3B0C16EE43A7.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/IMYKL/0/3136302e3139312e342e302f32332d3234203d3e203338303432.roa
Signing time: Mon 11 May 2026 17:57:33 +0000
ROA not before: Mon 11 May 2026 17:52:33 +0000
ROA not after: Mon 10 May 2027 17:57:33 +0000
asID: 38042
IP address blocks: 160.191.4.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:96:23:e7:c8:b9:3e:47:6b:b5:15:a2:d2:ff:27:3f:5e:82:ef:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EF1D10484EFA79ABC018FA0EFA7F3B0C16EE43A7
Validity
Not Before: May 11 17:52:33 2026 GMT
Not After : May 10 17:57:33 2027 GMT
Subject: CN=91C1ED9F57434DDF4686712910D73F23D099248B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:eb:12:ab:21:4c:6b:95:b5:25:61:85:5a:4e:
8f:ad:d7:9e:6c:45:1e:26:34:5d:08:0a:f2:49:f6:
b9:1d:f6:24:44:86:7a:c4:a0:4a:c5:53:6e:21:16:
21:c0:8a:ff:48:64:b3:97:28:d0:6b:01:ef:b0:80:
f5:a9:13:82:fc:d2:6e:d5:10:de:d3:4f:86:90:df:
22:4e:02:a8:ab:9c:8c:c1:9d:57:bf:44:d1:ae:61:
0b:a5:6d:b7:c7:32:42:5a:9d:ba:8a:d6:f5:d9:1f:
08:5d:33:68:4d:35:8f:16:d3:09:b5:48:e9:db:14:
4f:75:1d:fb:19:91:03:74:6a:a5:d5:30:bb:09:ce:
4e:a3:9a:75:99:b6:67:a2:5f:d2:e2:27:8f:a8:db:
dc:61:50:20:c5:4e:8c:f2:d1:6d:82:e0:a3:2d:78:
6a:bd:e3:0a:bb:f1:2d:92:7f:95:93:a2:da:9d:e5:
31:b8:d4:43:94:d1:91:52:90:d1:07:1c:65:a6:b8:
8a:46:89:52:67:5e:9d:90:1b:7c:43:86:cb:1b:49:
92:89:ee:9b:a4:fc:c4:45:6a:ce:4f:76:6e:14:bf:
34:73:63:ed:a5:e7:c1:fc:f5:7c:73:af:fd:47:68:
81:90:4a:35:b5:66:08:f9:a4:1d:48:d3:73:72:6c:
55:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:C1:ED:9F:57:43:4D:DF:46:86:71:29:10:D7:3F:23:D0:99:24:8B
X509v3 Authority Key Identifier:
keyid:EF:1D:10:48:4E:FA:79:AB:C0:18:FA:0E:FA:7F:3B:0C:16:EE:43:A7
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/IMYKL/0/EF1D10484EFA79ABC018FA0EFA7F3B0C16EE43A7.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/EF1D10484EFA79ABC018FA0EFA7F3B0C16EE43A7.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/IMYKL/0/3136302e3139312e342e302f32332d3234203d3e203338303432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.191.4.0/23
Signature Algorithm: sha256WithRSAEncryption
75:19:20:7e:2e:10:57:26:81:f1:36:12:d1:eb:33:9d:06:ee:
ae:e4:e8:b9:e3:7d:21:65:62:58:99:c4:9c:b6:b1:4f:f3:f7:
ef:b0:a2:8f:68:db:07:6e:9e:36:f1:48:c9:29:91:f1:d2:57:
84:dd:51:8d:41:43:f9:f7:7c:08:73:60:f1:88:69:b6:bc:0b:
af:a1:f7:e5:4a:b5:68:20:f6:48:38:45:aa:9a:05:e0:28:c2:
16:52:b1:f9:bd:95:31:32:76:9e:02:82:8a:71:6a:07:5b:b0:
eb:bc:4d:b0:0a:99:15:a1:de:a1:5b:87:68:28:35:c5:23:b6:
1e:d8:c3:f7:91:52:7e:13:ba:cb:7e:58:cb:16:dd:71:6d:26:
d6:92:08:8b:14:38:d8:43:56:2c:34:2d:b1:1c:cc:53:48:0b:
13:d2:8c:07:d9:68:ec:28:6c:b7:5f:81:ee:3b:7c:e9:71:13:
1b:2a:c0:5b:79:6c:5b:d0:75:ee:d6:0b:1c:ae:5f:d9:11:da:
a8:af:dc:29:42:e5:79:7a:d5:0c:18:90:40:3f:b1:ad:e6:0b:
2c:69:f9:68:03:01:12:a7:8c:a0:47:d7:4d:2c:d5:8b:ab:89:
90:86:3f:9d:e8:79:14:6b:fc:9b:03:f7:b2:f6:dc:a5:cc:51:
df:f7:2d:6b
-----BEGIN CERTIFICATE-----
MIIE1TCCA72gAwIBAgIUM5Yj58i5PkdrtRWi0v8nP16C750wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoRUYxRDEwNDg0RUZBNzlBQkMwMThGQTBFRkE3RjNCMEMx
NkVFNDNBNzAeFw0yNjA1MTExNzUyMzNaFw0yNzA1MTAxNzU3MzNaMDMxMTAvBgNV
BAMTKDkxQzFFRDlGNTc0MzREREY0Njg2NzEyOTEwRDczRjIzRDA5OTI0OEIwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC06xKrIUxrlbUlYYVaTo+t155s
RR4mNF0ICvJJ9rkd9iREhnrEoErFU24hFiHAiv9IZLOXKNBrAe+wgPWpE4L80m7V
EN7TT4aQ3yJOAqirnIzBnVe/RNGuYQulbbfHMkJanbqK1vXZHwhdM2hNNY8W0wm1
SOnbFE91HfsZkQN0aqXVMLsJzk6jmnWZtmeiX9LiJ4+o29xhUCDFTozy0W2C4KMt
eGq94wq78S2Sf5WTotqd5TG41EOU0ZFSkNEHHGWmuIpGiVJnXp2QG3xDhssbSZKJ
7puk/MRFas5Pdm4UvzRzY+2l58H89Xxzr/1HaIGQSjW1Zgj5pB1I03NybFXtAgMB
AAGjggHfMIIB2zAdBgNVHQ4EFgQUkcHtn1dDTd9GhnEpENc/I9CZJIswHwYDVR0j
BBgwFoAU7x0QSE76eavAGPoO+n87DBbuQ6cwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud
HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSU1ZS0wv
MC9FRjFEMTA0ODRFRkE3OUFCQzAxOEZBMEVGQTdGM0IwQzE2RUU0M0E3LmNybDBv
BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS8wL0VGMUQxMDQ4NEVGQTc5QUJDMDE4RkEwRUZBN0Yz
QjBDMTZFRTQzQTcuY2VyMHkGCCsGAQUFBwELBG0wazBpBggrBgEFBQcwC4ZdcnN5
bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9JTVlLTC8wLzMxMzYzMDJlMzEzOTMx
MmUzNDJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMzMzgzMDM0MzIucm9hMBgGA1Ud
IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD
BAGgvwQwDQYJKoZIhvcNAQELBQADggEBAHUZIH4uEFcmgfE2EtHrM50G7q7k6Lnj
fSFlYliZxJy2sU/z9++woo9o2wdunjbxSMkpkfHSV4TdUY1BQ/n3fAhzYPGIaba8
C6+h9+VKtWgg9kg4RaqaBeAowhZSsfm9lTEydp4CgopxagdbsOu8TbAKmRWh3qFb
h2goNcUjth7Yw/eRUn4Tust+WMsW3XFtJtaSCIsUONhDViw0LbEczFNICxPSjAfZ
aOwobLdfge47fOlxExsqwFt5bFvQde7WCxyuX9kR2qiv3ClC5Xl61QwYkEA/sa3m
Cyxp+WgDARKnjKBH100s1YuriZCGP53oeRRr/JsD97L23KXMUd/3LWs=
-----END CERTIFICATE-----
Generated at Wed May 13 00:45:18 2026 by rpki-client