Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/KE-ING/0/3131392e31342e3132382e302f31372d3137203d3e203138303432.roa
File: 3131392e31342e3132382e302f31372d3137203d3e203138303432.roa (raw, json)
Hash identifier: Jdj9OnL+nvn+5vJ82BuOV+iDpLKwfqTLwAmIzmHjSjM=
Subject key identifier: 7D:26:95:2D:A6:9C:4F:3B:8C:C6:F8:7C:CE:00:E8:19:EB:4F:2B:D6
Certificate issuer: /CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B
Certificate serial: 17080ACDFB293A32B365CA0B3D3C758F7D5179C0
Authority key identifier: 04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/KE-ING/0/3131392e31342e3132382e302f31372d3137203d3e203138303432.roa
Signing time: Mon 11 May 2026 17:09:15 +0000
ROA not before: Mon 11 May 2026 17:04:15 +0000
ROA not after: Mon 10 May 2027 17:09:15 +0000
asID: 18042
IP address blocks: 119.14.128.0/17 maxlen: 17
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
17:08:0a:cd:fb:29:3a:32:b3:65:ca:0b:3d:3c:75:8f:7d:51:79:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=049D4DBCFAA5EE28A79BF49E623E87CD23324E4B
Validity
Not Before: May 11 17:04:15 2026 GMT
Not After : May 10 17:09:15 2027 GMT
Subject: CN=7D26952DA69C4F3B8CC6F87CCE00E819EB4F2BD6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:62:3c:19:67:c6:c2:7c:8f:54:11:09:fa:45:
6f:f7:d4:66:73:bf:42:e6:be:6d:38:ee:48:7d:84:
ec:45:14:ba:48:13:8a:43:40:5c:80:f7:7c:7f:b1:
a0:5d:25:c8:b0:5b:75:0b:a8:35:40:1f:38:f8:73:
2b:cb:de:3d:0c:39:24:f9:28:b2:fd:fb:6d:fd:7d:
2f:77:cb:ce:ec:2d:2c:0c:c2:8a:14:63:e2:af:a9:
62:83:4b:66:42:3e:42:b9:2d:d5:bc:be:3e:1d:13:
c6:ca:b0:21:95:6b:3f:ee:f6:59:50:2e:7d:ba:8c:
75:54:f9:23:af:3b:c7:fd:97:a6:a3:6b:36:90:8b:
b3:8c:bc:fc:7f:15:65:2a:4d:cc:6d:f5:1d:e5:68:
25:41:3c:de:99:69:d4:fb:cb:f1:64:7e:80:84:a1:
ca:05:1f:c0:d5:99:c6:b6:e3:51:ba:7a:c6:bb:8e:
fc:c8:cb:43:ca:6d:61:87:aa:67:e5:97:2d:6a:7a:
0c:87:14:73:ae:70:28:c9:91:d0:03:11:b5:8a:ca:
b6:02:a8:07:14:e2:d8:74:f3:f8:0c:c8:83:d6:5b:
91:8b:2e:39:92:86:09:54:29:c5:3e:52:e1:9d:a7:
d6:84:12:bc:65:d9:26:43:45:21:45:5a:d7:b7:79:
85:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:26:95:2D:A6:9C:4F:3B:8C:C6:F8:7C:CE:00:E8:19:EB:4F:2B:D6
X509v3 Authority Key Identifier:
keyid:04:9D:4D:BC:FA:A5:EE:28:A7:9B:F4:9E:62:3E:87:CD:23:32:4E:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/049D4DBCFAA5EE28A79BF49E623E87CD23324E4B.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KE-ING/0/3131392e31342e3132382e302f31372d3137203d3e203138303432.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
119.14.128.0/17
Signature Algorithm: sha256WithRSAEncryption
23:d0:d0:2f:2e:d5:20:1a:ed:ff:cb:91:62:32:7e:c0:f6:7a:
c4:2e:f6:74:77:76:60:05:7d:f6:08:5e:9b:94:5a:b0:9f:53:
9d:33:55:f9:98:56:52:43:42:a3:b2:03:83:13:30:d4:fe:53:
0e:c2:2b:99:1d:33:0c:ae:3b:fa:8e:df:f8:82:d9:cb:ba:6f:
fa:6e:11:19:e9:4c:f1:8a:c7:99:21:fa:3a:a8:9b:3d:38:66:
a2:e3:2f:ce:20:1e:2d:16:15:98:ad:7c:a2:cb:32:73:d3:13:
d6:fd:d9:52:6f:13:a8:1d:b3:bf:de:cf:15:ba:10:d4:38:69:
ca:e0:e5:6e:38:56:9a:87:42:58:de:ae:cc:0d:1d:95:ac:bc:
24:88:59:0e:14:31:91:78:94:a9:21:e3:75:81:e8:ec:6f:da:
50:6e:13:72:d2:3d:fe:61:9f:db:58:45:e3:38:b8:97:0a:65:
ad:8b:ac:06:06:4c:1d:81:ce:23:f2:d6:87:0f:9d:62:0b:77:
5b:b1:de:0c:b7:6d:27:ec:0b:ab:72:1e:1e:55:59:fc:91:bc:
be:92:fa:d5:ca:71:5f:7b:64:d7:d5:2b:6b:d9:28:2c:33:5f:
4d:e7:88:4a:fe:4a:c6:29:27:3a:f4:de:82:fe:a0:ec:d8:a1:
f9:92:9b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:20:39 2026 by rpki-client