Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/M2NIM/1/3135372e32302e3133342e302f32332d3234203d3e203332353935.roa
File: 3135372e32302e3133342e302f32332d3234203d3e203332353935.roa (raw, json)
Hash identifier: 2miGNbONfgJVnuMX1O6Xis0X2QHCKO3xHvx8nDoW3Q0=
Subject key identifier: EC:4C:69:1E:DE:DA:CF:21:CB:E4:AA:D1:FC:F0:61:3E:A8:34:DE:BD
Certificate issuer: /CN=B5BCB843FC62D50C018D67AAECEC768693B898BB
Certificate serial: 2963FBFCD7A9877AE2AE2E9BE5D5ACED9FBF53D9
Authority key identifier: B5:BC:B8:43:FC:62:D5:0C:01:8D:67:AA:EC:EC:76:86:93:B8:98:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B5BCB843FC62D50C018D67AAECEC768693B898BB.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/M2NIM/1/3135372e32302e3133342e302f32332d3234203d3e203332353935.roa
Signing time: Mon 11 May 2026 17:36:20 +0000
ROA not before: Mon 11 May 2026 17:31:20 +0000
ROA not after: Mon 10 May 2027 17:36:20 +0000
asID: 32595
IP address blocks: 157.20.134.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
29:63:fb:fc:d7:a9:87:7a:e2:ae:2e:9b:e5:d5:ac:ed:9f:bf:53:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B5BCB843FC62D50C018D67AAECEC768693B898BB
Validity
Not Before: May 11 17:31:20 2026 GMT
Not After : May 10 17:36:20 2027 GMT
Subject: CN=EC4C691EDEDACF21CBE4AAD1FCF0613EA834DEBD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:bb:b8:e6:71:96:10:a6:d8:92:01:71:69:e7:
7c:1e:60:bc:e1:61:31:1d:a9:d1:03:f7:5b:1e:08:
5a:83:7a:48:3c:84:0b:15:8a:2d:f3:d5:8a:ae:e6:
79:fb:fe:ca:07:65:16:47:da:00:b5:22:00:86:bc:
f5:59:14:fd:df:82:50:e3:3f:c7:a8:6f:97:fb:9e:
c7:9b:45:35:bb:13:b5:2c:78:02:d7:c9:03:5f:20:
dc:62:26:d0:03:82:a2:eb:f7:5e:3c:c7:38:d7:62:
c9:e2:73:2f:c7:8a:29:b3:48:3e:1b:41:06:97:1b:
9d:4d:b1:6b:80:dc:50:1e:b4:e1:7d:91:c0:38:5e:
15:c0:fa:e6:5c:f9:27:d8:72:0d:8e:ea:90:19:58:
2c:42:92:bf:18:e1:dc:f0:8d:8e:4d:b7:29:86:c1:
a3:09:20:19:da:4e:7e:38:a0:50:a9:6c:a5:ba:f9:
9f:5f:d5:ed:01:fd:ea:7d:2e:cd:46:fc:58:b4:24:
d9:53:88:f1:f6:09:a3:76:e4:62:85:6b:c6:f0:d9:
13:74:62:8a:88:1e:90:11:83:c5:fe:e4:0c:01:fc:
c8:fc:ec:e7:6d:87:f3:d4:83:35:d0:e5:27:05:4d:
5a:9f:ea:bb:37:42:06:4b:30:39:ee:f6:f2:8c:1a:
a2:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:4C:69:1E:DE:DA:CF:21:CB:E4:AA:D1:FC:F0:61:3E:A8:34:DE:BD
X509v3 Authority Key Identifier:
keyid:B5:BC:B8:43:FC:62:D5:0C:01:8D:67:AA:EC:EC:76:86:93:B8:98:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/M2NIM/1/B5BCB843FC62D50C018D67AAECEC768693B898BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B5BCB843FC62D50C018D67AAECEC768693B898BB.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/M2NIM/1/3135372e32302e3133342e302f32332d3234203d3e203332353935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.134.0/23
Signature Algorithm: sha256WithRSAEncryption
28:c5:81:b8:53:8c:eb:e0:a8:ed:41:5a:25:7a:01:84:83:82:
f5:f8:98:6b:32:3a:ad:c4:68:7c:90:4f:a4:3d:1f:c0:3a:92:
21:e4:c9:b1:39:c9:32:31:a0:4e:0c:b1:43:77:75:44:97:56:
ae:5f:2a:79:ce:e6:22:c0:cc:aa:40:29:85:84:1a:4d:4b:8c:
88:bd:c7:a5:7c:8e:ab:05:b7:f0:ae:78:97:32:58:ab:ec:08:
de:19:61:65:a1:5a:af:a9:3f:9d:6c:cd:6c:83:81:81:77:bc:
6b:e7:51:25:cc:e7:c8:d8:c9:0d:72:3e:07:cd:94:d3:82:7c:
59:e2:80:7a:26:4a:d5:76:6f:f7:c0:88:df:37:61:01:49:48:
33:1c:20:49:fd:a7:84:8d:3b:7d:9d:c8:f2:7d:66:38:cf:64:
52:fb:65:fa:12:b3:b9:26:1b:2b:60:fa:4a:2b:08:af:a3:eb:
ea:16:b3:35:98:b1:6c:5c:30:05:e2:d4:c4:da:33:a2:fe:9f:
79:f2:72:f5:96:c6:ec:28:3e:ce:11:a4:4f:15:9e:2d:0a:82:
1e:e4:b1:a8:bb:4e:87:f4:92:52:45:e2:b4:d2:6a:0c:83:c9:
d0:96:84:ec:5f:e7:cc:ae:29:ee:a9:9a:ad:92:f2:2e:df:cc:
5b:01:0e:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:56:29 2026 by rpki-client