Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/M2NIM/1/3135372e32302e3133342e302f32342d3234203d3e20343030363138.roa
File: 3135372e32302e3133342e302f32342d3234203d3e20343030363138.roa (raw, json)
Hash identifier: XXKYaMUQ9ja5C/x9TwazrmKnnlLWSfJb+JMU6MAgrIw=
Subject key identifier: 9B:02:3D:E5:58:5C:84:99:EB:85:C6:F5:2B:1D:E7:B7:51:F8:02:DE
Certificate issuer: /CN=B5BCB843FC62D50C018D67AAECEC768693B898BB
Certificate serial: 1BC86A8148EA0074018016A6C528B24FB818D692
Authority key identifier: B5:BC:B8:43:FC:62:D5:0C:01:8D:67:AA:EC:EC:76:86:93:B8:98:BB
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B5BCB843FC62D50C018D67AAECEC768693B898BB.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/M2NIM/1/3135372e32302e3133342e302f32342d3234203d3e20343030363138.roa
Signing time: Mon 11 May 2026 17:36:27 +0000
ROA not before: Mon 11 May 2026 17:31:27 +0000
ROA not after: Mon 10 May 2027 17:36:27 +0000
asID: 400618
IP address blocks: 157.20.134.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:c8:6a:81:48:ea:00:74:01:80:16:a6:c5:28:b2:4f:b8:18:d6:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B5BCB843FC62D50C018D67AAECEC768693B898BB
Validity
Not Before: May 11 17:31:27 2026 GMT
Not After : May 10 17:36:27 2027 GMT
Subject: CN=9B023DE5585C8499EB85C6F52B1DE7B751F802DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:a5:5c:7a:25:ed:67:7d:57:e2:cb:5d:20:e3:
0c:2f:16:9d:31:9e:58:b9:7f:5a:61:f0:a2:04:33:
e0:8b:b9:af:6b:5f:33:ba:13:8a:c8:e5:32:11:89:
38:00:5f:9b:88:7b:cd:74:44:2b:fc:ea:69:93:bb:
2b:e0:c0:cd:48:38:6e:2a:67:2d:82:9f:13:1a:81:
be:b1:fd:55:f2:83:e4:50:91:ec:37:09:73:5f:d5:
45:f8:9a:49:51:83:23:15:6d:d4:63:89:10:b2:95:
a4:d5:69:9e:75:99:4c:60:86:79:39:69:a2:a4:94:
49:9b:a1:de:4f:77:5c:6f:c4:ee:fe:f6:06:f8:76:
74:cc:2e:7d:bf:97:bb:b1:ff:62:09:4e:59:e5:a9:
00:a4:77:6d:1d:59:e9:95:04:2e:91:69:a8:ef:0b:
66:40:49:d5:67:11:60:88:54:f9:c1:40:18:97:78:
f2:de:94:3d:65:86:ba:d1:1f:a9:5a:32:34:4e:08:
23:b4:3c:0d:70:20:0f:ac:46:68:a2:40:18:09:c0:
e7:ba:65:a1:24:ee:ac:29:67:e8:5c:c7:34:65:df:
b5:36:5a:37:18:e0:50:2b:ce:d5:30:f2:4e:12:15:
12:f1:5a:16:68:c4:1b:e8:bd:e2:c8:5d:bf:2e:f8:
18:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:02:3D:E5:58:5C:84:99:EB:85:C6:F5:2B:1D:E7:B7:51:F8:02:DE
X509v3 Authority Key Identifier:
keyid:B5:BC:B8:43:FC:62:D5:0C:01:8D:67:AA:EC:EC:76:86:93:B8:98:BB
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/M2NIM/1/B5BCB843FC62D50C018D67AAECEC768693B898BB.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B5BCB843FC62D50C018D67AAECEC768693B898BB.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/M2NIM/1/3135372e32302e3133342e302f32342d3234203d3e20343030363138.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.134.0/24
Signature Algorithm: sha256WithRSAEncryption
33:13:11:44:7d:5d:f4:6d:c4:b7:ba:54:29:82:19:59:f6:e2:
9a:a0:41:90:64:5d:d5:8c:d7:00:69:86:b5:38:32:fd:73:8d:
bd:4d:8b:b7:86:c3:91:87:1d:fd:6f:f8:82:3f:47:23:4d:c5:
dc:62:4f:84:b4:51:f5:df:25:49:6e:ba:07:85:65:b6:6a:4b:
76:4c:55:5a:18:5c:32:ee:c3:bb:6d:c3:1d:49:89:45:ff:46:
a8:ae:30:8f:a2:be:0b:67:67:52:b1:d3:e0:ad:7a:55:5b:21:
19:82:ca:9f:67:83:65:b8:7a:66:14:55:2a:73:ac:d7:cb:1d:
93:22:46:65:61:c0:61:51:0b:8b:11:a6:60:ad:09:ea:78:7d:
2f:fb:cd:ba:fe:a3:c8:89:9c:22:01:06:5e:6a:e9:d9:cf:85:
50:3c:89:d3:b0:dd:3b:01:a7:91:f6:9e:38:4b:ec:b0:95:f9:
48:f5:68:35:a1:a3:51:e0:2f:e4:8a:7c:85:2a:53:ff:8b:1d:
44:cf:3f:d7:99:3a:cd:6e:e9:8f:22:85:ba:e8:7f:b4:d4:8d:
d7:21:b3:a4:77:7f:cb:a5:3c:f6:70:b7:09:ce:a2:66:e9:93:
85:24:23:f8:c3:aa:a7:db:99:95:42:d1:5d:02:83:69:8e:bb:
12:54:68:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:56:15 2026 by rpki-client