Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PAGIC/0/3231302e36372e36342e302f31392d3234203d3e203137343230.roa
File: 3231302e36372e36342e302f31392d3234203d3e203137343230.roa (raw, json)
Hash identifier: XPhUbdwzkXKd7wyZA9mIWolSBc8w6j6pnxuPa4iOEgM=
Subject key identifier: B2:A5:6A:2D:87:10:40:01:51:94:00:DE:99:E1:65:07:66:0D:60:07
Certificate issuer: /CN=130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D
Certificate serial: 33CA9579E99C65022FE745DF4CD49FBDE18D3FE6
Authority key identifier: 13:0A:AF:47:5B:CC:02:CD:BB:DB:4C:97:44:EB:E3:1C:EE:EE:30:6D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PAGIC/0/3231302e36372e36342e302f31392d3234203d3e203137343230.roa
Signing time: Mon 11 May 2026 17:06:33 +0000
ROA not before: Mon 11 May 2026 17:01:33 +0000
ROA not after: Mon 10 May 2027 17:06:33 +0000
asID: 17420
IP address blocks: 210.67.64.0/19 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
33:ca:95:79:e9:9c:65:02:2f:e7:45:df:4c:d4:9f:bd:e1:8d:3f:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D
Validity
Not Before: May 11 17:01:33 2026 GMT
Not After : May 10 17:06:33 2027 GMT
Subject: CN=B2A56A2D87104001519400DE99E16507660D6007
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:6b:e7:85:05:fa:68:0a:aa:99:1c:7d:de:30:
f6:90:fb:95:7d:aa:50:6c:f7:e8:52:e5:a9:bc:1e:
d4:9a:34:e4:0c:54:c5:e5:40:92:53:f4:29:81:2b:
ad:5c:69:cc:c9:9a:9f:91:ea:d6:d4:e6:b5:d1:02:
cd:48:29:a2:f1:ef:26:64:f4:93:92:1c:93:61:cb:
6d:e2:27:90:97:89:a5:ce:3b:1b:8f:36:4d:3f:b8:
62:71:96:fa:c8:a2:95:4f:a9:22:99:9e:a3:94:a6:
b5:d8:73:19:fc:b2:47:2c:2f:a7:8a:2c:55:c8:73:
78:e9:f9:40:b9:63:41:ba:41:ca:73:6d:1d:e1:4c:
35:ae:c5:23:d2:53:04:da:24:e2:3a:21:09:dd:aa:
e8:7d:99:bb:45:29:47:87:ee:c3:a8:a5:d0:15:19:
00:94:cb:42:34:b5:56:61:d4:ec:2e:10:4a:e5:1f:
44:9c:cd:73:5a:62:da:2c:ee:51:d8:ef:60:34:8d:
8c:13:13:86:03:92:0c:50:49:07:ea:6b:66:42:23:
4d:aa:5a:54:d2:f4:e7:20:84:5f:a2:de:7c:be:51:
82:4c:61:c1:62:b0:00:49:76:4e:87:51:03:bf:74:
00:5e:27:32:45:ba:7c:4e:df:00:67:4a:0a:69:ed:
1d:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:A5:6A:2D:87:10:40:01:51:94:00:DE:99:E1:65:07:66:0D:60:07
X509v3 Authority Key Identifier:
keyid:13:0A:AF:47:5B:CC:02:CD:BB:DB:4C:97:44:EB:E3:1C:EE:EE:30:6D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PAGIC/0/130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/130AAF475BCC02CDBBDB4C9744EBE31CEEEE306D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PAGIC/0/3231302e36372e36342e302f31392d3234203d3e203137343230.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.67.64.0/19
Signature Algorithm: sha256WithRSAEncryption
78:c7:cf:4a:ee:0a:19:0b:cc:f0:b7:fb:2b:00:74:fd:e2:fb:
29:59:c5:bf:2f:cf:01:44:74:53:fe:24:fa:a1:da:bb:59:10:
0d:ca:2c:a8:0a:07:59:c5:0e:02:4f:20:9e:b8:fe:93:4d:52:
c6:dc:54:d4:36:e0:ef:cc:4d:8d:94:4b:28:83:6b:19:51:1b:
24:ce:12:06:b7:24:17:aa:8b:b0:8b:b8:63:9e:5e:ac:fe:12:
ba:8a:96:35:8f:58:18:03:b4:42:71:c9:5a:bb:27:4e:8f:7b:
5c:25:e3:f0:3a:5a:4b:1b:9c:fd:98:ba:02:c4:79:c5:18:c1:
b3:55:2b:79:ef:72:46:1f:63:41:cf:d5:16:1a:a7:c1:6f:2f:
86:89:55:19:a2:08:15:05:d8:9c:8d:e9:00:39:fb:13:f3:c5:
7a:c7:79:c3:43:53:34:48:d6:59:32:80:02:af:ae:93:ad:fd:
67:0e:88:91:ea:9e:35:e3:5b:60:2c:22:8a:3d:c2:a6:e3:8a:
ae:23:3d:cf:31:0c:5e:bc:58:e8:34:cc:84:38:99:a8:b2:56:
35:61:8f:02:c6:0e:13:9d:ec:a8:a8:3c:29:6a:fa:41:f4:46:
71:bb:41:d4:83:44:06:98:b7:43:25:67:1f:80:17:c6:4e:4c:
b1:d9:cd:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:19:12 2026 by rpki-client