Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PIINET/0/3135302e3130372e36342e302f32322d3234203d3e203137373130.roa
File: 3135302e3130372e36342e302f32322d3234203d3e203137373130.roa (raw, json)
Hash identifier: n+v5o9SBdWVqA5qvRZf6BeSCSFLkZj6roCOPAhBcFqM=
Subject key identifier: 45:54:8A:C2:D4:49:07:EC:8D:D2:96:95:9B:87:8E:46:3D:2A:33:5D
Certificate issuer: /CN=857A2684D7DBC89CE784E4DF16F1A1C03D945585
Certificate serial: 4EE2D57C47CE6EBB826D3C1673D9151088BCF651
Authority key identifier: 85:7A:26:84:D7:DB:C8:9C:E7:84:E4:DF:16:F1:A1:C0:3D:94:55:85
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/857A2684D7DBC89CE784E4DF16F1A1C03D945585.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PIINET/0/3135302e3130372e36342e302f32322d3234203d3e203137373130.roa
Signing time: Mon 11 May 2026 17:04:34 +0000
ROA not before: Mon 11 May 2026 16:59:34 +0000
ROA not after: Mon 10 May 2027 17:04:34 +0000
asID: 17710
IP address blocks: 150.107.64.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
4e:e2:d5:7c:47:ce:6e:bb:82:6d:3c:16:73:d9:15:10:88:bc:f6:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=857A2684D7DBC89CE784E4DF16F1A1C03D945585
Validity
Not Before: May 11 16:59:34 2026 GMT
Not After : May 10 17:04:34 2027 GMT
Subject: CN=45548AC2D44907EC8DD296959B878E463D2A335D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:c6:f7:87:9d:d2:c7:12:e8:54:a5:b1:e6:53:
21:a3:a4:2f:24:dd:8f:82:f5:6d:16:de:87:1a:d5:
62:e3:76:2c:c1:63:99:8a:d1:1b:e1:30:6d:b6:d0:
87:ba:40:54:51:49:88:21:5d:bd:9d:c3:0e:0a:d4:
fe:1d:ea:c0:77:54:56:5e:f2:17:77:57:20:18:cc:
eb:b5:f4:5f:cf:20:27:d8:6b:3e:36:f0:9e:a9:53:
8f:16:39:68:7f:f6:fe:e9:7c:33:17:ed:20:81:2d:
b5:8f:3c:6a:e3:51:c9:70:c2:c3:60:c3:38:46:44:
1d:8d:79:41:2c:98:b8:d5:4f:4f:9e:58:81:63:d8:
3e:24:e2:79:ca:ad:46:e6:99:a3:3e:d4:33:44:44:
04:ef:26:9e:3b:2b:72:2b:6f:3b:76:67:60:95:6a:
d8:40:14:94:fb:8c:2d:96:e6:06:b3:6a:3e:15:05:
f7:9a:71:b4:a4:dc:74:e7:db:9f:9f:e1:9a:f9:61:
3f:dc:2e:24:3f:d0:e7:c2:cc:13:f5:a2:6f:1c:a2:
3c:24:a1:96:91:fe:a1:7e:a7:43:c8:ee:3d:26:70:
07:ca:1c:3b:11:c3:ab:4f:ea:ba:39:99:fd:86:90:
2d:5b:27:b5:bf:66:d8:62:fe:0f:ba:b5:be:98:ff:
11:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:54:8A:C2:D4:49:07:EC:8D:D2:96:95:9B:87:8E:46:3D:2A:33:5D
X509v3 Authority Key Identifier:
keyid:85:7A:26:84:D7:DB:C8:9C:E7:84:E4:DF:16:F1:A1:C0:3D:94:55:85
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/857A2684D7DBC89CE784E4DF16F1A1C03D945585.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PIINET/0/3135302e3130372e36342e302f32322d3234203d3e203137373130.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.107.64.0/22
Signature Algorithm: sha256WithRSAEncryption
96:96:67:01:51:87:91:11:9a:ea:4b:24:53:d4:df:ab:49:a4:
be:38:05:08:e4:42:60:21:ce:2c:74:ec:81:db:1d:79:e9:95:
3c:ed:6c:c8:19:b6:6d:06:78:d6:71:ca:66:5b:c9:07:ce:1e:
44:cf:1b:6f:19:2a:51:7c:fd:fe:e8:a5:21:dd:ae:4b:69:01:
a5:a9:b3:10:b7:79:71:3e:e1:db:54:12:4b:b5:8c:5b:6e:b0:
2f:47:a7:25:cd:87:48:15:dc:86:fb:56:5d:4a:5e:28:a2:34:
b4:3f:12:70:86:e5:49:4e:73:c4:69:77:73:e5:c1:65:ea:02:
13:16:8b:eb:d3:20:33:03:a2:ef:17:f0:b9:7c:e8:9a:dc:78:
b9:c8:68:dd:67:5d:ef:63:b1:61:8c:83:b9:02:e6:72:4c:b0:
df:40:91:4a:b2:8a:4e:fa:e5:d0:7c:17:36:16:f9:0e:e1:54:
6c:3e:df:ab:f4:63:96:7b:ce:1a:46:b2:a9:3e:05:ac:f5:02:
16:77:33:7e:ba:56:a6:30:2d:ac:c9:0d:a4:28:0e:43:1e:9b:
6e:5b:4e:26:61:b1:1f:f0:37:20:4f:7d:cd:73:a6:ba:75:41:
58:16:06:69:1f:82:66:8f:96:bf:ce:91:bc:b0:f0:a3:b0:78:
f7:2f:99:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:20:16 2026 by rpki-client