Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3132342e3135302e3133302e302f32342d3234203d3e203338383433.roa
File: 3132342e3135302e3133302e302f32342d3234203d3e203338383433.roa (raw, json)
Hash identifier: y/ZnbNV1IOmTt5lyuwvaz+3KWTi7cbpuBOYbk/e6jrA=
Subject key identifier: 01:C3:60:AB:CD:D9:17:6E:86:0E:13:FA:0E:A4:49:06:9F:65:28:7E
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 406442A1ED05CD7A770BA51F758FBA44063BD9D2
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3132342e3135302e3133302e302f32342d3234203d3e203338383433.roa
Signing time: Mon 11 May 2026 17:08:19 +0000
ROA not before: Mon 11 May 2026 17:03:19 +0000
ROA not after: Mon 10 May 2027 17:08:19 +0000
asID: 38843
IP address blocks: 124.150.130.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
40:64:42:a1:ed:05:cd:7a:77:0b:a5:1f:75:8f:ba:44:06:3b:d9:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:03:19 2026 GMT
Not After : May 10 17:08:19 2027 GMT
Subject: CN=01C360ABCDD9176E860E13FA0EA449069F65287E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:ab:a7:76:7d:61:ac:a2:55:38:2f:fb:30:8b:
63:b0:d2:a4:b9:9e:70:3e:96:25:34:10:9b:86:15:
0d:aa:63:29:d3:11:83:d3:8a:7c:37:de:c9:f1:93:
e3:ef:65:d7:ee:b6:f2:9a:9f:5c:ca:9e:63:66:20:
1a:55:f2:a9:c4:43:5b:9b:96:73:ba:a5:43:c4:b6:
fb:db:fc:5f:e2:d3:3d:4d:25:da:80:7c:c5:ee:6f:
3f:a8:1f:04:23:34:b2:c8:83:3a:7f:e2:b3:d2:78:
42:3d:c9:c1:ff:f4:63:a2:13:87:f2:a9:7e:b7:d8:
0e:fc:47:8c:d6:4f:f4:95:f3:a2:62:43:8e:3e:a3:
d8:5e:d1:93:ff:72:08:e7:9f:a4:1c:61:53:5d:f8:
1a:8f:c7:2a:7e:11:5d:ca:d2:bc:93:56:81:9a:7d:
c0:d0:bb:98:67:c7:de:a1:aa:5e:d0:7b:f3:66:d0:
94:36:1c:ea:ae:20:39:94:a2:b3:d2:a5:04:4a:0e:
89:86:29:3d:d2:5f:60:4f:a5:a1:8e:77:99:0c:2e:
8e:c8:01:ef:a4:db:38:8f:80:80:a8:b1:37:4b:49:
a4:16:52:6a:91:42:27:20:ff:f0:1b:41:ee:83:fd:
79:98:52:c1:a8:cf:ba:94:49:0f:fa:3e:ca:d6:f2:
0e:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:C3:60:AB:CD:D9:17:6E:86:0E:13:FA:0E:A4:49:06:9F:65:28:7E
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3132342e3135302e3133302e302f32342d3234203d3e203338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
124.150.130.0/24
Signature Algorithm: sha256WithRSAEncryption
87:76:4d:eb:e4:37:2a:b4:c4:61:52:2c:de:29:98:de:1a:54:
5a:81:7e:89:1d:21:78:20:1a:58:be:ee:cf:b2:b1:10:4b:4c:
a0:e9:8f:e7:68:ed:61:d3:c0:af:dd:a5:bd:27:45:9c:77:59:
14:f8:64:89:c7:3c:36:d8:f2:26:80:4f:61:95:21:85:c9:94:
86:aa:5e:2a:cc:38:1f:d9:55:48:88:64:ac:a4:c6:5b:ee:42:
3c:58:38:2f:21:55:f9:39:a0:0f:2b:d9:cd:27:f0:43:5c:aa:
ae:22:d8:c5:0a:cd:2b:c5:7c:4b:11:0e:d9:fc:4b:a4:45:23:
e9:ef:34:b8:05:38:b2:0d:63:9f:98:69:82:c6:34:4f:2e:0f:
51:15:dc:84:0e:06:88:ec:43:b6:00:c6:34:8c:34:0a:f1:9d:
71:60:67:20:e7:20:ca:c3:c1:5c:09:27:34:6b:12:7a:12:78:
e2:85:d1:86:c2:32:97:24:d9:3d:a6:71:ba:29:b1:58:b1:92:
2f:da:b1:96:9f:cf:98:a7:74:50:5d:7d:f3:b9:9e:d4:42:ba:
b5:30:57:95:3c:ad:f1:3f:51:1c:b8:7d:f1:2d:a9:b5:52:74:
38:94:36:fb:4c:7a:80:f1:f2:db:ca:f2:9a:1e:7c:02:6b:ae:
3e:7b:c4:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:12:00 2026 by rpki-client