Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3132342e3135302e3133342e302f32342d3234203d3e203338383433.roa
File: 3132342e3135302e3133342e302f32342d3234203d3e203338383433.roa (raw, json)
Hash identifier: fHtLbETDus7MPpoX7lV7SjUkgWewaSo9qQ61nJ2DFjs=
Subject key identifier: 58:26:DC:61:F4:C8:D5:CE:7C:92:2B:5B:6C:44:F6:3B:78:A0:B1:D6
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 5DB80F83AB74C86410F539B501779E579FB9DBD8
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3132342e3135302e3133342e302f32342d3234203d3e203338383433.roa
Signing time: Mon 11 May 2026 17:08:21 +0000
ROA not before: Mon 11 May 2026 17:03:21 +0000
ROA not after: Mon 10 May 2027 17:08:21 +0000
asID: 38843
IP address blocks: 124.150.134.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5d:b8:0f:83:ab:74:c8:64:10:f5:39:b5:01:77:9e:57:9f:b9:db:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:03:21 2026 GMT
Not After : May 10 17:08:21 2027 GMT
Subject: CN=5826DC61F4C8D5CE7C922B5B6C44F63B78A0B1D6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:fc:a7:d7:73:eb:01:55:41:f5:2a:b2:62:42:
19:a7:a7:82:dd:2f:ad:25:5b:8e:e8:1e:87:4c:35:
59:93:6d:71:60:a7:7b:39:08:df:01:15:eb:c5:9e:
2c:13:9a:d0:76:5d:4d:bf:8d:1d:b9:74:65:ca:e4:
63:48:17:2c:7b:4c:22:29:c2:bd:0a:06:05:08:02:
43:b9:90:41:ef:8e:81:d5:61:63:a3:19:71:82:01:
66:c8:8a:77:bf:b9:3c:c0:35:5a:9f:f3:d3:c8:14:
5d:5a:b0:58:eb:4f:df:44:c9:22:6c:96:02:9d:dd:
de:94:da:6a:20:41:15:48:97:24:85:61:c4:02:72:
49:ce:2e:c5:8f:1b:25:1f:b3:7b:a9:7f:50:3a:e8:
70:7c:ec:5c:a3:c0:4d:72:9c:81:1a:f8:23:47:40:
35:57:91:13:24:a0:cc:c8:05:de:ad:09:09:f2:41:
ed:f4:6d:09:34:09:6d:d9:f8:38:04:84:bf:c9:3b:
bf:ba:90:00:85:e9:7f:9e:16:07:59:fa:de:bd:45:
28:f4:bf:6f:76:bb:fa:31:4f:6e:11:af:4b:33:bc:
76:02:17:27:97:68:c5:5d:a4:70:41:ae:ca:35:48:
f6:f8:ea:01:61:fe:27:aa:ca:8a:11:fd:e9:78:7a:
71:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:26:DC:61:F4:C8:D5:CE:7C:92:2B:5B:6C:44:F6:3B:78:A0:B1:D6
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3132342e3135302e3133342e302f32342d3234203d3e203338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
124.150.134.0/24
Signature Algorithm: sha256WithRSAEncryption
89:c3:55:82:1d:86:37:0e:87:eb:b8:c7:38:13:a3:ce:e7:7f:
da:dc:c1:dc:f3:12:41:ab:c7:12:f5:7b:13:b3:3b:be:45:28:
08:f1:17:be:98:0f:9d:24:33:25:a0:4f:64:ab:bc:8d:1e:59:
a8:90:1d:fb:98:a7:aa:fb:4c:eb:32:72:c7:57:76:01:ff:3c:
7a:3d:6b:38:47:60:bc:0b:d6:52:89:de:59:a7:fd:5b:ef:35:
a4:9c:d8:97:3b:94:48:3c:1d:a4:e1:bd:7b:1a:ae:4c:b4:e7:
f8:cd:82:35:d7:bc:2c:03:dc:6d:7b:f2:e3:4c:31:d9:ee:46:
d9:45:a0:60:90:cc:e8:2b:98:ad:ab:d4:a0:43:64:2f:de:95:
16:a4:66:96:d2:73:07:20:a6:d2:2c:bb:1b:1c:7b:0b:08:a5:
98:c0:f8:cd:6d:fe:e6:2d:b4:6a:a4:05:86:a5:d5:36:96:9d:
f3:5a:4b:97:2a:4d:6b:80:ae:9f:97:c2:e1:1e:cb:de:d2:49:
ba:0a:29:bd:80:e6:3b:6a:f5:9f:63:db:19:e2:14:c9:6a:bd:
6d:8f:d3:9c:72:dd:e0:d0:ef:bd:39:af:bc:cf:3a:5a:bf:7a:
96:2c:e7:4f:3f:fb:40:d2:22:21:e8:8d:c8:28:3a:d4:ad:98:
2a:4f:d6:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:14:55 2026 by rpki-client