Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33342e302f32342d3234203d3e203338383433.roa
File: 3232332e32372e33342e302f32342d3234203d3e203338383433.roa (raw, json)
Hash identifier: pkJet9siIAv/YWhawvFeEC/wp7KNuPCJIu0UCfLuDeA=
Subject key identifier: 82:09:62:92:1B:00:00:8E:29:53:47:59:1F:7A:CC:41:3B:AC:87:38
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 1A8D2F8F2A64294682D25798625C18A2B5674407
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33342e302f32342d3234203d3e203338383433.roa
Signing time: Mon 11 May 2026 17:08:23 +0000
ROA not before: Mon 11 May 2026 17:03:23 +0000
ROA not after: Mon 10 May 2027 17:08:23 +0000
asID: 38843
IP address blocks: 223.27.34.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1a:8d:2f:8f:2a:64:29:46:82:d2:57:98:62:5c:18:a2:b5:67:44:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:03:23 2026 GMT
Not After : May 10 17:08:23 2027 GMT
Subject: CN=820962921B00008E295347591F7ACC413BAC8738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8f:ca:05:15:24:96:10:7d:42:1a:14:a9:20:
3c:a4:66:46:f0:cb:5e:4e:84:6f:61:e2:02:da:79:
8b:c5:af:dd:e8:94:b2:56:84:0c:d5:9d:52:f6:01:
96:65:df:57:16:7c:29:44:05:27:dd:e8:ab:57:07:
af:cf:d1:5b:32:2c:ed:63:24:74:df:10:5f:b5:c8:
af:7d:1d:60:d7:dd:a3:72:3c:ef:c3:35:e3:f6:7f:
87:a3:df:61:52:da:d8:ef:bf:84:a2:3d:a3:09:93:
27:03:11:5d:fe:03:3a:03:e1:79:5f:0f:e1:19:5b:
05:9f:44:dc:4a:1f:21:65:ac:cc:f4:f0:7c:41:56:
9c:70:77:e6:e6:31:35:7b:ed:18:d9:c0:27:ee:2d:
ab:77:5e:1a:c0:b0:2e:c5:27:02:b5:65:60:8c:6e:
ba:b7:37:50:5f:e8:5b:47:21:40:d2:c3:ce:04:6c:
c3:65:1c:c7:b4:ea:d1:a8:97:7e:a3:68:40:a2:6f:
d3:ec:5d:3d:76:28:d3:b1:55:f6:e4:55:64:b8:55:
bb:f3:64:15:e9:f3:ce:26:f2:6f:d4:a7:5b:9e:43:
1f:49:7c:d0:16:a4:5a:8c:30:ad:b2:74:82:93:6c:
e0:b9:ec:0e:2c:2b:12:79:ba:54:1e:b5:aa:b6:3a:
7a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:09:62:92:1B:00:00:8E:29:53:47:59:1F:7A:CC:41:3B:AC:87:38
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33342e302f32342d3234203d3e203338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.27.34.0/24
Signature Algorithm: sha256WithRSAEncryption
7d:c4:b8:3a:f8:e5:9e:81:44:89:3c:9c:ef:d1:84:1a:ff:7d:
d3:96:55:39:ca:01:8b:cf:c3:ae:1b:9b:74:3a:76:f4:fb:79:
81:4e:34:4f:47:26:3a:b8:4b:ab:da:e8:5b:14:00:db:ab:22:
a2:be:ed:7a:1e:b3:0f:33:1e:06:15:a2:15:ab:fb:01:55:ee:
1f:47:98:e5:89:9b:59:f7:ad:ac:84:97:93:00:a0:bc:35:51:
33:21:2f:93:55:2c:9b:3e:97:d4:ff:c0:70:c5:91:37:42:97:
bd:65:0f:c3:de:e7:d4:ee:6d:56:d7:fe:af:4f:83:46:29:85:
f0:17:da:6c:0c:1a:d7:13:ae:2d:66:b9:c8:8f:1d:51:ea:54:
b0:cd:a1:c4:b8:ff:25:b2:55:d9:a6:4f:e4:25:c6:26:a8:c8:
e4:2d:30:1b:aa:e2:8b:b5:aa:94:89:c9:c0:1e:d2:98:78:56:
b7:9f:22:c5:19:71:2a:2e:08:a5:55:de:7e:d4:49:95:f8:c1:
6c:50:47:96:94:7b:4a:f1:bf:b6:1a:b9:da:0e:ca:72:d7:6d:
30:80:98:1f:53:1f:7f:29:8e:47:e2:23:ec:af:01:ae:86:6b:
5a:35:25:0f:0f:19:74:dc:d0:4e:16:56:1e:87:d6:60:d8:47:
7b:6f:a3:e2
-----BEGIN CERTIFICATE-----
MIIE0zCCA7ugAwIBAgIUGo0vjypkKUaC0leYYlwYorVnRAcwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIyQjcw
ODJDMTc5MTAeFw0yNjA1MTExNzAzMjNaFw0yNzA1MTAxNzA4MjNaMDMxMTAvBgNV
BAMTKDgyMDk2MjkyMUIwMDAwOEUyOTUzNDc1OTFGN0FDQzQxM0JBQzg3MzgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvj8oFFSSWEH1CGhSpIDykZkbw
y15OhG9h4gLaeYvFr93olLJWhAzVnVL2AZZl31cWfClEBSfd6KtXB6/P0VsyLO1j
JHTfEF+1yK99HWDX3aNyPO/DNeP2f4ej32FS2tjvv4SiPaMJkycDEV3+AzoD4Xlf
D+EZWwWfRNxKHyFlrMz08HxBVpxwd+bmMTV77RjZwCfuLat3XhrAsC7FJwK1ZWCM
brq3N1Bf6FtHIUDSw84EbMNlHMe06tGol36jaECib9PsXT12KNOxVfbkVWS4Vbvz
ZBXp884m8m/Up1ueQx9JfNAWpFqMMK2ydIKTbOC57A4sKxJ5ulQetaq2OnprAgMB
AAGjggHdMIIB2TAdBgNVHQ4EFgQUgglikhsAAI4pU0dZH3rMQTushzgwHwYDVR0j
BBgwFoAUHuxPoaj4rNQIM70sPu2ytwgsF5EwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud
HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUFVNTy8w
LzFFRUM0RkExQThGOEFDRDQwODMzQkQyQzNFRURCMkI3MDgyQzE3OTEuY3JsMG8G
CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu
dHcvcnBraS9UV05JQ0NBLzEvMUVFQzRGQTFBOEY4QUNENDA4MzNCRDJDM0VFREIy
QjcwODJDMTc5MS5jZXIweAYIKwYBBQUHAQsEbDBqMGgGCCsGAQUFBzALhlxyc3lu
YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1BVTU8vMC8zMjMyMzMyZTMyMzcyZTMz
MzQyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMzM4MzgzNDMzLnJvYTAYBgNVHSAB
Af8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA
3xsiMA0GCSqGSIb3DQEBCwUAA4IBAQB9xLg6+OWegUSJPJzv0YQa/33TllU5ygGL
z8OuG5t0Onb0+3mBTjRPRyY6uEur2uhbFADbqyKivu16HrMPMx4GFaIVq/sBVe4f
R5jliZtZ962shJeTAKC8NVEzIS+TVSybPpfU/8BwxZE3Qpe9ZQ/D3ufU7m1W1/6v
T4NGKYXwF9psDBrXE64tZrnIjx1R6lSwzaHEuP8lslXZpk/kJcYmqMjkLTAbquKL
taqUicnAHtKYeFa3nyLFGXEqLgilVd5+1EmV+MFsUEeWlHtK8b+2GrnaDspy120w
gJgfUx9/KY5H4iPsrwGuhmtaNSUPDxl03NBOFlYeh9Zg2Ed7b6Pi
-----END CERTIFICATE-----
Generated at Wed May 13 01:36:06 2026 by rpki-client