Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33392e302f32342d3234203d3e203338383433.roa
File: 3232332e32372e33392e302f32342d3234203d3e203338383433.roa (raw, json)
Hash identifier: AmZkIe2pIoX+Jg4hEgfMDdIASmAzaNBsZ4QkLTANXIM=
Subject key identifier: AA:C8:C4:5D:44:74:CB:72:17:1D:04:4C:0C:51:97:69:28:A5:5F:30
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 24F51150565F676E6066F3EBF5B33781263A260A
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33392e302f32342d3234203d3e203338383433.roa
Signing time: Mon 11 May 2026 17:08:25 +0000
ROA not before: Mon 11 May 2026 17:03:25 +0000
ROA not after: Mon 10 May 2027 17:08:25 +0000
asID: 38843
IP address blocks: 223.27.39.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
24:f5:11:50:56:5f:67:6e:60:66:f3:eb:f5:b3:37:81:26:3a:26:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:03:25 2026 GMT
Not After : May 10 17:08:25 2027 GMT
Subject: CN=AAC8C45D4474CB72171D044C0C51976928A55F30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:53:3e:09:3a:d3:cd:ad:e6:cd:ce:f9:19:45:
91:f3:88:d6:dc:d2:c0:33:e0:24:d1:1d:d5:e7:7b:
7a:72:fb:1c:95:94:81:7f:5b:6f:8d:85:31:66:a1:
23:2f:e1:3d:bc:17:e6:d3:d5:4c:4c:ba:7a:35:ee:
cb:e3:da:c6:79:78:7e:a5:a8:87:ef:26:de:d9:12:
d7:68:21:1d:9b:4a:af:23:72:67:96:60:56:dd:54:
99:c9:57:cc:ab:0d:54:9b:0a:5b:44:a2:ed:0f:72:
40:76:04:a1:ae:0a:42:f6:67:c0:d2:7b:5f:78:8b:
72:c3:6a:28:bd:9c:7d:d1:61:a2:9f:a6:e8:3a:89:
77:17:f5:f4:40:b6:15:d8:1a:bc:11:b6:f4:44:46:
d5:97:05:3c:01:97:06:ca:47:36:48:72:91:17:07:
5b:a5:4b:ee:03:00:6f:32:f6:74:a2:d5:4d:48:99:
2c:c3:5a:81:c9:6d:51:53:c6:93:b0:c1:fc:8b:0d:
98:8d:fe:b8:c6:3b:3d:1c:b8:64:e6:53:1d:37:90:
16:84:bf:b0:5e:f9:da:88:39:af:cc:9f:dd:4d:02:
78:a0:b0:a5:84:c8:de:88:f0:cd:11:0e:8f:5d:0a:
02:35:d0:39:f8:0a:c8:de:89:89:15:88:08:f7:e7:
aa:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:C8:C4:5D:44:74:CB:72:17:1D:04:4C:0C:51:97:69:28:A5:5F:30
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e33392e302f32342d3234203d3e203338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.27.39.0/24
Signature Algorithm: sha256WithRSAEncryption
74:7b:3e:cb:f2:ba:54:aa:ad:b4:78:91:d9:fe:72:61:39:d4:
3c:c6:ce:3f:bf:28:c9:a8:19:58:c9:64:8a:1d:e3:16:15:85:
84:d3:b5:da:f2:51:dd:ad:7c:d6:54:37:de:c8:e3:62:8e:84:
6b:85:bd:bb:43:4b:1c:38:0d:1f:15:d9:15:23:15:4c:ca:ca:
e1:c7:2e:64:1f:80:91:b5:a5:b7:30:67:db:71:b3:6d:6d:a6:
30:74:7d:25:ef:6e:56:53:19:f6:32:03:bf:f5:f5:34:54:a7:
bf:c6:15:c2:0a:d4:cf:0b:aa:e3:5b:db:f1:3b:f5:06:46:3d:
56:3d:a6:e6:c1:be:7f:f5:c1:c2:ff:37:da:00:bc:06:6c:28:
17:bb:fe:50:3b:18:77:a6:fa:19:2b:4e:03:61:e9:e0:5e:ca:
f3:f8:16:1b:b4:5a:91:6c:0b:63:a6:b2:14:24:4b:ca:9a:e1:
e1:9a:0c:25:0c:53:e4:69:1a:ea:28:ba:1e:46:8c:3e:83:0d:
16:04:bd:b4:c4:bb:dc:b9:3e:be:b8:49:7e:43:5e:bd:cd:b3:
fe:2b:70:47:7d:d0:e7:71:b6:44:85:2a:f7:bd:93:28:61:3f:
e3:ef:56:bc:da:99:0c:39:27:a7:4a:20:1e:f4:06:97:60:3e:
18:fe:f0:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:16:07 2026 by rpki-client