Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34382e302f32302d3230203d3e203338383433.roa
File: 3232332e32372e34382e302f32302d3230203d3e203338383433.roa (raw, json)
Hash identifier: Qth5EVZUJ8UTWBqjAsjz9Hl5ekM1PIv1CnW7da+r9Y8=
Subject key identifier: A0:41:F9:24:17:3F:88:72:54:7E:64:DC:7F:34:4E:EA:F9:20:B5:40
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 1BCAA8F325AFD621D593650B4EA79E9662A88189
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34382e302f32302d3230203d3e203338383433.roa
Signing time: Mon 11 May 2026 17:11:29 +0000
ROA not before: Mon 11 May 2026 17:06:29 +0000
ROA not after: Mon 10 May 2027 17:11:29 +0000
asID: 38843
IP address blocks: 223.27.48.0/20 maxlen: 20
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
1b:ca:a8:f3:25:af:d6:21:d5:93:65:0b:4e:a7:9e:96:62:a8:81:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:06:29 2026 GMT
Not After : May 10 17:11:29 2027 GMT
Subject: CN=A041F924173F8872547E64DC7F344EEAF920B540
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b4:e0:5a:76:de:05:9a:56:9d:a5:aa:88:b4:
c4:c0:ab:b4:8a:1f:2f:0f:7b:ab:18:c2:68:47:f5:
4b:d5:d1:29:20:c8:63:ba:a2:2b:8c:8d:34:b7:14:
33:76:1d:e9:9b:64:41:db:83:9b:41:f2:a8:83:4e:
c2:c8:33:fc:f6:99:e9:5d:c6:34:02:b3:5a:de:c2:
47:6f:a9:a5:9c:35:57:e7:16:4e:df:65:80:09:87:
dd:e6:dd:88:27:04:6b:1a:57:47:75:8a:e0:a1:e8:
2a:3f:a3:db:7b:f1:9c:f9:3b:64:3e:90:7d:03:a8:
37:70:b4:38:c9:02:e8:03:04:5e:2d:19:cb:c7:02:
e6:42:8a:f3:b7:03:f8:58:88:26:57:9e:cb:3d:64:
e9:69:47:e3:0a:a0:16:da:de:7f:59:d2:e5:6e:27:
67:3f:f0:f5:66:b2:cd:05:d4:15:09:81:22:7c:bb:
61:74:85:39:ce:d6:84:96:97:17:42:63:40:7b:36:
11:34:28:f7:87:24:7d:08:07:2b:dd:94:d0:a0:45:
09:5d:49:5a:cb:55:28:de:94:25:82:c3:74:5a:9f:
3b:6d:fe:d6:b4:ce:e9:6c:59:fa:0d:ac:08:94:c6:
19:5d:90:25:24:ad:8a:7a:db:ff:2e:04:8f:28:43:
f2:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:41:F9:24:17:3F:88:72:54:7E:64:DC:7F:34:4E:EA:F9:20:B5:40
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e34382e302f32302d3230203d3e203338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.27.48.0/20
Signature Algorithm: sha256WithRSAEncryption
ad:76:51:3a:64:0b:ec:13:fa:90:34:29:81:63:52:a0:05:44:
ab:34:95:e6:3b:77:88:07:48:11:70:65:29:60:50:3a:dd:da:
28:83:e7:6f:99:f8:ca:31:39:d6:18:37:21:8f:78:64:ef:d9:
0e:15:93:02:e8:2d:bb:89:aa:93:e1:61:6b:2c:90:37:5c:f8:
fe:ae:08:e2:46:9f:ad:1d:5a:07:7e:bc:e3:95:05:fc:89:a4:
88:55:6d:65:5a:96:f5:47:a4:8e:8b:80:d9:88:2c:0e:06:11:
da:86:d2:db:99:d4:1f:96:00:00:03:56:55:dd:64:01:62:dd:
f1:a3:da:4e:30:a3:36:b3:57:07:f2:31:c8:b4:8a:af:a0:11:
46:dc:d9:64:d3:8f:a5:38:0d:7c:fc:04:6a:b9:35:c0:17:8c:
8a:6c:66:63:63:96:2b:d7:f8:af:a4:ee:d3:4e:ec:25:95:a5:
4f:1c:e6:e0:a2:08:ff:2a:eb:bd:82:e7:f5:9d:43:ea:93:71:
8f:7f:83:88:96:f1:2b:e2:ac:a9:31:0c:a4:05:31:8f:ee:9a:
b2:e2:ce:64:c6:cc:83:1f:8f:14:af:8e:a7:28:70:68:24:fa:
96:07:32:84:f8:c9:5d:d3:22:8d:eb:b1:68:53:31:45:32:c3:
71:42:cc:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 01:40:50 2026 by rpki-client