Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e35352e302f32342d3234203d3e203338383433.roa
File: 3232332e32372e35352e302f32342d3234203d3e203338383433.roa (raw, json)
Hash identifier: n5oTi++70MIXLqXHPwT9donBCV7GSfMHlz/p71rQzgw=
Subject key identifier: 73:25:68:1F:05:78:9D:F4:E0:FE:8B:92:4F:09:ED:98:19:C4:7D:75
Certificate issuer: /CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Certificate serial: 5B64B272E4C53FD0E973AD96A5DFDB18A269943A
Authority key identifier: 1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e35352e302f32342d3234203d3e203338383433.roa
Signing time: Mon 11 May 2026 17:11:24 +0000
ROA not before: Mon 11 May 2026 17:06:24 +0000
ROA not after: Mon 10 May 2027 17:11:24 +0000
asID: 38843
IP address blocks: 223.27.55.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
5b:64:b2:72:e4:c5:3f:d0:e9:73:ad:96:a5:df:db:18:a2:69:94:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791
Validity
Not Before: May 11 17:06:24 2026 GMT
Not After : May 10 17:11:24 2027 GMT
Subject: CN=7325681F05789DF4E0FE8B924F09ED9819C47D75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:31:65:6f:eb:13:37:4e:03:76:4c:dc:be:db:
f1:50:75:7f:ce:fd:75:c1:e4:c5:ff:67:24:ef:3a:
f6:a0:88:70:2e:c1:0b:c4:c2:73:7e:37:02:12:72:
21:4b:47:cf:df:35:d8:3b:97:72:ca:e8:ca:d2:04:
f3:51:4a:4c:b6:af:df:9e:fc:55:22:72:ae:c8:2f:
4b:ac:f7:6c:cd:5e:e0:5c:b1:a0:79:dc:30:15:6b:
00:21:d8:13:22:11:91:a9:96:e7:3a:f2:fd:68:ff:
b3:ae:d4:71:27:2f:d9:e2:c1:25:cc:0c:15:34:7e:
df:18:79:ef:ab:0a:2a:91:f0:e4:33:71:b7:5c:e9:
52:79:d2:72:de:a7:32:16:92:85:0f:85:65:9f:ae:
73:16:bf:45:bb:29:ca:c0:18:e3:22:3a:7e:06:0e:
c4:38:09:1d:dc:a5:7d:64:15:ac:51:df:e8:07:10:
61:3a:af:bc:41:d8:a0:80:7e:83:3f:64:bb:a7:c8:
73:65:2c:d9:2b:b4:36:e5:37:d9:3a:47:f5:fc:e7:
19:d7:23:87:43:1d:97:25:10:2b:e9:9d:c4:64:4e:
45:64:ec:67:95:e0:50:0a:ea:74:44:00:d1:a7:4e:
df:91:d5:b9:bb:60:20:95:10:3e:92:97:8f:7d:30:
78:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:25:68:1F:05:78:9D:F4:E0:FE:8B:92:4F:09:ED:98:19:C4:7D:75
X509v3 Authority Key Identifier:
keyid:1E:EC:4F:A1:A8:F8:AC:D4:08:33:BD:2C:3E:ED:B2:B7:08:2C:17:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/1EEC4FA1A8F8ACD40833BD2C3EEDB2B7082C1791.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PUMO/0/3232332e32372e35352e302f32342d3234203d3e203338383433.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
223.27.55.0/24
Signature Algorithm: sha256WithRSAEncryption
77:1e:01:86:0a:0d:bb:8b:53:d8:c4:e4:00:b5:da:e9:f3:1f:
85:16:76:a6:55:7c:3e:32:75:e9:b2:e7:11:2f:c9:31:a9:48:
e8:70:05:af:cc:a0:31:2e:de:1d:ad:9a:fb:17:66:6d:b8:d8:
0a:27:17:bc:1b:59:bc:2e:df:4a:dd:9c:08:c6:6c:d2:1f:72:
1b:1f:31:87:18:cb:a7:f0:d2:90:4c:d2:48:23:da:23:95:b2:
cc:b8:d3:bd:64:59:b0:cc:1c:45:b7:6b:a7:09:fd:b9:8e:2b:
b2:77:18:6b:70:a8:f4:05:ec:6d:16:da:ca:e8:b2:03:20:a1:
44:57:df:5c:1e:ec:5c:55:bc:e0:65:03:10:25:9e:99:12:81:
3e:b2:80:0b:6d:2f:a9:f5:bd:bd:ee:3e:10:f4:c5:04:b6:53:
bc:c9:64:0d:cd:a5:c6:9f:15:59:36:26:1c:84:fc:f6:5b:1d:
56:ca:d4:45:9d:d1:89:8e:89:db:a2:64:66:bb:ab:fe:57:2a:
8e:ac:25:59:8a:2b:4e:1a:8a:fb:32:c4:9b:65:39:44:ed:26:
92:54:a5:24:3b:5e:f3:38:bd:62:68:cb:c5:ab:2f:92:56:5c:
b3:62:63:72:f6:68:2d:79:09:88:a2:b6:6d:50:61:a2:37:ff:
8c:25:be:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:16:11 2026 by rpki-client