Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SDCL-TW/0/3130332e3133372e32322e302f32332d3234203d3e20313331313531.roa
File: 3130332e3133372e32322e302f32332d3234203d3e20313331313531.roa (raw, json)
Hash identifier: g4jmTDzhH5yCftN+Hf4jeZwkiWF2fHHHW5/2kNZmhdo=
Subject key identifier: 5D:D2:D9:32:48:35:3A:1B:E0:24:7F:87:05:77:53:FD:1C:45:38:13
Certificate issuer: /CN=CE11BDD44F66776624C4D9BE145C499FD144FEAE
Certificate serial: 489F42FC49E4D28EC622BF28978103C7923C6584
Authority key identifier: CE:11:BD:D4:4F:66:77:66:24:C4:D9:BE:14:5C:49:9F:D1:44:FE:AE
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE11BDD44F66776624C4D9BE145C499FD144FEAE.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/3130332e3133372e32322e302f32332d3234203d3e20313331313531.roa
Signing time: Mon 11 May 2026 17:57:36 +0000
ROA not before: Mon 11 May 2026 17:52:36 +0000
ROA not after: Mon 10 May 2027 17:57:36 +0000
asID: 131151
IP address blocks: 103.137.22.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
48:9f:42:fc:49:e4:d2:8e:c6:22:bf:28:97:81:03:c7:92:3c:65:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CE11BDD44F66776624C4D9BE145C499FD144FEAE
Validity
Not Before: May 11 17:52:36 2026 GMT
Not After : May 10 17:57:36 2027 GMT
Subject: CN=5DD2D93248353A1BE0247F87057753FD1C453813
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:96:72:ea:d7:67:76:7c:76:1d:65:af:3a:31:
da:5a:9e:05:8c:a8:59:2f:6d:03:7b:c4:30:74:b1:
f5:65:b9:27:14:8f:5b:19:22:04:e1:4d:91:fa:7a:
5a:51:0b:3b:88:4f:77:0c:e0:2a:b2:a0:38:9b:93:
3f:5d:df:aa:37:21:e9:91:17:9c:1f:61:7c:26:70:
10:31:47:2a:19:16:fb:4d:0a:53:bf:02:e7:00:b6:
d6:03:b0:3a:5b:e2:c6:6c:86:70:ca:43:33:57:8f:
8b:5f:bd:3b:0e:41:63:d5:86:4e:87:d7:a9:ed:5d:
a2:07:9a:1c:8b:31:9a:1f:9b:ed:09:d2:df:79:28:
da:44:f4:10:4b:1c:72:0a:fb:dd:db:8b:ec:85:ed:
ea:d2:e9:4b:9b:ac:c1:4e:46:5e:07:78:0e:aa:ce:
d9:e5:46:e9:b0:c6:00:76:b4:57:9f:a3:22:b5:e7:
2d:95:82:bc:8a:03:89:98:75:4e:23:cc:a2:1a:06:
38:ee:ab:f7:7a:0e:d9:1b:17:a1:4f:ba:7e:f8:ed:
69:e2:7f:7d:8e:0f:30:36:26:68:a4:11:ae:bd:97:
fb:89:af:90:1d:8d:c6:b3:d1:d7:3d:bd:fc:31:c8:
ea:5d:e3:08:b2:f1:47:96:c8:43:1e:ab:17:16:7f:
07:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:D2:D9:32:48:35:3A:1B:E0:24:7F:87:05:77:53:FD:1C:45:38:13
X509v3 Authority Key Identifier:
keyid:CE:11:BD:D4:4F:66:77:66:24:C4:D9:BE:14:5C:49:9F:D1:44:FE:AE
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/CE11BDD44F66776624C4D9BE145C499FD144FEAE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE11BDD44F66776624C4D9BE145C499FD144FEAE.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SDCL-TW/0/3130332e3133372e32322e302f32332d3234203d3e20313331313531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
103.137.22.0/23
Signature Algorithm: sha256WithRSAEncryption
b3:20:55:5e:61:ea:45:7b:f7:db:55:8e:01:fe:5f:1b:c2:bd:
76:c2:d7:2c:41:2f:00:d8:64:e4:f4:79:67:a9:f0:ee:f9:e3:
5f:59:24:4e:a7:3b:33:9e:e1:92:fa:90:fa:a8:28:d3:95:02:
d5:4a:53:65:ed:23:47:05:2f:1a:cf:11:b0:ca:23:1a:3e:97:
e7:11:8f:01:d2:cc:d8:58:8a:93:d7:9d:30:e1:cb:3e:df:03:
d8:f8:a9:48:a5:5c:82:e0:58:68:8f:d4:a4:18:00:1c:b2:00:
7b:b1:7a:6e:cd:6d:d5:dc:0e:b5:78:c7:35:2e:a5:0f:a2:3e:
5d:99:48:87:70:dc:a0:7a:79:88:6c:4d:ad:09:a4:bf:88:91:
cc:86:e0:3f:cc:4c:19:fc:c0:91:a6:ca:19:1d:be:e1:3f:d7:
2a:d0:66:16:2a:6a:6a:16:7b:86:32:a2:c2:a7:65:56:1e:5b:
31:34:ce:23:39:be:5a:96:0f:3a:8d:a9:c3:58:5c:f8:85:cb:
1a:c7:32:1d:f0:7d:91:8c:e8:15:fd:23:b4:56:49:01:d3:49:
dc:53:a6:0d:2b:ec:b6:cb:b2:af:fd:cc:c8:86:78:04:93:2d:
79:4f:04:f3:f9:12:e2:43:ff:f1:e7:7b:9b:42:4b:bf:98:b7:
a4:0b:4c:eb
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUSJ9C/Enk0o7GIr8ol4EDx5I8ZYQwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoQ0UxMUJERDQ0RjY2Nzc2NjI0QzREOUJFMTQ1QzQ5OUZE
MTQ0RkVBRTAeFw0yNjA1MTExNzUyMzZaFw0yNzA1MTAxNzU3MzZaMDMxMTAvBgNV
BAMTKDVERDJEOTMyNDgzNTNBMUJFMDI0N0Y4NzA1Nzc1M0ZEMUM0NTM4MTMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMlnLq12d2fHYdZa86MdpangWM
qFkvbQN7xDB0sfVluScUj1sZIgThTZH6elpRCzuIT3cM4CqyoDibkz9d36o3IemR
F5wfYXwmcBAxRyoZFvtNClO/AucAttYDsDpb4sZshnDKQzNXj4tfvTsOQWPVhk6H
16ntXaIHmhyLMZofm+0J0t95KNpE9BBLHHIK+93bi+yF7erS6UubrMFORl4HeA6q
ztnlRumwxgB2tFefoyK15y2VgryKA4mYdU4jzKIaBjjuq/d6DtkbF6FPun747Wni
f32ODzA2JmikEa69l/uJr5Adjcaz0dc9vfwxyOpd4wiy8UeWyEMeqxcWfwdhAgMB
AAGjggHnMIIB4zAdBgNVHQ4EFgQUXdLZMkg1OhvgJH+HBXdT/RxFOBMwHwYDVR0j
BBgwFoAUzhG91E9md2YkxNm+FFxJn9FE/q4wDgYDVR0PAQH/BAQDAgeAMGQGA1Ud
HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0RDTC1U
Vy8wL0NFMTFCREQ0NEY2Njc3NjYyNEM0RDlCRTE0NUM0OTlGRDE0NEZFQUUuY3Js
MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu
aWMudHcvcnBraS9UV05JQ0NBLzEvQ0UxMUJERDQ0RjY2Nzc2NjI0QzREOUJFMTQ1
QzQ5OUZEMTQ0RkVBRS5jZXIwfwYIKwYBBQUHAQsEczBxMG8GCCsGAQUFBzALhmNy
c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NEQ0wtVFcvMC8zMTMwMzMyZTMx
MzMzNzJlMzIzMjJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDMxMzMzMTMxMzUzMS5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEAWeJFjANBgkqhkiG9w0BAQsFAAOCAQEAsyBVXmHqRXv321WOAf5f
G8K9dsLXLEEvANhk5PR5Z6nw7vnjX1kkTqc7M57hkvqQ+qgo05UC1UpTZe0jRwUv
Gs8RsMojGj6X5xGPAdLM2FiKk9edMOHLPt8D2PipSKVcguBYaI/UpBgAHLIAe7F6
bs1t1dwOtXjHNS6lD6I+XZlIh3DcoHp5iGxNrQmkv4iRzIbgP8xMGfzAkabKGR2+
4T/XKtBmFipqahZ7hjKiwqdlVh5bMTTOIzm+WpYPOo2pw1hc+IXLGscyHfB9kYzo
Ff0jtFZJAdNJ3FOmDSvstsuyr/3MyIZ4BJMteU8E8/kS4kP/8ed7m0JLv5i3pAtM
6w==
-----END CERTIFICATE-----
Generated at Wed May 13 02:12:50 2026 by rpki-client