Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SIGMA/0/3135302e3132392e3232382e302f32322d3234203d3e2034373830.roa
File: 3135302e3132392e3232382e302f32322d3234203d3e2034373830.roa (raw, json)
Hash identifier: MWmMZfwqwEXxTROh2uNgyA0DNK+lujeXQ+XGM5lpOe4=
Subject key identifier: 69:D4:78:09:7D:F7:C5:F5:39:D0:49:27:B0:25:FE:84:C9:47:60:8A
Certificate issuer: /CN=61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D
Certificate serial: 7F8B71B5C342BE2683A006C2B312911F03F9DD3F
Authority key identifier: 61:B9:0F:DE:CC:1D:EA:73:75:22:68:F9:A6:D7:F9:D9:F8:F8:79:3D
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SIGMA/0/3135302e3132392e3232382e302f32322d3234203d3e2034373830.roa
Signing time: Mon 11 May 2026 17:06:12 +0000
ROA not before: Mon 11 May 2026 17:01:12 +0000
ROA not after: Mon 10 May 2027 17:06:12 +0000
asID: 4780
IP address blocks: 150.129.228.0/22 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
7f:8b:71:b5:c3:42:be:26:83:a0:06:c2:b3:12:91:1f:03:f9:dd:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D
Validity
Not Before: May 11 17:01:12 2026 GMT
Not After : May 10 17:06:12 2027 GMT
Subject: CN=69D478097DF7C5F539D04927B025FE84C947608A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8d:96:fb:72:33:91:59:a6:11:57:40:e4:70:
a1:23:9b:93:cf:85:0c:c4:c5:a0:98:48:a6:75:e2:
c2:df:47:63:5b:69:5e:8e:de:b3:49:28:92:d3:28:
62:a9:8b:bd:db:eb:31:99:4e:a6:cb:60:c0:28:d2:
1b:24:5f:4e:3d:da:71:75:2f:d0:40:9d:c0:10:ab:
bf:3f:73:5a:be:e7:d9:a5:1d:0b:1e:15:a3:11:e7:
7c:41:e7:31:f2:18:90:9a:a8:7c:05:f1:0b:95:11:
26:01:40:29:e6:45:58:4f:89:11:97:7f:0d:c3:a5:
1f:4a:29:1e:aa:15:5f:1a:e1:db:7a:38:70:da:8f:
32:e1:82:7a:76:09:28:76:d2:09:5b:83:ff:90:cd:
74:14:b5:25:db:7b:f6:53:89:1e:24:7c:7e:9e:80:
d3:e0:f5:5f:a4:8c:21:2c:08:b2:3f:6c:09:2b:1b:
0e:3e:66:31:fd:6b:a7:3d:9c:32:c1:8d:98:08:20:
e4:4e:7c:5d:b0:75:b2:65:e3:38:36:76:81:79:42:
5d:2d:90:78:7d:15:6b:b3:88:2f:54:32:b4:e5:1b:
da:c4:f4:6e:1d:28:8b:3b:00:7f:d2:6f:b5:37:fe:
95:3a:59:8c:8a:e7:27:df:e3:71:60:6e:cb:27:29:
c6:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:D4:78:09:7D:F7:C5:F5:39:D0:49:27:B0:25:FE:84:C9:47:60:8A
X509v3 Authority Key Identifier:
keyid:61:B9:0F:DE:CC:1D:EA:73:75:22:68:F9:A6:D7:F9:D9:F8:F8:79:3D
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SIGMA/0/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61B90FDECC1DEA73752268F9A6D7F9D9F8F8793D.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SIGMA/0/3135302e3132392e3232382e302f32322d3234203d3e2034373830.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
150.129.228.0/22
Signature Algorithm: sha256WithRSAEncryption
a6:d2:34:33:3c:e9:e8:e2:8d:8a:06:8c:39:56:09:27:73:b6:
60:ce:1e:a7:08:6e:eb:49:35:83:95:e2:60:15:fa:ad:9a:7b:
a8:5d:28:b4:d8:56:62:86:97:ce:1e:41:a3:da:f8:fa:0a:5d:
5f:ef:25:70:19:25:ff:31:78:1e:a7:f0:18:65:14:28:b1:63:
27:54:eb:fb:f9:a0:9f:7d:97:87:2d:25:ff:f1:5c:90:5c:b9:
33:f9:c8:a2:6b:60:9e:86:b6:ee:2d:a4:71:d2:89:95:d0:27:
6c:4d:53:d8:5f:52:57:c3:86:26:08:eb:e2:6a:79:21:81:1a:
74:c1:cd:9c:f1:3e:06:c0:92:d2:0a:cf:9d:92:a3:2d:a0:d3:
56:1f:c7:db:9d:04:ef:62:3b:fa:21:27:74:8b:c3:a1:5a:4e:
84:9e:ee:4a:82:fe:30:11:cb:02:57:0e:0e:16:30:58:02:73:
ec:a1:6d:6d:35:b5:2a:a8:5f:4a:4e:b7:19:f7:b9:1b:80:1e:
40:3e:55:59:6c:b0:b8:67:c0:6c:68:ea:f9:99:2e:6e:4c:f6:
e9:15:fb:1f:ba:f7:86:d3:e4:cd:8e:d7:07:ba:97:1b:9e:51:
01:b6:03:12:9a:85:c5:5f:ef:6c:50:be:77:7d:cd:0a:5b:dc:
b1:5b:91:eb
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgIUf4txtcNCviaDoAbCsxKRHwP53T8wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNjFCOTBGREVDQzFERUE3Mzc1MjI2OEY5QTZEN0Y5RDlG
OEY4NzkzRDAeFw0yNjA1MTExNzAxMTJaFw0yNzA1MTAxNzA2MTJaMDMxMTAvBgNV
BAMTKDY5RDQ3ODA5N0RGN0M1RjUzOUQwNDkyN0IwMjVGRTg0Qzk0NzYwOEEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1jZb7cjORWaYRV0DkcKEjm5PP
hQzExaCYSKZ14sLfR2NbaV6O3rNJKJLTKGKpi73b6zGZTqbLYMAo0hskX0492nF1
L9BAncAQq78/c1q+59mlHQseFaMR53xB5zHyGJCaqHwF8QuVESYBQCnmRVhPiRGX
fw3DpR9KKR6qFV8a4dt6OHDajzLhgnp2CSh20glbg/+QzXQUtSXbe/ZTiR4kfH6e
gNPg9V+kjCEsCLI/bAkrGw4+ZjH9a6c9nDLBjZgIIOROfF2wdbJl4zg2doF5Ql0t
kHh9FWuziC9UMrTlG9rE9G4dKIs7AH/Sb7U3/pU6WYyK5yff43FgbssnKcY/AgMB
AAGjggHhMIIB3TAdBgNVHQ4EFgQUadR4CX33xfU50EknsCX+hMlHYIowHwYDVR0j
BBgwFoAUYbkP3swd6nN1Imj5ptf52fj4eT0wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud
HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0lHTUEv
MC82MUI5MEZERUNDMURFQTczNzUyMjY4RjlBNkQ3RjlEOUY4Rjg3OTNELmNybDBv
BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj
LnR3L3Jwa2kvVFdOSUNDQS8xLzYxQjkwRkRFQ0MxREVBNzM3NTIyNjhGOUE2RDdG
OUQ5RjhGODc5M0QuY2VyMHsGCCsGAQUFBwELBG8wbTBrBggrBgEFBQcwC4ZfcnN5
bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TSUdNQS8wLzMxMzUzMDJlMzEzMjM5
MmUzMjMyMzgyZTMwMmYzMjMyMmQzMjM0MjAzZDNlMjAzNDM3MzgzMC5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEApaB5DANBgkqhkiG9w0BAQsFAAOCAQEAptI0Mzzp6OKNigaMOVYJJ3O2YM4e
pwhu60k1g5XiYBX6rZp7qF0otNhWYoaXzh5Bo9r4+gpdX+8lcBkl/zF4HqfwGGUU
KLFjJ1Tr+/mgn32Xhy0l//FckFy5M/nIomtgnoa27i2kcdKJldAnbE1T2F9SV8OG
Jgjr4mp5IYEadMHNnPE+BsCS0grPnZKjLaDTVh/H250E72I7+iEndIvDoVpOhJ7u
SoL+MBHLAlcODhYwWAJz7KFtbTW1KqhfSk63Gfe5G4AeQD5VWWywuGfAbGjq+Zku
bkz26RX7H7r3htPkzY7XB7qXG55RAbYDEpqFxV/vbFC+d33NClvcsVuR6w==
-----END CERTIFICATE-----
Generated at Wed May 13 02:27:22 2026 by rpki-client