Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SIMPLE/1/3136302e33302e39382e302f32332d3332203d3e203332353935.roa
File: 3136302e33302e39382e302f32332d3332203d3e203332353935.roa (raw, json)
Hash identifier: sI8LAtdu8OdYUfd6YrN2QIv70x44wmscxxxuHtT0n54=
Subject key identifier: B7:F7:E9:3F:2F:B2:8F:F7:80:0C:08:D2:E1:24:4E:63:60:F2:08:81
Certificate issuer: /CN=273D80570A6F8C43816FAC4F615749C9D6D98E96
Certificate serial: 02B26ED478BD0E49651662EE737A4D210788EBEE
Authority key identifier: 27:3D:80:57:0A:6F:8C:43:81:6F:AC:4F:61:57:49:C9:D6:D9:8E:96
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/273D80570A6F8C43816FAC4F615749C9D6D98E96.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SIMPLE/1/3136302e33302e39382e302f32332d3332203d3e203332353935.roa
Signing time: Mon 11 May 2026 17:39:37 +0000
ROA not before: Mon 11 May 2026 17:34:37 +0000
ROA not after: Mon 10 May 2027 17:39:37 +0000
asID: 32595
IP address blocks: 160.30.98.0/23 maxlen: 32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
02:b2:6e:d4:78:bd:0e:49:65:16:62:ee:73:7a:4d:21:07:88:eb:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=273D80570A6F8C43816FAC4F615749C9D6D98E96
Validity
Not Before: May 11 17:34:37 2026 GMT
Not After : May 10 17:39:37 2027 GMT
Subject: CN=B7F7E93F2FB28FF7800C08D2E1244E6360F20881
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:ab:f8:f1:1c:96:8f:3b:67:60:66:54:96:8c:
2d:aa:e7:55:43:9d:14:3b:16:32:90:94:26:53:00:
21:12:b6:d3:a7:a0:47:b9:39:24:b1:b9:80:c5:ac:
1a:c3:66:af:9b:29:b7:63:71:4c:53:b6:d6:17:d1:
87:10:36:4c:c3:01:80:8b:90:4b:23:13:5b:8f:0f:
a0:87:c6:04:07:49:d1:48:5f:3b:60:fa:06:b2:a4:
63:e1:cb:b4:ae:44:14:2b:0f:c6:0d:43:21:29:a5:
11:da:7c:6c:d8:5f:b0:1a:a8:67:4e:aa:e0:c3:a0:
ef:e8:b2:1a:a3:98:7f:0c:64:87:1b:bb:be:37:9a:
71:51:5a:20:f4:c6:63:45:6c:22:3f:72:1d:20:28:
9b:14:2d:83:ec:ae:e7:89:c9:e1:79:a4:0c:bc:53:
f6:8d:10:f5:46:8e:27:a7:76:c8:55:79:ad:a5:2f:
1d:d7:ef:e3:dc:8f:c5:81:bd:9c:32:48:97:89:56:
bb:11:42:54:4c:6f:8b:bc:16:5d:f8:5b:01:78:6a:
fd:49:6c:6f:08:6d:ba:1c:a9:41:6d:26:c8:7b:25:
1d:71:d3:1d:0b:62:2a:fc:b1:3a:09:f1:7b:d6:13:
da:b7:d5:10:5f:12:46:e5:a2:43:c5:41:58:16:81:
05:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:F7:E9:3F:2F:B2:8F:F7:80:0C:08:D2:E1:24:4E:63:60:F2:08:81
X509v3 Authority Key Identifier:
keyid:27:3D:80:57:0A:6F:8C:43:81:6F:AC:4F:61:57:49:C9:D6:D9:8E:96
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SIMPLE/1/273D80570A6F8C43816FAC4F615749C9D6D98E96.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/273D80570A6F8C43816FAC4F615749C9D6D98E96.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SIMPLE/1/3136302e33302e39382e302f32332d3332203d3e203332353935.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
160.30.98.0/23
Signature Algorithm: sha256WithRSAEncryption
6a:c9:b4:ed:68:0e:83:a0:54:73:eb:1a:10:b2:89:58:c7:ef:
0e:17:55:ec:01:c8:47:ea:bb:a9:b9:fa:b8:7b:39:9f:81:db:
c0:99:76:1c:36:c1:15:93:f7:a5:1f:91:4b:3d:4e:5d:a2:f3:
22:a0:a8:0d:d5:64:56:d2:d3:49:7e:d4:36:07:e0:c0:b9:03:
b8:ac:ea:4c:d9:53:4a:b3:72:7c:b3:4f:60:10:ea:41:f4:a9:
85:da:c0:be:a9:20:b1:6b:f2:a7:c6:91:79:45:10:68:14:81:
37:a4:a1:eb:91:2c:f4:a9:11:c2:ec:3c:40:fb:95:f5:94:c8:
62:d9:6a:28:2c:f4:5b:b9:08:ad:44:d4:72:7b:30:e9:a8:65:
ac:19:87:17:cb:34:bf:3a:83:f7:07:01:50:8e:48:dd:73:c0:
34:93:ed:c9:67:c5:35:62:33:a8:3c:6e:34:bf:1f:67:88:bd:
96:e8:92:f1:47:e6:d2:03:5d:09:d1:b4:a1:1f:1a:c4:05:9c:
f2:e1:8f:94:a4:60:4a:a4:12:e0:40:59:61:b9:6f:17:65:4d:
a0:2d:e6:2a:28:ec:81:25:ad:65:e8:8a:e1:56:92:4b:a0:65:
54:aa:88:f9:87:d2:8f:65:3c:2a:67:d0:9a:49:f6:e1:1b:d9:
29:29:a9:f2
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgIUArJu1Hi9DkllFmLuc3pNIQeI6+4wDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjczRDgwNTcwQTZGOEM0MzgxNkZBQzRGNjE1NzQ5QzlE
NkQ5OEU5NjAeFw0yNjA1MTExNzM0MzdaFw0yNzA1MTAxNzM5MzdaMDMxMTAvBgNV
BAMTKEI3RjdFOTNGMkZCMjhGRjc4MDBDMDhEMkUxMjQ0RTYzNjBGMjA4ODEwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCJq/jxHJaPO2dgZlSWjC2q51VD
nRQ7FjKQlCZTACESttOnoEe5OSSxuYDFrBrDZq+bKbdjcUxTttYX0YcQNkzDAYCL
kEsjE1uPD6CHxgQHSdFIXztg+gaypGPhy7SuRBQrD8YNQyEppRHafGzYX7AaqGdO
quDDoO/oshqjmH8MZIcbu743mnFRWiD0xmNFbCI/ch0gKJsULYPsrueJyeF5pAy8
U/aNEPVGjiendshVea2lLx3X7+Pcj8WBvZwySJeJVrsRQlRMb4u8Fl34WwF4av1J
bG8IbbocqUFtJsh7JR1x0x0LYir8sToJ8XvWE9q31RBfEkblokPFQVgWgQVHAgMB
AAGjggHhMIIB3TAdBgNVHQ4EFgQUt/fpPy+yj/eADAjS4SROY2DyCIEwHwYDVR0j
BBgwFoAUJz2AVwpvjEOBb6xPYVdJydbZjpYwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud
HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0lNUExF
LzEvMjczRDgwNTcwQTZGOEM0MzgxNkZBQzRGNjE1NzQ5QzlENkQ5OEU5Ni5jcmww
bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p
Yy50dy9ycGtpL1RXTklDQ0EvMC8yNzNEODA1NzBBNkY4QzQzODE2RkFDNEY2MTU3
NDlDOUQ2RDk4RTk2LmNlcjB6BggrBgEFBQcBCwRuMGwwagYIKwYBBQUHMAuGXnJz
eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0lNUExFLzEvMzEzNjMwMmUzMzMw
MmUzOTM4MmUzMDJmMzIzMzJkMzMzMjIwM2QzZTIwMzMzMjM1MzkzNS5yb2EwGAYD
VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAaAeYjANBgkqhkiG9w0BAQsFAAOCAQEAasm07WgOg6BUc+saELKJWMfvDhdV
7AHIR+q7qbn6uHs5n4HbwJl2HDbBFZP3pR+RSz1OXaLzIqCoDdVkVtLTSX7UNgfg
wLkDuKzqTNlTSrNyfLNPYBDqQfSphdrAvqkgsWvyp8aReUUQaBSBN6Sh65Es9KkR
wuw8QPuV9ZTIYtlqKCz0W7kIrUTUcnsw6ahlrBmHF8s0vzqD9wcBUI5I3XPANJPt
yWfFNWIzqDxuNL8fZ4i9luiS8Ufm0gNdCdG0oR8axAWc8uGPlKRgSqQS4EBZYblv
F2VNoC3mKijsgSWtZeiK4VaSS6BlVKqI+YfSj2U8KmfQmkn24RvZKSmp8g==
-----END CERTIFICATE-----
Generated at Wed May 13 00:43:58 2026 by rpki-client