Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SIMPLECLOU/1/3135372e32302e3130382e302f32332d3234203d3e2039393137.roa
File: 3135372e32302e3130382e302f32332d3234203d3e2039393137.roa (raw, json)
Hash identifier: ckB7c4m0dSGjfbDc1BMRa8lcfk7IIMuWAbfJoeOYzj8=
Subject key identifier: 54:82:CA:90:FC:1C:9D:2D:ED:26:C9:4D:32:B0:CB:0B:E6:B4:DA:43
Certificate issuer: /CN=7D73093CA12D6CDAD00E53223480A6F2B7FDB78C
Certificate serial: 2F7CE1DCC791D8C46FC774A49176BBBEE2E8D0E3
Authority key identifier: 7D:73:09:3C:A1:2D:6C:DA:D0:0E:53:22:34:80:A6:F2:B7:FD:B7:8C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/7D73093CA12D6CDAD00E53223480A6F2B7FDB78C.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SIMPLECLOU/1/3135372e32302e3130382e302f32332d3234203d3e2039393137.roa
Signing time: Mon 11 May 2026 17:36:16 +0000
ROA not before: Mon 11 May 2026 17:31:16 +0000
ROA not after: Mon 10 May 2027 17:36:16 +0000
asID: 9917
IP address blocks: 157.20.108.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
2f:7c:e1:dc:c7:91:d8:c4:6f:c7:74:a4:91:76:bb:be:e2:e8:d0:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7D73093CA12D6CDAD00E53223480A6F2B7FDB78C
Validity
Not Before: May 11 17:31:16 2026 GMT
Not After : May 10 17:36:16 2027 GMT
Subject: CN=5482CA90FC1C9D2DED26C94D32B0CB0BE6B4DA43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:92:4d:5f:53:77:2d:3f:4d:25:7a:37:69:26:
48:46:f9:0b:d2:c7:70:ac:71:bd:09:fd:97:ab:fd:
1d:bc:bb:58:02:fa:fb:1e:b5:ff:32:6b:66:c1:cd:
bf:51:00:72:f2:2a:54:fc:36:d1:83:07:20:20:a7:
34:67:b5:be:5c:2f:02:e0:56:26:ee:44:59:4f:bc:
6e:f7:2d:4e:32:c1:4e:18:1e:3d:ad:0c:8a:b2:e4:
ea:77:bb:d3:a7:0d:fe:a1:80:89:d2:d8:43:85:6a:
b1:89:43:a4:2d:d2:21:f3:93:c7:c5:fd:b1:49:3e:
81:a0:df:f3:b9:12:15:2f:b9:a1:10:85:b5:22:e1:
91:95:46:cf:33:10:f5:e3:f7:d2:24:07:84:a8:6b:
93:21:d7:52:9f:90:bc:84:65:61:8f:34:be:0e:49:
f0:fc:7a:b6:b8:7f:ca:88:4f:73:20:81:e8:9f:a9:
7b:df:cc:e2:80:d8:fe:75:6b:3e:a4:de:38:88:bb:
07:f0:57:bb:18:94:2a:e6:f1:1e:d9:25:d0:bf:a5:
12:45:09:40:7e:8a:55:7a:20:dd:dc:3a:1b:4c:3e:
97:a3:eb:64:b0:8f:ce:5f:ef:63:e8:23:59:3a:f5:
67:c6:41:08:27:7b:2b:ec:25:e0:1a:cc:5a:31:bf:
58:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:82:CA:90:FC:1C:9D:2D:ED:26:C9:4D:32:B0:CB:0B:E6:B4:DA:43
X509v3 Authority Key Identifier:
keyid:7D:73:09:3C:A1:2D:6C:DA:D0:0E:53:22:34:80:A6:F2:B7:FD:B7:8C
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SIMPLECLOU/1/7D73093CA12D6CDAD00E53223480A6F2B7FDB78C.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/7D73093CA12D6CDAD00E53223480A6F2B7FDB78C.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SIMPLECLOU/1/3135372e32302e3130382e302f32332d3234203d3e2039393137.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
157.20.108.0/23
Signature Algorithm: sha256WithRSAEncryption
2a:93:ef:69:00:6c:80:3c:75:31:03:06:a0:be:89:2f:59:01:
28:04:a8:52:0e:7b:80:50:59:e9:0c:30:58:33:01:cb:cf:2c:
50:43:0b:e2:81:bc:dd:41:c3:5f:a1:9e:18:c1:fb:78:83:97:
c2:06:ba:96:29:8f:90:7f:87:5c:a7:01:b9:92:25:4f:90:0a:
75:99:67:34:d2:7c:84:51:fb:a1:57:99:4d:8a:6d:af:2c:e6:
f3:82:e8:12:3a:7b:9d:05:cf:9e:86:b2:d0:ae:ba:3c:94:78:
8b:af:01:8e:94:93:28:d9:7f:b8:cc:cf:46:b3:79:ff:94:d8:
89:23:65:3b:b4:d7:9b:37:5a:e2:b2:2c:c8:89:c9:47:5a:e9:
92:bf:67:46:bb:ec:4a:2e:49:31:f8:08:2d:cd:ba:e7:50:12:
a7:4d:4c:57:78:78:b0:b4:93:e4:a5:d8:7c:99:7b:e7:86:cf:
ea:d2:7c:87:95:cb:6c:0c:7d:89:10:39:9d:b4:93:68:7a:29:
11:2f:fb:28:0d:b5:36:71:0d:5b:1a:7a:8b:a3:44:48:a7:1f:
b3:88:18:67:57:2f:39:4d:e7:dc:af:56:45:ce:2e:47:85:26:
5c:9c:40:90:4b:1c:0a:21:dc:f9:79:c8:8c:61:6e:3c:7c:9d:
07:b7:59:78
-----BEGIN CERTIFICATE-----
MIIE3zCCA8egAwIBAgIUL3zh3MeR2MRvx3SkkXa7vuLo0OMwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoN0Q3MzA5M0NBMTJENkNEQUQwMEU1MzIyMzQ4MEE2RjJC
N0ZEQjc4QzAeFw0yNjA1MTExNzMxMTZaFw0yNzA1MTAxNzM2MTZaMDMxMTAvBgNV
BAMTKDU0ODJDQTkwRkMxQzlEMkRFRDI2Qzk0RDMyQjBDQjBCRTZCNERBNDMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3kk1fU3ctP00lejdpJkhG+QvS
x3Cscb0J/Zer/R28u1gC+vsetf8ya2bBzb9RAHLyKlT8NtGDByAgpzRntb5cLwLg
VibuRFlPvG73LU4ywU4YHj2tDIqy5Op3u9OnDf6hgInS2EOFarGJQ6Qt0iHzk8fF
/bFJPoGg3/O5EhUvuaEQhbUi4ZGVRs8zEPXj99IkB4Soa5Mh11KfkLyEZWGPNL4O
SfD8era4f8qIT3MggeifqXvfzOKA2P51az6k3jiIuwfwV7sYlCrm8R7ZJdC/pRJF
CUB+ilV6IN3cOhtMPpej62Swj85f72PoI1k69WfGQQgneyvsJeAazFoxv1iVAgMB
AAGjggHpMIIB5TAdBgNVHQ4EFgQUVILKkPwcnS3tJslNMrDLC+a02kMwHwYDVR0j
BBgwFoAUfXMJPKEtbNrQDlMiNICm8rf9t4wwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud
HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0lNUExF
Q0xPVS8xLzdENzMwOTNDQTEyRDZDREFEMDBFNTMyMjM0ODBBNkYyQjdGREI3OEMu
Y3JsMG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBLzAvN0Q3MzA5M0NBMTJENkNEQUQwMEU1MzIy
MzQ4MEE2RjJCN0ZEQjc4Qy5jZXIwfgYIKwYBBQUHAQsEcjBwMG4GCCsGAQUFBzAL
hmJyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NJTVBMRUNMT1UvMS8zMTM1
MzcyZTMyMzAyZTMxMzAzODJlMzAyZjMyMzMyZDMyMzQyMDNkM2UyMDM5MzkzMTM3
LnJvYTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAw
DjAMBAIAATAGAwQBnRRsMA0GCSqGSIb3DQEBCwUAA4IBAQAqk+9pAGyAPHUxAwag
vokvWQEoBKhSDnuAUFnpDDBYMwHLzyxQQwvigbzdQcNfoZ4Ywft4g5fCBrqWKY+Q
f4dcpwG5kiVPkAp1mWc00nyEUfuhV5lNim2vLObzgugSOnudBc+ehrLQrro8lHiL
rwGOlJMo2X+4zM9Gs3n/lNiJI2U7tNebN1risizIiclHWumSv2dGu+xKLkkx+Agt
zbrnUBKnTUxXeHiwtJPkpdh8mXvnhs/q0nyHlctsDH2JEDmdtJNoeikRL/soDbU2
cQ1bGnqLo0RIpx+ziBhnVy85Tefcr1ZFzi5HhSZcnECQSxwKIdz5eciMYW48fJ0H
t1l4
-----END CERTIFICATE-----
Generated at Wed May 13 00:31:55 2026 by rpki-client