Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SINOPAC/0/3231312e37362e3134342e302f32302d3234203d3e203138303435.roa
File: 3231312e37362e3134342e302f32302d3234203d3e203138303435.roa (raw, json)
Hash identifier: XB6CWToOXl9Eprx8O0GqXMHxNfa/u9YN/n5hJCm5JGA=
Subject key identifier: 59:1A:11:B6:43:78:5A:A5:9A:F6:E0:57:3E:79:B3:93:36:E9:35:06
Certificate issuer: /CN=59DA68B6239324DCD6FD0C8FE9949E2F7DE1FFD8
Certificate serial: 6C9E1308149F2319F0CDD7CADEF46402FCCC610B
Authority key identifier: 59:DA:68:B6:23:93:24:DC:D6:FD:0C:8F:E9:94:9E:2F:7D:E1:FF:D8
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/59DA68B6239324DCD6FD0C8FE9949E2F7DE1FFD8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SINOPAC/0/3231312e37362e3134342e302f32302d3234203d3e203138303435.roa
Signing time: Mon 11 May 2026 17:01:28 +0000
ROA not before: Mon 11 May 2026 16:56:28 +0000
ROA not after: Mon 10 May 2027 17:01:28 +0000
asID: 18045
IP address blocks: 211.76.144.0/20 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
6c:9e:13:08:14:9f:23:19:f0:cd:d7:ca:de:f4:64:02:fc:cc:61:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=59DA68B6239324DCD6FD0C8FE9949E2F7DE1FFD8
Validity
Not Before: May 11 16:56:28 2026 GMT
Not After : May 10 17:01:28 2027 GMT
Subject: CN=591A11B643785AA59AF6E0573E79B39336E93506
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ab:d0:85:ed:92:29:2f:72:78:f6:fe:91:0e:
9f:e1:e5:ae:b0:64:af:ed:fe:e1:cd:1d:a5:64:ec:
67:96:a7:a3:49:8f:20:d9:14:14:2f:94:b4:72:91:
32:1d:15:ca:3b:ab:d0:9e:5d:28:07:f1:86:e1:37:
04:45:99:74:66:84:33:e5:98:03:73:08:44:fa:ea:
bf:84:17:13:c6:06:42:48:47:9d:90:87:a7:47:c4:
44:36:cc:ce:93:ee:e2:b3:b9:39:ed:af:74:45:d8:
b6:a3:d6:09:92:84:9e:1b:18:90:c8:00:3a:11:db:
a8:66:de:69:c5:56:00:96:e5:ed:3e:72:11:ca:15:
ac:70:e8:57:07:96:05:e1:6d:dc:c7:1e:e1:13:46:
3e:b3:44:1b:62:f1:10:91:6f:47:8f:81:d2:33:bb:
ba:af:79:3d:2f:e7:a8:f3:dd:82:99:ec:13:95:9c:
07:4f:6e:c2:ee:c0:df:84:c3:ea:e6:6e:d9:01:2d:
45:80:78:8c:6f:8a:6c:c4:4f:59:3e:0c:f4:8f:f2:
31:34:65:29:b9:e8:f5:99:11:6f:61:b6:72:9b:04:
66:9c:07:07:d6:63:ff:b5:b7:e4:b2:f6:8e:b3:02:
b6:b6:29:99:1a:d3:d6:78:a3:36:28:8d:f2:61:df:
cd:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:1A:11:B6:43:78:5A:A5:9A:F6:E0:57:3E:79:B3:93:36:E9:35:06
X509v3 Authority Key Identifier:
keyid:59:DA:68:B6:23:93:24:DC:D6:FD:0C:8F:E9:94:9E:2F:7D:E1:FF:D8
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SINOPAC/0/59DA68B6239324DCD6FD0C8FE9949E2F7DE1FFD8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/59DA68B6239324DCD6FD0C8FE9949E2F7DE1FFD8.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SINOPAC/0/3231312e37362e3134342e302f32302d3234203d3e203138303435.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
211.76.144.0/20
Signature Algorithm: sha256WithRSAEncryption
0f:65:fe:bb:20:d8:8a:83:ce:f5:51:d8:8a:05:91:22:33:45:
0b:47:ca:5a:f6:33:61:0b:9d:d1:c0:0b:61:35:0c:25:a5:ff:
e7:3e:8b:2f:39:f7:4a:fd:b9:62:4c:24:38:20:e3:89:4f:e3:
4b:64:c7:0d:02:9b:7e:ca:ba:67:4f:74:e7:26:8d:74:9c:0c:
d1:98:a4:6a:4c:19:a8:e0:30:d6:e6:5e:8f:3c:1e:33:df:85:
7d:d1:8e:f5:69:9f:c7:c0:10:ce:3e:be:21:8b:f4:e9:41:59:
c2:e2:77:fa:54:f2:c1:58:ad:53:6e:5e:90:d8:40:98:ea:8d:
42:4f:b3:bb:5f:69:66:be:05:23:04:f3:8d:3b:03:72:0c:59:
cb:21:b2:61:7f:91:39:ae:0a:03:2a:3f:c8:49:d8:2b:e5:b7:
b0:a4:2c:05:05:c4:94:c2:7d:41:30:17:f2:5e:01:44:7d:36:
1d:f5:d9:13:3c:5d:a6:44:32:87:2b:9d:33:8b:1e:e3:ca:e3:
90:18:b6:88:a0:af:9f:f5:44:51:6b:e0:e0:1e:13:49:62:b2:
f6:81:be:e2:b9:37:ee:5f:6e:36:dc:3a:d4:cc:39:ee:e5:96:
54:ec:4b:67:f9:f8:0b:6e:8e:8f:04:02:af:e9:90:66:a5:fa:
2e:9d:a1:4f
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed May 13 02:19:02 2026 by rpki-client