Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SYSNET/0/3231302e36372e3134302e302f32332d3234203d3e20323133343330.roa
File: 3231302e36372e3134302e302f32332d3234203d3e20323133343330.roa (raw, json)
Hash identifier: PWfagcGRVfc9vIBMRwdYrMzeVSU41TMRpQjvJE8vwJ4=
Subject key identifier: 85:41:67:86:36:76:82:48:C3:5B:A5:4A:5A:C9:79:32:0C:5F:B8:16
Certificate issuer: /CN=EDE7389B6D9A335D6B6FDD4286DB79011F87554B
Certificate serial: 54C25EEC94A2520F63B7BC76E72FFB68289ADE5A
Authority key identifier: ED:E7:38:9B:6D:9A:33:5D:6B:6F:DD:42:86:DB:79:01:1F:87:55:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/EDE7389B6D9A335D6B6FDD4286DB79011F87554B.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SYSNET/0/3231302e36372e3134302e302f32332d3234203d3e20323133343330.roa
Signing time: Mon 11 May 2026 17:57:08 +0000
ROA not before: Mon 11 May 2026 17:52:08 +0000
ROA not after: Mon 10 May 2027 17:57:08 +0000
asID: 213430
IP address blocks: 210.67.140.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
54:c2:5e:ec:94:a2:52:0f:63:b7:bc:76:e7:2f:fb:68:28:9a:de:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDE7389B6D9A335D6B6FDD4286DB79011F87554B
Validity
Not Before: May 11 17:52:08 2026 GMT
Not After : May 10 17:57:08 2027 GMT
Subject: CN=8541678636768248C35BA54A5AC979320C5FB816
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:e1:aa:80:08:0f:ad:a5:bd:3d:03:c7:e2:8a:
de:99:a9:38:dc:fb:ec:11:53:ca:da:d8:39:5e:bf:
a0:25:25:54:d4:eb:1a:8d:3f:c9:7e:68:66:a0:31:
52:12:5b:b5:9a:2d:b4:62:f8:24:3e:38:2d:84:3d:
ee:c5:c5:9b:97:c6:ff:9f:a0:b1:6f:60:d9:ee:28:
e6:7f:8a:31:9b:b3:57:40:f5:63:40:bb:75:b4:3f:
ca:f0:cf:71:7e:0b:e3:3c:e6:60:24:ec:62:13:fd:
45:6e:bb:f9:4f:89:36:f1:5e:f3:16:0a:17:1d:0d:
6e:6e:1f:d6:b2:8a:b2:5e:8e:07:ac:8d:f5:b3:59:
47:56:f2:8e:03:f6:fa:3e:9f:0b:de:c8:85:d3:7b:
f6:66:da:38:67:d8:7f:54:db:e7:46:09:35:21:3b:
56:30:7d:57:4f:c4:22:2e:c1:63:c0:2d:f5:47:58:
61:a9:ee:f7:a1:1a:96:b3:09:33:c9:83:ba:62:af:
e3:6e:99:f9:14:98:4f:35:51:37:56:06:91:c9:a2:
6d:d2:b7:40:83:0d:0e:e7:69:d5:a4:7e:1b:4f:06:
12:79:7f:b8:02:01:ed:84:69:b5:e6:c6:bf:b8:32:
9a:03:ee:a2:07:74:0b:cd:29:f7:6c:18:53:12:94:
45:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:41:67:86:36:76:82:48:C3:5B:A5:4A:5A:C9:79:32:0C:5F:B8:16
X509v3 Authority Key Identifier:
keyid:ED:E7:38:9B:6D:9A:33:5D:6B:6F:DD:42:86:DB:79:01:1F:87:55:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SYSNET/0/EDE7389B6D9A335D6B6FDD4286DB79011F87554B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/EDE7389B6D9A335D6B6FDD4286DB79011F87554B.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SYSNET/0/3231302e36372e3134302e302f32332d3234203d3e20323133343330.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.67.140.0/23
Signature Algorithm: sha256WithRSAEncryption
33:11:ee:c8:99:ed:2f:af:4b:e5:ac:d6:19:df:19:47:aa:c0:
f6:02:11:db:d2:86:d2:18:09:d7:a2:83:97:49:1c:04:66:8f:
23:3b:ef:3d:fe:2e:55:00:91:e8:c5:da:e5:99:72:19:92:65:
2c:df:f5:e6:dc:3a:21:b9:f8:86:b2:a8:b9:49:72:ed:1e:0e:
b0:81:3c:fa:2b:28:02:bc:80:59:ad:e8:6c:c9:1d:b2:f8:e0:
aa:a5:15:72:16:21:ba:4b:1c:54:24:4b:e1:94:98:3a:d5:05:
74:e1:03:2f:51:8f:55:a4:b9:43:c0:4b:15:a4:b0:79:34:73:
cb:b3:15:f2:01:03:67:0f:82:47:09:8e:c3:9d:26:b3:2d:af:
2d:87:4c:de:60:c6:37:a1:d8:77:8b:d9:7d:28:13:79:70:1b:
5e:8a:2d:c2:a0:8b:b8:b7:2e:45:e8:77:3d:c0:79:4c:cc:23:
fb:9e:7c:63:60:75:d2:54:48:b4:f1:f4:2b:0b:d0:95:b1:67:
ab:aa:84:34:72:f5:26:88:83:5f:a8:d9:f9:7c:e1:b7:70:9a:
2b:a4:80:30:6c:bf:aa:08:d0:66:b1:d5:bf:26:27:66:52:01:
7b:7a:2f:4f:c0:26:62:7d:69:d4:da:95:df:f7:89:11:0a:7e:
f7:3f:87:21
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue May 12 23:27:54 2026 by rpki-client