Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SYSNET/0/3231302e36372e3134322e302f32332d3234203d3e20313532363236.roa
File: 3231302e36372e3134322e302f32332d3234203d3e20313532363236.roa (raw, json)
Hash identifier: COn+17kvcmBferjEo4apmiCxVD7ZgvXfzUS4qgKfAGM=
Subject key identifier: 0B:9A:CC:14:42:E6:DD:1C:39:C5:AD:33:2F:EA:C6:C7:33:01:CF:97
Certificate issuer: /CN=EDE7389B6D9A335D6B6FDD4286DB79011F87554B
Certificate serial: 268F837C6FCCBF3EB9B315E20244529140833B67
Authority key identifier: ED:E7:38:9B:6D:9A:33:5D:6B:6F:DD:42:86:DB:79:01:1F:87:55:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/EDE7389B6D9A335D6B6FDD4286DB79011F87554B.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SYSNET/0/3231302e36372e3134322e302f32332d3234203d3e20313532363236.roa
Signing time: Mon 11 May 2026 17:57:33 +0000
ROA not before: Mon 11 May 2026 17:52:33 +0000
ROA not after: Mon 10 May 2027 17:57:33 +0000
asID: 152626
IP address blocks: 210.67.142.0/23 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
26:8f:83:7c:6f:cc:bf:3e:b9:b3:15:e2:02:44:52:91:40:83:3b:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDE7389B6D9A335D6B6FDD4286DB79011F87554B
Validity
Not Before: May 11 17:52:33 2026 GMT
Not After : May 10 17:57:33 2027 GMT
Subject: CN=0B9ACC1442E6DD1C39C5AD332FEAC6C73301CF97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:32:05:45:cf:5d:b9:bd:8f:e8:59:84:72:3b:
d8:ba:e2:c7:fc:53:48:85:dd:ef:9e:f1:df:26:6a:
77:41:ed:a4:ee:cb:a3:f8:dd:fd:2f:93:57:69:2b:
cb:9d:40:e3:3e:bf:95:16:00:58:b3:cd:3c:6e:07:
76:a6:04:41:83:91:60:cb:9a:75:0d:36:0e:8b:82:
50:2c:16:09:8c:ac:31:21:53:c2:44:0e:b5:c1:12:
91:9d:59:75:56:f3:0f:2f:33:7d:e0:2d:5b:d7:8e:
86:0f:26:58:a1:06:dd:4a:81:61:5b:41:93:f4:11:
f3:fd:d0:fe:d4:b3:37:c4:cb:ea:6a:3e:c9:da:e7:
c0:71:7f:04:d8:9e:c8:8a:0d:5a:d9:9f:78:ce:77:
ee:86:62:8c:a8:c9:97:53:65:1e:8c:36:4e:42:78:
30:5f:67:17:ae:95:b8:d3:25:07:78:77:53:fe:ec:
59:56:ae:4e:c0:65:0e:5c:c7:e1:e6:9b:de:87:b4:
fb:ed:2c:96:a7:78:f1:00:71:5b:09:e5:da:b9:f5:
80:6d:be:56:4a:93:31:9c:6d:b9:ec:c5:60:cd:7b:
6c:85:c2:4a:bf:dc:6a:9d:4a:0c:48:c7:2a:3e:cd:
fe:08:38:5f:fe:2e:07:e1:03:f9:ae:f1:10:49:12:
67:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:9A:CC:14:42:E6:DD:1C:39:C5:AD:33:2F:EA:C6:C7:33:01:CF:97
X509v3 Authority Key Identifier:
keyid:ED:E7:38:9B:6D:9A:33:5D:6B:6F:DD:42:86:DB:79:01:1F:87:55:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SYSNET/0/EDE7389B6D9A335D6B6FDD4286DB79011F87554B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/EDE7389B6D9A335D6B6FDD4286DB79011F87554B.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SYSNET/0/3231302e36372e3134322e302f32332d3234203d3e20313532363236.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.67.142.0/23
Signature Algorithm: sha256WithRSAEncryption
89:8d:79:9e:a1:a4:39:f4:22:ee:a2:9a:78:0c:63:3c:0e:cf:
68:88:4a:3d:7a:1d:3c:ef:11:e3:51:ae:0e:58:15:69:00:d2:
e6:0a:6f:d1:3a:11:f5:54:3f:96:46:02:ea:98:e0:55:17:eb:
23:34:3a:f2:98:8d:0b:6c:ec:e9:bc:08:7c:66:97:80:0b:1d:
9f:70:a0:60:a0:41:cf:19:35:bb:c4:c0:c3:36:89:ce:e5:5e:
b4:15:a1:61:75:48:92:4c:c5:f8:b7:0b:a5:37:4f:d2:43:65:
96:4b:08:16:8a:db:a1:9f:f1:df:e7:02:99:83:c4:2b:01:4e:
eb:b8:b8:94:20:30:94:19:82:33:2c:f3:63:7c:88:04:fa:a1:
63:79:60:90:cc:05:9f:00:19:36:5d:4f:fb:de:f3:55:e2:4a:
01:70:54:12:6f:f3:06:86:bf:73:5e:95:de:ef:b6:42:88:58:
74:b9:3b:43:fe:81:33:ab:5a:01:37:c6:3b:4a:20:84:c0:e7:
e7:eb:86:97:ac:10:52:6a:83:68:04:82:c3:c2:54:5c:c4:7f:
1a:21:86:b6:9b:08:39:f5:17:21:16:8a:ac:bd:c3:58:b8:2d:
96:42:5d:0d:28:97:f0:dc:d8:a1:5d:97:b4:11:01:a8:b5:dd:
93:fd:f2:69
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue May 12 23:06:58 2026 by rpki-client