Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/SYSNET/0/3231302e36372e33322e302f31392d3234203d3e2034373833.roa
File: 3231302e36372e33322e302f31392d3234203d3e2034373833.roa (raw, json)
Hash identifier: R+3V0Ek3S/TEEqG6fzzq9tRHndjt0eO+HCUwIKRvy/g=
Subject key identifier: 53:29:99:0B:DE:38:81:9C:CA:8C:5D:CE:F9:0E:7C:08:FF:BC:81:7F
Certificate issuer: /CN=EDE7389B6D9A335D6B6FDD4286DB79011F87554B
Certificate serial: 3B95FF631B1DBAEEF0859C1F8B127F2053FE148C
Authority key identifier: ED:E7:38:9B:6D:9A:33:5D:6B:6F:DD:42:86:DB:79:01:1F:87:55:4B
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/EDE7389B6D9A335D6B6FDD4286DB79011F87554B.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/SYSNET/0/3231302e36372e33322e302f31392d3234203d3e2034373833.roa
Signing time: Mon 11 May 2026 17:40:21 +0000
ROA not before: Mon 11 May 2026 17:35:21 +0000
ROA not after: Mon 10 May 2027 17:40:21 +0000
asID: 4783
IP address blocks: 210.67.32.0/19 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
3b:95:ff:63:1b:1d:ba:ee:f0:85:9c:1f:8b:12:7f:20:53:fe:14:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EDE7389B6D9A335D6B6FDD4286DB79011F87554B
Validity
Not Before: May 11 17:35:21 2026 GMT
Not After : May 10 17:40:21 2027 GMT
Subject: CN=5329990BDE38819CCA8C5DCEF90E7C08FFBC817F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:46:47:d5:f5:72:0c:56:76:52:9f:f5:b8:27:
2b:00:2f:b5:3f:d5:20:6b:e5:c3:14:8c:35:a6:82:
8f:19:c6:d9:e8:6d:2b:e1:50:3d:6d:42:66:68:f4:
d0:f5:79:a7:ee:0c:2d:5f:0f:55:00:67:0e:45:59:
37:8a:2f:e9:fe:3f:4d:85:d0:bc:b1:5b:b7:c4:ec:
15:01:fd:dd:8a:8b:e3:47:e0:b1:e1:e8:95:8c:b2:
d2:a2:ab:7f:61:a4:c2:d0:ed:8e:82:06:74:8f:4a:
c6:77:c3:0b:af:aa:6e:3a:78:fa:4e:95:52:b5:fe:
e0:54:17:a8:90:eb:eb:9c:fb:44:1b:32:fe:bf:a4:
23:ff:44:92:77:01:43:08:c1:5d:81:6a:e0:20:40:
4e:a9:a2:ca:a8:98:bc:4b:b1:da:bc:5d:a1:f4:92:
11:ae:4a:03:1b:b6:c6:1b:3a:c0:d9:50:47:56:f9:
38:74:eb:80:66:50:c9:9c:7a:35:73:a7:f4:92:76:
22:3c:2e:a7:dd:69:5a:7b:a7:ec:b5:66:6c:4c:b5:
1c:ce:1b:e6:b5:58:2e:e4:0f:bf:8b:59:3b:26:c8:
da:2f:5b:a3:fb:f7:f6:46:fa:35:e9:ec:ba:77:04:
3a:c8:2c:13:2e:62:83:66:10:0c:87:e8:c9:e1:e5:
22:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:29:99:0B:DE:38:81:9C:CA:8C:5D:CE:F9:0E:7C:08:FF:BC:81:7F
X509v3 Authority Key Identifier:
keyid:ED:E7:38:9B:6D:9A:33:5D:6B:6F:DD:42:86:DB:79:01:1F:87:55:4B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/SYSNET/0/EDE7389B6D9A335D6B6FDD4286DB79011F87554B.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/EDE7389B6D9A335D6B6FDD4286DB79011F87554B.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SYSNET/0/3231302e36372e33322e302f31392d3234203d3e2034373833.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
210.67.32.0/19
Signature Algorithm: sha256WithRSAEncryption
8a:96:1f:40:10:c5:b0:3b:81:bf:b6:cd:a8:99:cd:c7:dd:39:
9d:9b:f5:53:12:ab:34:39:91:84:93:0e:96:3b:b1:d7:d7:6f:
b6:71:99:ac:12:7a:b3:db:2b:73:88:ad:ed:f8:10:03:d5:cc:
79:c5:5c:b6:5b:b3:ae:3b:bc:b1:23:a8:d2:97:0b:80:29:d9:
82:55:64:95:61:60:d4:99:ba:22:40:bc:8e:ad:e4:c4:e5:d7:
bf:ff:03:b1:f0:30:e2:54:75:bd:aa:92:75:d7:d8:b4:f1:d8:
4c:02:83:f2:b9:ba:b2:67:61:58:5c:68:4b:83:13:ca:1d:61:
bf:82:0a:fb:dc:bd:32:56:66:72:25:bc:3e:f3:dc:20:6b:ba:
38:5e:16:9e:30:53:74:86:ab:70:f2:4d:00:ff:e4:f4:13:aa:
01:f5:8d:42:a3:db:7a:e7:6e:73:bc:3b:e6:af:9e:06:32:5c:
46:45:30:62:4c:0a:41:d1:6c:da:2f:b7:2e:39:8e:7c:cf:a2:
eb:c9:1c:d6:01:8a:ce:45:3b:50:b2:52:cb:62:2a:da:cd:47:
51:0f:f3:81:6e:6b:34:ea:55:f0:a0:fe:91:14:16:cf:e4:11:
d6:2c:b3:eb:37:97:1c:24:c9:2c:23:30:c4:a1:80:b9:b3:c4:
40:9e:e9:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 23:00:11 2026 by rpki-client