Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TPSILKERA/0/3230322e3136302e36342e302f32312d3234203d3e2032393134.roa
File: 3230322e3136302e36342e302f32312d3234203d3e2032393134.roa (raw, json)
Hash identifier: SErudOPMPGxEJIEVf0HT4s/SxiNNuLqoN2Td6zuactY=
Subject key identifier: 02:5D:81:66:94:46:09:D4:AD:7C:F2:2A:2E:C3:D4:19:06:A5:85:D8
Certificate issuer: /CN=2586043D180B153CEF366A422232C20D63D92FB2
Certificate serial: 12369FD72A0720A0BEBD482F1FB6D665EC03779C
Authority key identifier: 25:86:04:3D:18:0B:15:3C:EF:36:6A:42:22:32:C2:0D:63:D9:2F:B2
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2586043D180B153CEF366A422232C20D63D92FB2.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TPSILKERA/0/3230322e3136302e36342e302f32312d3234203d3e2032393134.roa
Signing time: Mon 11 May 2026 17:38:19 +0000
ROA not before: Mon 11 May 2026 17:33:19 +0000
ROA not after: Mon 10 May 2027 17:38:19 +0000
asID: 2914
IP address blocks: 202.160.64.0/21 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
12:36:9f:d7:2a:07:20:a0:be:bd:48:2f:1f:b6:d6:65:ec:03:77:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2586043D180B153CEF366A422232C20D63D92FB2
Validity
Not Before: May 11 17:33:19 2026 GMT
Not After : May 10 17:38:19 2027 GMT
Subject: CN=025D8166944609D4AD7CF22A2EC3D41906A585D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:bc:f7:7e:c5:a5:1f:f0:13:34:02:b5:c7:41:
1a:66:30:eb:b0:39:6f:7a:5b:ce:96:f0:0c:db:20:
4a:33:cf:ab:35:11:a5:89:58:d7:f6:e9:92:54:9c:
9e:30:c1:8d:2b:bc:d3:74:85:28:e3:cf:d0:11:e9:
2a:e4:60:1c:ce:5d:1a:ca:d9:3e:a4:f5:7c:94:71:
99:c6:b4:cc:cd:a3:d8:5b:2e:cd:19:5f:fe:38:07:
dc:cf:bf:93:48:75:fe:3d:d2:c9:9a:46:79:68:51:
0f:8c:d0:db:bc:90:ea:92:58:07:99:7e:9a:62:d6:
26:d9:2f:fc:39:b3:e4:54:54:7f:e7:67:d7:ab:1c:
f3:77:e1:86:f8:f6:2a:da:ab:5f:80:00:0b:7f:00:
7d:ce:ac:f1:79:cc:6a:fd:35:a3:48:a8:9c:6e:00:
30:d8:b6:51:ae:c2:66:58:43:81:cb:54:96:fa:7d:
11:77:dc:5e:13:ba:aa:a7:a4:43:66:09:37:ad:80:
77:45:05:18:73:61:f2:b7:95:a7:d4:58:a9:b8:50:
a4:bd:de:43:7d:75:c4:18:e2:35:e9:49:b6:10:c0:
6a:e8:29:0e:9a:23:03:13:43:e8:88:70:a0:f0:5b:
74:64:30:c2:ce:30:33:df:de:5e:3d:2d:78:58:69:
e2:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:5D:81:66:94:46:09:D4:AD:7C:F2:2A:2E:C3:D4:19:06:A5:85:D8
X509v3 Authority Key Identifier:
keyid:25:86:04:3D:18:0B:15:3C:EF:36:6A:42:22:32:C2:0D:63:D9:2F:B2
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TPSILKERA/0/2586043D180B153CEF366A422232C20D63D92FB2.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2586043D180B153CEF366A422232C20D63D92FB2.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TPSILKERA/0/3230322e3136302e36342e302f32312d3234203d3e2032393134.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
202.160.64.0/21
Signature Algorithm: sha256WithRSAEncryption
0a:2b:c8:72:22:16:6c:21:95:1c:e1:dc:0f:6d:36:33:b7:7e:
22:0c:c2:99:27:b8:94:4f:5f:6d:ad:7f:b2:a8:97:45:86:87:
d6:c3:15:a0:3f:94:f4:3c:fb:7f:26:3e:42:d6:50:a1:46:27:
7d:f0:dd:6e:66:56:46:8e:ab:c9:f2:73:6f:b9:14:fb:14:73:
99:b1:c3:a8:37:ba:d6:e8:42:0d:d1:43:e1:b4:76:09:9b:44:
80:a6:87:26:3a:42:9b:2d:a4:3a:23:bd:4c:d8:bd:65:5e:02:
38:29:57:d9:fe:6a:d0:5b:2f:6d:a4:d2:e0:35:ed:54:d2:53:
6e:e4:3b:2d:1b:d8:7e:1e:1d:96:2d:20:06:cf:6b:be:d9:17:
e4:4e:eb:ad:fd:b5:22:e6:aa:44:74:eb:0c:12:5f:5a:ec:8d:
f0:70:c3:0f:fb:a0:5b:76:c0:34:73:36:23:4e:8e:13:80:e7:
79:3e:66:75:3a:5d:63:ee:5f:02:d4:d8:45:cf:ab:c8:6f:d4:
57:ba:41:71:aa:b3:14:8a:98:42:25:b6:84:7f:cf:51:38:ac:
09:71:9b:59:3a:80:bb:3e:14:94:1a:cb:64:c1:44:a5:91:6c:
08:48:f8:2b:5b:64:78:f0:e9:69:f6:20:e1:44:ee:0f:70:16:
bf:41:09:78
-----BEGIN CERTIFICATE-----
MIIE3TCCA8WgAwIBAgIUEjaf1yoHIKC+vUgvH7bWZewDd5wwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoMjU4NjA0M0QxODBCMTUzQ0VGMzY2QTQyMjIzMkMyMEQ2
M0Q5MkZCMjAeFw0yNjA1MTExNzMzMTlaFw0yNzA1MTAxNzM4MTlaMDMxMTAvBgNV
BAMTKDAyNUQ4MTY2OTQ0NjA5RDRBRDdDRjIyQTJFQzNENDE5MDZBNTg1RDgwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEvPd+xaUf8BM0ArXHQRpmMOuw
OW96W86W8AzbIEozz6s1EaWJWNf26ZJUnJ4wwY0rvNN0hSjjz9AR6SrkYBzOXRrK
2T6k9XyUcZnGtMzNo9hbLs0ZX/44B9zPv5NIdf490smaRnloUQ+M0Nu8kOqSWAeZ
fppi1ibZL/w5s+RUVH/nZ9erHPN34Yb49iraq1+AAAt/AH3OrPF5zGr9NaNIqJxu
ADDYtlGuwmZYQ4HLVJb6fRF33F4TuqqnpENmCTetgHdFBRhzYfK3lafUWKm4UKS9
3kN9dcQY4jXpSbYQwGroKQ6aIwMTQ+iIcKDwW3RkMMLOMDPf3l49LXhYaeJFAgMB
AAGjggHnMIIB4zAdBgNVHQ4EFgQUAl2BZpRGCdStfPIqLsPUGQalhdgwHwYDVR0j
BBgwFoAUJYYEPRgLFTzvNmpCIjLCDWPZL7IwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud
HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFBTSUxL
RVJBLzAvMjU4NjA0M0QxODBCMTUzQ0VGMzY2QTQyMjIzMkMyMEQ2M0Q5MkZCMi5j
cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvMS8yNTg2MDQzRDE4MEIxNTNDRUYzNjZBNDIy
MjMyQzIwRDYzRDkyRkIyLmNlcjB9BggrBgEFBQcBCwRxMG8wbQYIKwYBBQUHMAuG
YXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFBTSUxLRVJBLzAvMzIzMDMy
MmUzMTM2MzAyZTM2MzQyZTMwMmYzMjMxMmQzMjM0MjAzZDNlMjAzMjM5MzEzNC5y
b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w
DAQCAAEwBgMEA8qgQDANBgkqhkiG9w0BAQsFAAOCAQEACivIciIWbCGVHOHcD202
M7d+IgzCmSe4lE9fba1/sqiXRYaH1sMVoD+U9Dz7fyY+QtZQoUYnffDdbmZWRo6r
yfJzb7kU+xRzmbHDqDe61uhCDdFD4bR2CZtEgKaHJjpCmy2kOiO9TNi9ZV4COClX
2f5q0FsvbaTS4DXtVNJTbuQ7LRvYfh4dli0gBs9rvtkX5E7rrf21IuaqRHTrDBJf
WuyN8HDDD/ugW3bANHM2I06OE4DneT5mdTpdY+5fAtTYRc+ryG/UV7pBcaqzFIqY
QiW2hH/PUTisCXGbWTqAuz4UlBrLZMFEpZFsCEj4K1tkePDpafYg4UTuD3AWv0EJ
eA==
-----END CERTIFICATE-----
Generated at Wed May 13 01:35:19 2026 by rpki-client