Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWT/0/34332e3235302e34342e302f32332d3233203d3e203338383531.roa
File: 34332e3235302e34342e302f32332d3233203d3e203338383531.roa (raw, json)
Hash identifier: MJw5fyYTrafx81rPsZJsc1XaHBGLvizET5hyMMB4EiM=
Subject key identifier: 27:A5:A1:12:9E:1B:59:18:52:01:63:CD:36:9B:87:B8:A1:EF:14:F5
Certificate issuer: /CN=E8B38FAD1BC9D7E426603F6C204566C4AF30938F
Certificate serial: 3639823C100D14A93BCC9F927F465A5FB838AF53
Authority key identifier: E8:B3:8F:AD:1B:C9:D7:E4:26:60:3F:6C:20:45:66:C4:AF:30:93:8F
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E8B38FAD1BC9D7E426603F6C204566C4AF30938F.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWT/0/34332e3235302e34342e302f32332d3233203d3e203338383531.roa
Signing time: Mon 11 May 2026 17:06:24 +0000
ROA not before: Mon 11 May 2026 17:01:24 +0000
ROA not after: Mon 10 May 2027 17:06:24 +0000
asID: 38851
IP address blocks: 43.250.44.0/23 maxlen: 23
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
36:39:82:3c:10:0d:14:a9:3b:cc:9f:92:7f:46:5a:5f:b8:38:af:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E8B38FAD1BC9D7E426603F6C204566C4AF30938F
Validity
Not Before: May 11 17:01:24 2026 GMT
Not After : May 10 17:06:24 2027 GMT
Subject: CN=27A5A1129E1B5918520163CD369B87B8A1EF14F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:db:ed:e4:e9:fd:e1:89:d7:6b:ac:08:af:bd:
5a:09:e8:0e:f2:6f:ca:0e:ee:d9:3a:c2:a1:cc:3e:
a0:2c:b3:1a:ce:25:9a:b8:64:eb:1f:83:2a:dc:33:
4e:7f:d5:20:68:73:7c:28:b0:40:a4:37:9a:f0:a6:
d2:cc:ba:f7:bc:76:77:7d:11:25:50:22:a8:d2:cc:
24:e8:21:92:13:68:2e:7c:33:1a:5d:29:bf:5d:c1:
52:16:47:33:f6:07:ac:55:71:34:25:58:77:a9:50:
e7:f2:5e:ee:9a:39:19:b9:a8:3f:9d:de:30:d9:c2:
28:7a:cb:c6:b6:26:af:64:e9:a5:e9:a6:7b:92:7f:
f4:2a:e9:7c:ed:58:80:72:56:38:76:03:fa:6c:27:
8c:5a:68:97:71:f9:0e:23:28:60:3e:7b:f0:05:53:
93:16:54:03:3b:66:c5:17:23:6a:08:0d:58:8e:8a:
ce:14:cb:8f:c4:ee:bb:48:89:4d:3d:d8:dd:77:53:
1b:f5:2d:42:cf:de:ad:63:b8:57:82:57:8f:01:ff:
4f:63:cf:8c:a4:66:34:cb:97:40:e6:be:7b:8b:00:
d0:a6:93:79:32:74:62:d1:49:f7:34:a5:f7:7a:ca:
0a:8c:41:21:43:a0:d9:bd:75:cd:1f:e9:7b:d5:18:
d3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:A5:A1:12:9E:1B:59:18:52:01:63:CD:36:9B:87:B8:A1:EF:14:F5
X509v3 Authority Key Identifier:
keyid:E8:B3:8F:AD:1B:C9:D7:E4:26:60:3F:6C:20:45:66:C4:AF:30:93:8F
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWT/0/E8B38FAD1BC9D7E426603F6C204566C4AF30938F.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E8B38FAD1BC9D7E426603F6C204566C4AF30938F.cer
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWT/0/34332e3235302e34342e302f32332d3233203d3e203338383531.roa
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
43.250.44.0/23
Signature Algorithm: sha256WithRSAEncryption
0c:2c:b0:45:cd:e1:50:25:7b:fb:e9:6b:d8:52:1d:f7:60:c7:
69:26:84:55:ed:5c:2f:b4:a5:f1:d5:ac:1e:32:9f:e5:cf:d0:
c4:2c:5b:7c:63:a6:19:6d:7b:5e:59:29:75:16:4d:04:a8:63:
6f:8e:e0:d7:0c:a7:9f:f9:c6:22:59:71:ec:14:52:ee:39:07:
94:0c:83:8a:62:9c:be:b9:58:01:51:a1:04:03:b0:7d:66:da:
c7:b7:4c:d7:fd:55:b6:20:2a:ee:40:8b:7a:f6:c2:fc:7d:50:
62:d0:fd:ee:9a:6a:84:f2:0f:c4:fe:b1:2f:48:91:05:60:73:
e4:72:e1:18:56:ad:ce:ef:ea:e9:5f:60:fd:9b:aa:40:c9:bc:
59:80:7e:f7:14:83:8c:55:f7:05:ea:7c:d2:bd:72:15:34:8a:
40:ec:74:03:70:d9:f8:ac:14:48:11:25:cf:aa:2f:6f:ef:e1:
4b:02:5c:c6:c9:f6:4e:bb:bd:07:b3:c4:97:ff:2b:3f:7f:e8:
d1:3e:2a:ba:76:cc:b8:a3:4c:b3:f4:b0:52:77:38:15:ec:ac:
95:ff:b6:b9:23:69:77:61:a7:d0:08:cd:86:61:fe:7c:44:0c:
33:d2:d0:e9:09:51:f6:a3:d1:4c:19:6b:ad:2f:26:9e:b8:4d:
92:eb:ee:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:29:07 2026 by rpki-client