Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/U7bAfTWGmHG24QF2lLYEpbwPxc4.roa
File: U7bAfTWGmHG24QF2lLYEpbwPxc4.roa (raw, json)
Hash identifier: MfQOCKHyiF+fAF3p74/zm1pH+l+X5w8UGzW8sioG4qM=
Subject key identifier: 53:B6:C0:7D:35:86:98:71:B6:E1:01:76:94:B6:04:A5:BC:0F:C5:CE
Certificate issuer: /CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C
Certificate serial: 91
Authority key identifier: FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/U7bAfTWGmHG24QF2lLYEpbwPxc4.roa
Signing time: Wed 28 Jan 2026 08:05:03 +0000
ROA not before: Wed 28 Jan 2026 08:05:03 +0000
ROA not after: Wed 30 Dec 2026 15:30:20 +0000
asID: 152612
IP address blocks: 2402:43e0:9::/48 maxlen: 64
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145 (0x91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C
Validity
Not Before: Jan 28 08:05:03 2026 GMT
Not After : Dec 30 15:30:20 2026 GMT
Subject: CN=53B6C07D35869871B6E1017694B604A5BC0FC5CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:f0:fd:f6:bb:19:8a:4a:c1:50:a6:26:98:e4:
62:47:bc:f7:bf:42:06:ed:00:6a:bb:73:88:99:d6:
ed:c2:11:2c:50:19:ed:20:0d:91:6d:2b:13:44:9f:
b9:a4:c5:1e:5d:1e:c0:50:70:7a:3e:a0:3e:b6:cc:
39:a4:13:4e:93:09:48:e5:23:f0:43:0f:56:e3:99:
0f:48:6e:00:2a:b0:58:15:fc:9b:b0:d3:e0:39:e2:
0b:31:cd:67:58:d9:c5:48:95:e7:05:3b:bc:bb:e3:
7d:f9:37:26:9f:23:2b:72:9b:c3:dc:49:42:0f:5c:
c5:f8:bc:8b:21:55:39:aa:e4:58:ac:7f:06:c2:82:
65:d5:a7:25:18:47:5b:2d:ee:9c:73:d4:4b:23:c4:
0b:85:61:56:5a:36:48:e0:40:f3:bb:b7:da:27:a3:
67:5b:e2:e2:05:48:60:05:a4:78:fe:2e:36:ae:b8:
99:da:77:0c:35:28:e9:b8:c7:b6:0f:66:c5:f3:a4:
c6:05:ae:e2:4f:18:f2:60:ec:1c:93:df:54:8b:e7:
5d:68:c3:ac:96:ca:b3:bc:69:b3:90:3c:29:4d:a7:
10:f4:29:08:23:3a:83:4a:57:81:81:22:13:13:b5:
88:82:4f:d6:bf:0b:13:e8:e6:fe:c3:48:3e:79:09:
bd:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B6:C0:7D:35:86:98:71:B6:E1:01:76:94:B6:04:A5:BC:0F:C5:CE
X509v3 Authority Key Identifier:
keyid:FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/U7bAfTWGmHG24QF2lLYEpbwPxc4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:43e0:9::/48
Signature Algorithm: sha256WithRSAEncryption
02:81:06:0e:cb:ff:75:8e:c8:3d:94:5a:f2:be:d8:33:c0:eb:
bf:e9:4e:9f:7b:ec:b2:d2:a6:af:95:5d:c2:25:56:e4:56:1d:
54:35:59:f3:c1:43:da:49:c6:e4:d7:b4:c3:b4:81:50:76:27:
95:c0:da:be:2e:44:78:6b:9b:58:17:2f:03:f3:d5:3d:83:28:
ec:5c:f7:a6:40:d3:9c:7f:14:6d:fa:d2:38:51:89:31:ac:ed:
a2:80:2b:f4:8d:ce:2f:5e:50:e1:a1:d0:35:8f:fe:1e:99:1d:
f8:30:bd:0a:5b:89:1c:da:50:b4:3d:99:b2:48:c7:ec:60:2c:
a8:a9:b0:f3:f5:b1:65:b8:c5:e3:03:00:cd:6c:9b:42:f0:bf:
2a:8d:80:3e:4e:f1:77:d0:69:21:90:90:38:d1:cb:23:a0:88:
c2:ee:3f:fa:7d:ed:c9:b4:21:68:33:9f:30:ad:78:13:d0:cc:
87:86:44:52:d5:70:22:de:08:34:bd:4f:9b:99:29:79:ec:4b:
9b:dc:74:3c:3d:e4:96:2a:59:af:de:40:df:bc:bf:4c:e9:9a:
b8:f0:1a:d3:ce:be:a4:5c:a5:de:05:ce:ef:de:7a:0f:07:1b:
2a:34:c1:22:57:a8:74:71:b9:16:a1:b3:2e:4d:3c:2e:96:99:
31:ec:c0:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:57:55 2026 by rpki-client