Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/ZzDet4OhBFJBDsMRiAcU09vIsTU.roa
File: ZzDet4OhBFJBDsMRiAcU09vIsTU.roa (raw, json)
Hash identifier: yCh4rYmagAQmsI5z29QEk0IVnWk1yHzKHpnLW5nJPTg=
Subject key identifier: 67:30:DE:B7:83:A1:04:52:41:0E:C3:11:88:07:14:D3:DB:C8:B1:35
Certificate issuer: /CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C
Certificate serial: 0135
Authority key identifier: FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/ZzDet4OhBFJBDsMRiAcU09vIsTU.roa
Signing time: Thu 26 Feb 2026 02:55:01 +0000
ROA not before: Thu 26 Feb 2026 02:55:01 +0000
ROA not after: Wed 30 Dec 2026 15:30:20 +0000
asID: 216198
IP address blocks: 2402:43e0:202::/48 maxlen: 64
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 309 (0x135)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FC752CA59EB8EAEF23D225DC67AA085201F1F79C
Validity
Not Before: Feb 26 02:55:01 2026 GMT
Not After : Dec 30 15:30:20 2026 GMT
Subject: CN=6730DEB783A10452410EC311880714D3DBC8B135
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:70:56:51:56:c5:94:59:1e:68:07:1b:0c:16:
02:38:65:cd:4a:d0:7d:47:55:5c:55:fb:be:75:c6:
7d:f6:51:0f:3d:14:d6:cd:8a:76:02:c9:2e:c9:72:
90:5d:95:0d:a9:ee:2f:e9:bf:31:15:51:2c:67:a6:
8d:4c:f5:48:04:01:17:75:1c:24:65:0c:36:14:60:
b7:29:b4:0a:36:27:23:03:bd:34:a6:67:6c:ef:e3:
d4:d2:2b:20:1b:ee:d5:b4:50:45:6a:a0:5b:04:5e:
5b:6f:46:3b:e0:38:a1:07:bc:22:30:b7:6c:a6:ca:
44:f9:fe:a5:7f:51:db:23:ae:01:76:08:2c:13:b1:
54:5c:5f:de:a8:06:de:79:40:50:d9:30:ec:ef:4b:
db:f9:da:85:2a:22:a5:36:40:4c:ba:82:c8:f8:b0:
09:a2:23:55:d5:a7:50:d1:a8:67:d3:dc:34:d0:c4:
a3:6c:cb:ef:b1:ce:49:5c:ae:af:62:13:82:8f:13:
9c:8c:7d:9a:bf:17:80:2c:46:d7:a5:77:c7:9d:75:
63:3c:91:21:85:a8:22:60:8a:c8:58:a4:ae:60:33:
c0:16:38:ee:ca:0f:b3:d3:b0:dd:5c:07:88:3c:47:
d2:29:6b:45:0e:6a:0a:5a:05:06:2b:c4:6f:bd:36:
0e:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:30:DE:B7:83:A1:04:52:41:0E:C3:11:88:07:14:D3:DB:C8:B1:35
X509v3 Authority Key Identifier:
keyid:FC:75:2C:A5:9E:B8:EA:EF:23:D2:25:DC:67:AA:08:52:01:F1:F7:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/_HUspZ646u8j0iXcZ6oIUgHx95w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_HUspZ646u8j0iXcZ6oIUgHx95w.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AOTERNET/ZzDet4OhBFJBDsMRiAcU09vIsTU.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:43e0:202::/48
Signature Algorithm: sha256WithRSAEncryption
37:b7:d1:e7:e8:32:f7:50:22:38:4f:df:d0:7a:6d:a2:f6:07:
51:07:10:12:ee:8a:c4:d7:76:ab:44:aa:a9:2b:e5:37:6a:f9:
c0:65:03:bb:3d:cc:82:c2:27:b4:a0:e0:97:73:2d:fc:e9:32:
88:b7:d7:60:5f:b3:95:da:d0:c3:d0:1b:9a:92:0d:fc:28:27:
21:05:d2:5b:38:4d:2f:e5:ea:e9:b6:de:1d:ef:23:af:31:09:
06:22:44:4d:80:b2:31:4e:39:ae:f6:62:b8:60:00:8f:6f:04:
1e:fd:a6:57:35:a9:97:fb:d5:bc:a8:8a:8a:74:20:a0:cb:84:
78:02:e3:9e:1b:34:f0:6f:f0:65:c2:e4:62:4b:32:42:f6:ee:
ae:7d:b8:5c:78:e2:69:41:84:3d:8a:99:2f:e2:00:38:80:e8:
00:78:c3:3d:51:0c:66:be:12:61:84:fc:c9:b1:9b:21:40:b6:
fc:1a:6b:51:9b:4b:42:42:54:17:a9:26:d6:9f:67:f5:93:78:
1b:61:f9:8b:16:a1:d9:cc:76:8c:dc:19:57:2c:5c:14:cd:7c:
a7:9b:63:08:9b:be:a1:56:99:99:2e:52:2b:eb:94:94:e3:44:
6f:6e:72:df:9b:c5:42:a2:8c:d0:16:00:17:53:9d:aa:fa:ec:
09:60:5b:3d
-----BEGIN CERTIFICATE-----
MIIE2TCCA8GgAwIBAgICATUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkM3
NTJDQTU5RUI4RUFFRjIzRDIyNURDNjdBQTA4NTIwMUYxRjc5QzAeFw0yNjAyMjYw
MjU1MDFaFw0yNjEyMzAxNTMwMjBaMDMxMTAvBgNVBAMTKDY3MzBERUI3ODNBMTA0
NTI0MTBFQzMxMTg4MDcxNEQzREJDOEIxMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDfcFZRVsWUWR5oBxsMFgI4Zc1K0H1HVVxV+751xn32UQ89FNbN
inYCyS7JcpBdlQ2p7i/pvzEVUSxnpo1M9UgEARd1HCRlDDYUYLcptAo2JyMDvTSm
Z2zv49TSKyAb7tW0UEVqoFsEXltvRjvgOKEHvCIwt2ymykT5/qV/UdsjrgF2CCwT
sVRcX96oBt55QFDZMOzvS9v52oUqIqU2QEy6gsj4sAmiI1XVp1DRqGfT3DTQxKNs
y++xzklcrq9iE4KPE5yMfZq/F4AsRteld8eddWM8kSGFqCJgishYpK5gM8AWOO7K
D7PTsN1cB4g8R9Ipa0UOagpaBQYrxG+9Ng55AgMBAAGjggH1MIIB8TAdBgNVHQ4E
FgQUZzDet4OhBFJBDsMRiAcU09vIsTUwHwYDVR0jBBgwFoAU/HUspZ646u8j0iXc
Z6oIUgHx95wwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU9URVJO
RVQvX0hVc3BaNjQ2dThqMGlYY1o2b0lVZ0h4OTV3LmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9fSFVzcFo2NDZ1OGowaVhjWjZvSVVnSHg5NXcuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BT1RFUk5FVC9aekRldDRPaEJGSkJE
c01SaUFjVTA5dklzVFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJ
AwcAJAJD4AICMA0GCSqGSIb3DQEBCwUAA4IBAQA3t9Hn6DL3UCI4T9/Qem2i9gdR
BxAS7orE13arRKqpK+U3avnAZQO7PcyCwie0oOCXcy386TKIt9dgX7OV2tDD0Bua
kg38KCchBdJbOE0v5erptt4d7yOvMQkGIkRNgLIxTjmu9mK4YACPbwQe/aZXNamX
+9W8qIqKdCCgy4R4AuOeGzTwb/BlwuRiSzJC9u6ufbhceOJpQYQ9ipkv4gA4gOgA
eMM9UQxmvhJhhPzJsZshQLb8GmtRm0tCQlQXqSbWn2f1k3gbYfmLFqHZzHaM3BlX
LFwUzXynm2MIm76hVpmZLlIr65SU40RvbnLfm8VCoozQFgAXU52q+uwJYFs9
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:58:12 2026 by rpki-client