![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/ocjVCSErUCeoalXg73DrksxBbj4.roa
File: ocjVCSErUCeoalXg73DrksxBbj4.roa (raw, json)
Hash identifier: uOeD4iDOgM2cLASBTKuMxnD689BmSvzcz8ArkK/7iHo=
Subject key identifier: A1:C8:D5:09:21:2B:50:27:A8:6A:55:E0:EF:70:EB:92:CC:41:6E:3E
Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C
Certificate serial: 0B6A
Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/ocjVCSErUCeoalXg73DrksxBbj4.roa
Signing time: Fri 01 Sep 2023 08:30:29 +0000
ROA not before: Fri 01 Sep 2023 08:30:29 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 18046
IP address blocks: 101.0.224.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2922 (0xb6a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C
Validity
Not Before: Sep 1 08:30:29 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=A1C8D509212B5027A86A55E0EF70EB92CC416E3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:05:de:d5:e6:95:c9:88:60:ce:65:40:bf:83:
cf:34:59:af:e9:bc:0c:f7:fb:52:3e:b5:dc:3f:d4:
5f:2c:0c:7a:ef:14:3a:8c:aa:f8:35:90:84:75:c2:
32:22:77:a6:49:e0:0b:60:d3:27:91:4b:57:57:d1:
42:fa:72:f0:e2:bc:ae:97:d6:16:98:2c:65:3d:71:
85:57:a1:31:4c:1f:dc:62:49:e3:6e:ed:f1:8e:9d:
11:71:2e:40:84:95:a9:5f:78:d9:11:38:67:75:1a:
d3:4d:11:af:9e:6e:85:a3:48:34:ca:8a:67:72:69:
5f:2b:61:81:ad:94:87:04:df:b6:29:2e:33:4f:c1:
42:94:b9:0d:e4:7c:14:76:a2:f9:58:5f:d3:8c:9e:
bb:3a:91:ec:5f:4c:0c:5c:a2:34:37:6c:df:12:c2:
17:1a:11:99:62:58:fe:44:5e:78:05:57:cf:56:b3:
c8:1f:08:33:cc:df:f8:55:05:25:8a:13:e4:b5:7d:
40:00:9c:94:04:ab:ac:ad:fe:dd:d6:68:9d:49:3b:
2c:f6:69:88:f6:53:40:8c:ba:69:be:49:ff:50:71:
6f:39:b8:ba:58:e5:59:b1:0e:f4:54:b5:f7:2f:20:
c1:74:10:5f:48:5d:2c:6b:f8:15:86:d1:7a:bb:32:
7f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:C8:D5:09:21:2B:50:27:A8:6A:55:E0:EF:70:EB:92:CC:41:6E:3E
X509v3 Authority Key Identifier:
keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/ocjVCSErUCeoalXg73DrksxBbj4.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
101.0.224.0/21
Signature Algorithm: sha256WithRSAEncryption
67:01:ce:79:24:6c:1c:fd:96:86:33:2b:b5:0a:83:33:b9:e8:
3d:ba:bd:f3:69:35:d4:9b:ed:47:af:28:1e:b6:b3:14:65:3c:
de:fe:e8:22:11:fa:5a:3a:7b:aa:3b:f8:db:59:dc:0e:38:31:
b1:7c:e1:29:14:8d:d8:14:0e:e1:ec:39:09:ac:de:80:57:a7:
80:ae:37:01:ed:1f:1b:1e:24:44:3f:a3:b9:72:8b:ee:a9:5a:
bc:3b:29:aa:d8:1e:b4:d3:98:c8:b8:fc:f5:d1:d0:62:53:b7:
3b:53:27:18:80:6c:1f:fd:76:73:5c:ea:4e:bd:b4:9c:c3:5d:
f6:da:05:c8:21:ad:8b:11:40:10:44:58:4b:f2:c6:a4:f0:c5:
a8:17:08:8c:64:0b:65:7c:4c:a9:7c:03:3e:bb:e0:e8:00:e9:
f0:82:18:dd:1d:c7:3d:28:73:b8:4a:c5:84:0f:b4:ed:b4:90:
07:6a:c0:c5:be:71:7f:c9:ac:d1:89:97:e6:a6:d9:a5:bf:c8:
a9:ae:1e:3a:d4:04:76:e8:c6:7b:5e:2d:43:79:97:d9:1b:39:
eb:82:68:3b:80:6a:16:f1:53:90:f7:bd:43:b6:2a:de:26:4e:
bc:6a:55:a5:4f:fb:3b:5c:c6:9b:7b:77:ec:16:8e:b6:41:30:
7e:6f:7e:8f
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sun Feb 16 20:16:46 2025 by rpki-client