![](/console.gif)
Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kFXLj7C96JqCuADzwbUMIPfO1c8.roa
File: kFXLj7C96JqCuADzwbUMIPfO1c8.roa (raw, json)
Hash identifier: OGNg4KiBmisgQHz6D8K7zUJ8VwVnODiylr0uvIzWRhA=
Subject key identifier: 90:55:CB:8F:B0:BD:E8:9A:82:B8:00:F3:C1:B5:0C:20:F7:CE:D5:CF
Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial: 0CA0
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kFXLj7C96JqCuADzwbUMIPfO1c8.roa
Signing time: Wed 29 Sep 2021 02:50:04 +0000
ROA not before: Wed 29 Sep 2021 02:50:04 +0000
ROA not after: Thu 29 Sep 2022 02:36:22 +0000
asID: 131634
IP address blocks: 124.108.152.0/21 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3232 (0xca0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Validity
Not Before: Sep 29 02:50:04 2021 GMT
Not After : Sep 29 02:36:22 2022 GMT
Subject: CN=9055CB8FB0BDE89A82B800F3C1B50C20F7CED5CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6d:a9:38:e3:91:6e:44:61:4f:5f:1e:48:1e:
d4:f7:41:7d:18:7a:ed:92:ae:54:5f:9d:9a:99:46:
5d:66:b6:2b:98:7b:68:d7:c3:f6:b4:b2:5b:99:04:
93:10:fa:cf:9c:25:c4:07:b3:66:32:f5:9a:50:a7:
5d:ed:a7:f2:b9:53:76:1b:a9:a0:91:ec:d6:c2:19:
db:63:df:e8:f3:f5:0e:91:dc:a3:be:eb:98:7a:02:
33:e1:c4:62:1c:b8:6e:08:6b:50:d2:f5:0d:7c:e1:
3f:6c:97:e2:4d:6c:95:2e:36:47:58:40:60:bf:3d:
5c:2f:59:81:90:2c:30:02:ba:4e:b5:9e:73:6d:c5:
25:f1:04:28:cf:40:b9:d2:2f:d3:ea:43:b1:f4:00:
49:d4:8f:c3:ce:19:4d:2f:ee:4a:57:a0:27:59:71:
ed:f9:51:8b:f6:1f:f5:a7:32:0e:b0:fb:d5:5a:03:
c5:d3:f3:79:d7:8a:c9:71:24:1a:02:fd:cf:54:ad:
18:fb:8c:49:21:1b:8a:8e:8f:20:56:b4:5c:b3:4d:
2a:8f:3f:16:d8:8b:2b:c5:0d:8a:68:f7:57:47:3d:
dc:86:1d:f2:42:93:d2:fb:63:39:9c:55:aa:82:bb:
c4:b7:ce:5f:c4:0f:e4:6c:f7:8b:3e:87:11:77:05:
0c:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:55:CB:8F:B0:BD:E8:9A:82:B8:00:F3:C1:B5:0C:20:F7:CE:D5:CF
X509v3 Authority Key Identifier:
keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/kFXLj7C96JqCuADzwbUMIPfO1c8.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.108.152.0/21
Signature Algorithm: sha256WithRSAEncryption
71:bd:4b:6c:b9:f1:25:f6:d7:68:ce:f7:a5:98:be:20:03:11:
76:d1:36:03:31:df:27:d7:5a:87:c9:7d:7a:bb:01:c3:ac:d5:
8d:de:52:90:2b:c4:80:4d:ca:13:68:c0:df:90:9d:ed:a8:3a:
48:e1:d1:cf:28:a5:5f:38:94:cc:ed:3b:c7:62:3c:b0:7c:63:
eb:02:f0:20:f0:12:d2:1b:12:f7:b6:79:77:16:fb:14:14:95:
bb:09:6e:77:8c:26:1f:cd:ba:bb:9b:63:5d:13:c0:86:e2:2d:
42:aa:5a:38:29:6a:ea:fc:13:42:16:fe:d4:31:59:d7:f5:b8:
93:d4:37:67:98:38:b1:3e:b7:1e:35:71:7a:aa:6c:67:98:a4:
3c:93:d7:37:18:a1:1d:4d:79:97:db:54:d9:3c:47:c3:6f:f3:
df:3b:9b:73:4c:98:3e:e1:24:68:24:02:f9:c0:1b:6c:86:90:
9d:18:31:c3:52:86:36:f9:87:78:32:c9:c4:1f:0e:8b:bb:7d:
de:b4:7a:c5:4f:d2:14:48:52:52:62:49:5a:0e:3c:98:cc:bc:
8a:6c:52:35:1a:7a:cc:79:c9:d3:87:1f:77:62:e2:24:15:70:
e4:69:f4:78:fe:3a:3b:28:fe:a3:52:ac:a0:f8:53:65:22:51:
78:4a:09:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 20:11:33 2025 by rpki-client