Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/BbFg3tBmLPmF9copsZ9OsPpKfxM.roa
File:                     BbFg3tBmLPmF9copsZ9OsPpKfxM.roa (raw, json)
Hash identifier:          +8HqFoKhzmCM+6HuuoNOKKM9Yba+TAAv/Q66MMdR8pg=
Subject key identifier:   05:B1:60:DE:D0:66:2C:F9:85:F5:CA:29:B1:9F:4E:B0:FA:4A:7F:13
Certificate issuer:       /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial:       0159
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/BbFg3tBmLPmF9copsZ9OsPpKfxM.roa
Signing time:             Sun 07 Feb 2021 05:58:29 +0000
ROA not before:           Sun 07 Feb 2021 05:58:29 +0000
ROA not after:            Tue 05 Oct 2021 04:04:36 +0000
asID:                     60614
IP address blocks:        103.156.184.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 345 (0x159)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
        Validity
            Not Before: Feb  7 05:58:29 2021 GMT
            Not After : Oct  5 04:04:36 2021 GMT
        Subject: CN=05B160DED0662CF985F5CA29B19F4EB0FA4A7F13
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:63:0a:4d:94:b4:55:d3:ea:38:32:b9:d7:56:
                    e8:70:39:9b:ad:a9:fd:f9:53:c4:3a:f1:c5:59:e9:
                    7c:1c:0e:5b:3e:7a:3a:45:87:5f:c8:eb:44:dc:08:
                    1c:b8:8c:2a:0a:08:82:84:16:41:7d:b7:5a:17:8e:
                    59:4f:16:92:c6:69:23:69:b9:9f:8e:2e:e3:83:dd:
                    71:a4:f1:d2:ec:76:b9:09:fd:9c:11:fd:0c:6e:38:
                    59:1a:a9:e3:bf:45:19:d7:26:59:c0:82:2e:7a:77:
                    2c:29:7c:c9:4d:80:5a:97:07:7e:a2:aa:76:6b:81:
                    98:64:b1:1f:b8:36:33:22:0f:c4:96:00:5c:bd:4d:
                    a8:c8:34:9d:2e:8b:f6:66:cf:b7:b9:84:d3:5b:b5:
                    a7:c5:9a:66:2f:53:d8:5e:4d:b4:78:a8:1a:ac:fc:
                    68:f2:50:12:73:e3:7e:66:d2:1a:0d:19:da:51:c2:
                    8c:24:94:b8:f5:f5:a7:3a:e6:c1:53:43:6f:f0:9f:
                    86:dc:55:cb:09:b1:24:5d:8a:3a:6a:ad:a0:3d:1b:
                    5b:47:39:b9:12:23:68:3c:89:45:15:fa:e0:26:dc:
                    b7:7c:49:07:e5:28:d8:59:39:e3:86:90:ed:cf:2e:
                    2d:05:37:2b:6f:71:be:6b:77:33:e5:59:9c:9d:04:
                    2a:3f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:B1:60:DE:D0:66:2C:F9:85:F5:CA:29:B1:9F:4E:B0:FA:4A:7F:13
            X509v3 Authority Key Identifier:
                keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/BbFg3tBmLPmF9copsZ9OsPpKfxM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.156.184.0/24

    Signature Algorithm: sha256WithRSAEncryption
         c9:30:76:38:96:f5:d2:a7:9e:ff:90:5f:0f:f7:74:42:95:a1:
         98:ac:bc:8d:17:df:59:05:8c:0e:1b:2b:81:86:42:58:67:8c:
         85:6b:c8:7b:ac:e7:3b:b8:48:4f:8b:b4:37:d9:3b:82:d1:2d:
         81:81:c4:b8:41:09:a2:66:5a:97:f1:24:ed:88:9c:1d:55:d9:
         54:3f:30:2d:6b:08:2d:dc:56:ef:76:15:f1:26:4f:2e:59:7e:
         f2:ee:67:45:1e:d5:a8:27:23:14:a0:a6:6e:fa:8e:e0:af:e3:
         71:49:fb:4c:2a:69:b4:93:40:30:d9:3d:88:85:d9:0d:62:1a:
         c6:ec:d6:2d:3c:be:1a:24:cd:7f:70:09:49:e3:08:3a:7f:cf:
         cd:f8:67:75:5c:d7:b9:fd:04:5c:79:2a:b2:f4:dd:ea:9a:30:
         19:a8:a9:90:de:29:7c:e0:5f:f3:22:da:d5:47:14:39:14:7b:
         11:04:6d:a6:05:3c:ef:de:f5:dc:45:f7:63:79:ea:c6:b6:90:
         45:1e:99:70:7c:13:d0:fc:8d:09:33:9b:9d:a0:72:d0:16:c9:
         6f:33:0a:38:49:fc:62:35:e0:bb:fc:bc:e5:75:22:ff:05:ce:
         42:d3:b1:f4:c8:e9:15:e9:02:58:24:cb:d5:a0:12:28:27:e7:
         f3:ae:be:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:07:53 2023 by rpki-client on console-fra.rpki-client.org