Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/eHFirV1AYOxTFm3VHeAVKV-MA50.roa
File:                     eHFirV1AYOxTFm3VHeAVKV-MA50.roa (raw, json)
Hash identifier:          MGV8uhO0z8GedNwPDvDTYvfJtTbN6SUffBzOVeZnOf4=
Subject key identifier:   78:71:62:AD:5D:40:60:EC:53:16:6D:D5:1D:E0:15:29:5F:8C:03:9D
Certificate issuer:       /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial:       0104
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/eHFirV1AYOxTFm3VHeAVKV-MA50.roa
Signing time:             Thu 26 Nov 2020 10:53:31 +0000
ROA not before:           Thu 26 Nov 2020 10:53:31 +0000
ROA not after:            Tue 05 Oct 2021 04:04:36 +0000
asID:                     212425
IP address blocks:        2406:8dc0:2100::/40 maxlen: 48

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 260 (0x104)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
        Validity
            Not Before: Nov 26 10:53:31 2020 GMT
            Not After : Oct  5 04:04:36 2021 GMT
        Subject: CN=787162AD5D4060EC53166DD51DE015295F8C039D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:c5:f8:5b:04:bb:26:09:9d:b5:f0:ee:35:82:
                    94:28:6d:d4:fe:8c:98:ce:d9:ba:31:2b:6d:76:d6:
                    de:b5:b3:17:a2:35:a7:f0:2d:c1:c2:5b:0b:28:3a:
                    7a:3c:35:c7:83:b5:ae:08:2e:62:74:07:f0:9b:8e:
                    e4:2f:24:7b:24:12:e0:3e:35:88:f2:c7:5a:e5:be:
                    33:14:68:cf:36:78:64:09:d4:e6:e7:27:cd:e6:20:
                    3b:b1:9b:02:35:0e:4a:9d:28:90:67:54:fc:1a:9c:
                    f6:4e:59:f4:96:7f:c8:49:bb:64:e6:a9:1c:ae:af:
                    1d:a6:f4:9b:f7:5b:89:9a:a0:cb:b6:89:43:f7:07:
                    3d:a1:d8:27:ac:b9:1c:9c:35:81:f3:32:6b:bc:c3:
                    c2:70:24:78:54:d1:43:0d:22:93:40:eb:e2:25:85:
                    f2:11:d8:8a:b2:06:48:ec:d6:b4:50:e3:95:db:47:
                    0f:91:d2:af:9a:f1:19:d4:52:ec:10:6d:28:7e:45:
                    dc:98:e5:51:98:b4:f4:ba:2f:75:ff:e0:b7:ef:e7:
                    f4:43:dc:08:0b:3c:db:39:d5:ca:32:6a:ec:7d:cd:
                    14:5b:ca:7d:c6:33:fa:90:9d:ad:0b:97:7a:c1:cd:
                    bb:e2:39:5c:20:5c:d9:78:45:61:00:31:b3:b2:37:
                    60:db
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:71:62:AD:5D:40:60:EC:53:16:6D:D5:1D:E0:15:29:5F:8C:03:9D
            X509v3 Authority Key Identifier:
                keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/eHFirV1AYOxTFm3VHeAVKV-MA50.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2406:8dc0:2100::/40

    Signature Algorithm: sha256WithRSAEncryption
         2f:9d:ca:04:e4:c7:97:1d:51:81:42:6c:2c:e1:57:f9:04:27:
         fc:91:07:cd:9e:05:f3:6f:b8:d7:aa:ed:cf:45:2b:63:c5:71:
         2b:08:8d:a2:1b:18:4e:ba:74:59:22:14:57:34:3d:9f:88:44:
         87:6c:85:c6:a8:34:a0:16:9a:9c:2e:5a:b1:1d:b9:56:53:19:
         2f:52:cf:58:bc:a4:2d:1b:67:59:4d:81:ff:e7:e6:d0:cd:48:
         0f:bc:ba:a6:d2:cc:42:65:bb:7a:b9:f3:7b:15:0f:74:a4:be:
         30:f6:22:68:94:52:80:b9:37:cc:23:83:e6:60:a6:5b:93:54:
         77:7f:b8:fe:2f:56:68:3e:59:e0:1e:e6:7f:9d:e9:29:80:89:
         1b:a3:8d:1b:2b:61:1a:cd:26:a1:b4:2b:72:63:ee:2b:4b:f5:
         32:ec:ab:7f:7a:4e:cc:94:29:3c:45:62:f1:36:b8:a7:d6:1c:
         88:05:46:0f:aa:a6:e3:af:a6:3d:33:08:87:bc:90:72:f6:c2:
         9b:a1:c8:79:61:c6:1f:d8:6e:31:ac:84:e6:ae:34:f5:2b:a2:
         98:27:97:07:19:4d:81:46:fa:09:d2:c9:41:1e:1c:e6:5c:71:
         33:6b:b4:e4:22:a7:42:b5:8f:0c:71:8e:94:7d:63:08:77:44:
         5d:5a:43:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:11:43 2023 by rpki-client on console-ams.rpki-client.org