Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/hpVoEcI8MxhIlQUhXB7b78OPTtY.roa
File:                     hpVoEcI8MxhIlQUhXB7b78OPTtY.roa (raw, json)
Hash identifier:          6sVB2LxoS4U3ACEoCm9GMofbaHp0kQxcoVXXrtDNLWE=
Subject key identifier:   86:95:68:11:C2:3C:33:18:48:95:05:21:5C:1E:DB:EF:C3:8F:4E:D6
Certificate issuer:       /CN=57A994BD60555145CB6452DC6A980FC851136BDA
Certificate serial:       02FC
Authority key identifier: 57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/hpVoEcI8MxhIlQUhXB7b78OPTtY.roa
Signing time:             Mon 27 Jun 2022 17:33:39 +0000
ROA not before:           Mon 27 Jun 2022 17:33:39 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     983
IP address blocks:        103.156.184.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 764 (0x2fc)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=57A994BD60555145CB6452DC6A980FC851136BDA
        Validity
            Not Before: Jun 27 17:33:39 2022 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=86956811C23C3318489505215C1EDBEFC38F4ED6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:b6:d0:91:5d:3e:b5:f2:54:91:0a:36:85:fc:
                    d2:40:5d:a4:7e:e8:8f:fb:a9:fd:82:24:89:00:cb:
                    51:08:8c:a1:1c:8d:61:aa:a0:a5:ad:25:79:3e:50:
                    39:e8:60:fb:9e:2b:23:10:15:86:46:c3:67:68:e1:
                    13:9c:f4:a8:52:45:be:a2:fe:b1:ad:c9:ed:98:4d:
                    62:6b:ed:b8:f4:ad:07:69:2f:ce:32:10:fa:05:90:
                    87:89:9d:39:86:2f:a2:0f:d8:5a:dd:52:a2:08:b3:
                    13:a5:81:ca:4f:1c:86:d9:1d:ea:e5:bb:a2:b6:5c:
                    6a:49:6b:4a:13:91:ac:48:4d:74:51:08:b5:6e:e9:
                    c3:47:c5:d1:f1:ba:e4:c3:ac:b2:47:3f:92:20:9f:
                    c7:2d:dc:77:3e:74:c7:f1:3f:9d:5b:27:cf:a1:d0:
                    21:fb:b9:f3:56:48:13:c6:84:6d:42:39:a7:e6:76:
                    96:a8:d4:c4:0a:4f:55:39:3a:1e:d7:7f:8f:dc:14:
                    63:09:b8:69:73:c7:bb:10:bf:9e:c5:71:44:3b:07:
                    f8:86:cd:8b:a8:42:50:2a:00:57:aa:e1:cb:65:d7:
                    c9:03:b8:aa:41:51:29:0c:d0:d9:7c:1a:2a:4f:c1:
                    1d:ac:d8:12:58:09:c7:b6:3c:6f:f5:c0:b9:8c:67:
                    c4:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                86:95:68:11:C2:3C:33:18:48:95:05:21:5C:1E:DB:EF:C3:8F:4E:D6
            X509v3 Authority Key Identifier:
                keyid:57:A9:94:BD:60:55:51:45:CB:64:52:DC:6A:98:0F:C8:51:13:6B:DA

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/V6mUvWBVUUXLZFLcapgPyFETa9o.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V6mUvWBVUUXLZFLcapgPyFETa9o.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ALLPASS/hpVoEcI8MxhIlQUhXB7b78OPTtY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.156.184.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a6:f4:c0:e2:7e:25:72:d3:e0:08:a6:26:fa:2e:55:c6:76:01:
         9b:65:50:b6:61:85:bc:ba:f8:5b:96:48:1b:b5:d6:fc:e1:c6:
         78:f9:a0:be:7b:bb:dd:46:d5:84:39:cb:4d:4e:cb:f4:f5:d9:
         db:b5:8a:f9:3b:41:8e:ac:89:14:d8:46:a8:3c:30:46:c5:c9:
         e0:79:e9:73:07:53:4f:08:7c:34:65:7f:61:de:5e:8a:56:4b:
         8b:69:7f:4c:d2:58:a1:85:6b:f6:40:27:38:58:de:0c:27:1f:
         40:4d:f8:b9:cb:f4:3d:09:b4:0b:ef:47:65:5c:a5:53:8b:c6:
         c3:99:1d:a1:30:d3:0d:e0:02:b8:17:d7:e6:c4:f4:d9:8a:0a:
         25:ba:b5:95:78:db:8c:f6:1c:2a:63:f0:35:34:a3:7f:2e:58:
         e5:07:f0:77:22:ea:af:16:1c:c1:28:96:43:38:66:cf:94:f3:
         32:5d:f0:18:0c:bc:f0:a4:66:e6:2b:36:00:b9:81:75:17:cf:
         10:78:5f:e7:a0:e9:df:ad:c7:37:0a:21:b2:02:e0:fa:2d:eb:
         59:dc:52:29:6b:ae:a6:21:95:58:0b:83:aa:29:d2:88:af:79:
         b5:92:3d:dc:44:e9:85:f0:20:f8:50:ad:4f:d6:1f:c0:c9:a2:
         fb:c6:d8:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:30 2024 by rpki-client on console-fra.rpki-client.org