Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/YTxRtXwce4ADjPi5h_gYaoQ3Rno.roa
File:                     YTxRtXwce4ADjPi5h_gYaoQ3Rno.roa (raw, json)
Hash identifier:          vxZD75VfqZsy8FAECjwkHAZioye4ndOo25shHyQyyhc=
Subject key identifier:   61:3C:51:B5:7C:1C:7B:80:03:8C:F8:B9:87:F8:18:6A:84:37:46:7A
Certificate issuer:       /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
Certificate serial:       0913
Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/YTxRtXwce4ADjPi5h_gYaoQ3Rno.roa
Signing time:             Wed 29 Sep 2021 02:51:57 +0000
ROA not before:           Wed 29 Sep 2021 02:51:57 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     131618
IP address blocks:        103.104.151.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2323 (0x913)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8
        Validity
            Not Before: Sep 29 02:51:57 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=613C51B57C1C7B80038CF8B987F8186A8437467A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:6e:2e:22:fa:49:dc:34:09:54:64:3d:04:5c:
                    14:2b:fd:fd:d5:0d:ec:4b:37:58:c8:b4:6f:cc:ac:
                    cd:17:0a:14:1e:fd:11:e1:7f:ac:1d:d1:aa:12:3f:
                    9c:ac:67:23:05:7e:44:b1:a1:82:f8:6d:6a:c9:50:
                    fb:f4:8c:be:d5:78:e1:18:f3:27:a9:2e:97:2f:c7:
                    9f:60:ee:0c:a2:04:a9:53:b0:fd:0d:cf:f9:d2:07:
                    0a:7e:58:31:f8:af:a9:aa:b6:5f:ca:04:2b:af:07:
                    d9:f7:20:9b:0b:61:51:ab:f3:c5:10:3e:46:2a:ff:
                    96:42:6b:b1:d8:ab:cf:0f:af:1b:b8:f3:42:b8:a9:
                    d7:83:68:d8:93:a0:a4:6c:68:0e:7e:f6:99:05:2e:
                    70:05:8e:d6:1c:a9:97:bf:60:7b:2d:2a:69:55:2c:
                    9e:c5:58:2a:72:a2:13:e9:da:79:aa:fc:fd:8b:cb:
                    13:ac:ca:1c:7d:63:5e:c7:a7:65:9c:47:af:52:9e:
                    33:65:a0:65:50:1c:7c:5d:bc:27:b1:4b:47:89:1e:
                    8a:d9:52:0a:ae:64:d1:2a:d8:e6:53:ae:b1:b8:4b:
                    bd:7b:6e:5f:a8:ab:07:12:e9:2f:1f:37:3f:e3:bc:
                    b3:3f:ea:f4:33:d0:9d:30:6a:fc:2e:e3:2c:43:ed:
                    5c:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:3C:51:B5:7C:1C:7B:80:03:8C:F8:B9:87:F8:18:6A:84:37:46:7A
            X509v3 Authority Key Identifier:
                keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/YTxRtXwce4ADjPi5h_gYaoQ3Rno.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.104.151.0/24

    Signature Algorithm: sha256WithRSAEncryption
         22:9a:05:a2:95:78:0b:ed:3d:9a:9e:a6:6a:45:7a:ff:85:db:
         33:ee:1d:a2:45:77:0a:91:ee:55:f0:f0:d2:b6:cf:59:14:38:
         1b:cf:ca:c2:78:8e:58:50:26:8b:50:b5:01:61:4a:b1:ab:c1:
         4f:2b:79:3f:da:f3:45:ee:df:a3:76:06:1d:2a:0d:81:d9:f4:
         18:e8:cc:49:17:c4:93:91:0f:fc:85:9f:97:f1:f2:ec:42:08:
         df:de:6e:bd:ab:b8:6a:c5:20:ff:5b:02:6b:38:f7:3c:1c:a8:
         ec:49:09:97:d5:66:fb:67:8d:15:21:7f:ed:dc:08:8c:41:c1:
         79:6d:8e:ad:88:7a:f7:70:89:aa:31:6b:5d:ff:06:5c:e8:62:
         00:05:ff:07:f1:a6:81:97:6a:7e:e2:0e:eb:2c:f7:19:8f:41:
         32:d0:0a:13:2e:d5:a2:0f:c3:97:d1:d7:3f:c3:1d:76:0b:b2:
         98:de:89:4a:b9:43:97:16:30:7b:9e:2a:8c:ab:a2:4c:bc:0d:
         75:c2:11:85:32:2e:ce:60:99:8a:0a:36:81:ae:d5:a3:21:6a:
         91:6e:df:8f:4e:fc:77:60:48:ca:5a:a9:b9:04:93:df:2a:0c:
         e0:5b:2a:dc:9e:96:6a:94:40:09:34:7a:51:3f:f3:3b:cb:28:
         fb:f7:2d:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:02 2024 by rpki-client on console-ams.rpki-client.org