Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9SYFtiekJ7faoZtRQGHzV8KYWWg.roa
File:                     9SYFtiekJ7faoZtRQGHzV8KYWWg.roa (raw, json)
Hash identifier:          HFw06s3xSrdJL37Ct2cXpu+QCK/D3K4MKoxYD7fGdc4=
Subject key identifier:   F5:26:05:B6:27:A4:27:B7:DA:A1:9B:51:40:61:F3:57:C2:98:59:68
Certificate issuer:       /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial:       0E10
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9SYFtiekJ7faoZtRQGHzV8KYWWg.roa
Signing time:             Thu 29 Dec 2022 09:32:11 +0000
ROA not before:           Thu 29 Dec 2022 09:32:11 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     131627
IP address blocks:        150.117.128.0/19 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3600 (0xe10)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
        Validity
            Not Before: Dec 29 09:32:11 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=F52605B627A427B7DAA19B514061F357C2985968
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:70:40:d9:6c:26:6b:84:75:74:58:98:d0:15:
                    07:71:9e:39:07:15:76:31:5d:11:65:87:e7:bf:9a:
                    fd:d8:17:f6:6e:01:3a:7e:01:0f:49:31:a6:e6:0e:
                    67:74:d4:0c:e0:41:0b:cb:c4:ea:bd:39:2c:61:ae:
                    2b:6f:c6:54:c3:52:f3:59:f7:54:b4:c4:4c:1e:9b:
                    e4:8d:8d:14:0b:13:bc:aa:3d:35:30:e5:4d:c3:05:
                    59:a9:f2:f3:96:08:59:94:23:e0:ea:c2:9b:33:80:
                    1e:7c:f9:bc:3b:db:61:2d:b0:46:eb:d3:b5:91:f1:
                    c3:75:8b:4a:2d:dc:12:e1:07:7b:c2:79:44:15:41:
                    7a:87:15:44:57:c2:a2:5f:e3:bc:88:64:31:b5:a1:
                    a3:eb:fc:d7:7f:78:b7:8e:80:ed:ba:12:3f:d0:86:
                    d6:3a:9b:2c:89:fd:27:bd:c6:21:7e:23:27:14:c7:
                    dc:85:f0:66:e2:ec:f2:70:81:f3:1f:86:2d:31:f7:
                    e4:ec:a4:f7:53:0a:dd:39:4c:70:8c:10:8f:71:2a:
                    57:37:a6:74:b5:40:93:fa:13:3b:04:f3:ce:0e:2a:
                    14:08:4d:f6:77:6c:b8:22:c5:df:21:1b:5c:dc:4b:
                    f8:d7:87:f6:84:e2:26:fa:db:ca:34:bb:32:de:b7:
                    e4:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:26:05:B6:27:A4:27:B7:DA:A1:9B:51:40:61:F3:57:C2:98:59:68
            X509v3 Authority Key Identifier:
                keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/9SYFtiekJ7faoZtRQGHzV8KYWWg.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  150.117.128.0/19

    Signature Algorithm: sha256WithRSAEncryption
         50:4a:89:53:55:68:3e:2f:71:fb:b5:44:1c:92:73:68:e9:1e:
         00:d8:3b:e4:96:d4:82:4e:ad:60:b6:aa:db:e2:99:4c:a0:21:
         23:e6:54:21:ce:2b:49:01:87:f1:a4:96:5f:91:a3:d9:43:32:
         30:fd:03:9e:78:7f:2d:89:1e:2b:10:d2:84:9c:5b:6d:10:5d:
         ca:f6:38:98:3d:b9:fe:d7:05:7f:ef:c6:42:df:c2:86:6e:f9:
         2c:04:56:f7:40:97:2f:3c:90:2b:11:eb:a4:9a:57:c4:40:ce:
         e4:8f:2b:0f:73:89:60:11:2a:16:1e:19:38:75:4d:a6:bf:88:
         25:e5:3d:11:1d:4c:20:46:a0:9e:e2:51:7d:74:8c:e4:20:46:
         1e:7e:fe:29:d1:ef:a2:ab:b8:24:d9:84:3e:43:7b:81:ed:74:
         74:0b:55:0c:df:75:7a:bd:a7:cc:61:c5:f5:54:b1:df:bf:72:
         dc:34:a9:f4:c1:34:4e:2f:0b:f5:f6:0a:aa:89:d7:9f:28:b8:
         c9:f8:f5:cf:6c:aa:d0:0e:78:5e:d1:89:f8:55:0c:46:e5:51:
         22:f4:c4:4f:6a:17:df:8f:45:21:b4:ac:c2:f7:c1:f9:69:f2:
         65:a4:c0:16:7e:45:05:e7:a4:2d:51:2e:5e:ab:2a:ab:9f:a1:
         68:00:e6:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:33 2024 by rpki-client on console-fra.rpki-client.org