Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fiC3cYlJ684pelSa2NNJb0jQcjQ.roa
File:                     fiC3cYlJ684pelSa2NNJb0jQcjQ.roa (raw, json)
Hash identifier:          zfJguvJs0M3JXoD6v6gHL3d1X6h8dLUIH/cF3gOpwnM=
Subject key identifier:   7E:20:B7:71:89:49:EB:CE:29:7A:54:9A:D8:D3:49:6F:48:D0:72:34
Certificate issuer:       /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
Certificate serial:       091A
Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fiC3cYlJ684pelSa2NNJb0jQcjQ.roa
Signing time:             Thu 22 Oct 2020 05:15:49 +0000
ROA not before:           Thu 22 Oct 2020 05:15:49 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     131636
IP address blocks:        150.116.55.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2330 (0x91a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76
        Validity
            Not Before: Oct 22 05:15:49 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=7E20B7718949EBCE297A549AD8D3496F48D07234
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:0b:0f:df:d7:75:f2:4d:40:e5:ff:59:bb:68:
                    b5:fd:37:65:7e:28:c9:be:03:27:1b:28:aa:22:97:
                    f9:56:ab:61:a5:e2:bb:35:e6:82:06:a0:3c:33:3a:
                    df:dc:4d:75:84:87:23:42:b6:f6:6d:bf:54:22:20:
                    78:e4:33:54:4b:5d:f9:1a:0e:35:4c:e6:51:59:48:
                    9e:69:4e:03:b8:30:9d:fd:37:f7:f6:57:07:4e:c4:
                    c6:ea:64:b3:6d:6e:22:8e:e0:52:4b:fc:4e:8c:b8:
                    68:3e:f7:da:3f:a9:05:a1:45:39:26:31:9e:72:17:
                    60:b3:58:aa:83:97:bc:52:3c:1d:0d:17:79:80:8a:
                    7c:ee:43:b5:3d:b6:06:48:83:27:c5:17:12:40:7d:
                    29:8f:eb:cc:0f:58:03:f2:95:c3:5f:82:7b:20:92:
                    25:24:e0:0d:cd:91:b5:79:43:63:80:3e:7e:aa:21:
                    53:68:8b:26:ac:c6:6f:d0:40:c7:90:0c:96:09:1d:
                    aa:60:d7:6e:7d:ec:e9:ba:fd:97:fc:48:e3:9c:94:
                    d4:2b:13:d1:d4:89:fa:a6:aa:7f:e5:76:b5:8a:cb:
                    00:9d:12:56:f9:68:36:91:c2:2c:1b:e3:65:9c:f6:
                    53:5d:ea:4b:7b:be:20:c9:c2:97:bf:bd:41:25:c1:
                    b3:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                7E:20:B7:71:89:49:EB:CE:29:7A:54:9A:D8:D3:49:6F:48:D0:72:34
            X509v3 Authority Key Identifier:
                keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fiC3cYlJ684pelSa2NNJb0jQcjQ.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  150.116.55.0/24

    Signature Algorithm: sha256WithRSAEncryption
         60:de:ec:bc:e0:b5:c6:c3:05:60:2e:c2:81:52:f7:73:57:81:
         49:7d:be:a2:3f:3d:9a:c4:2c:c8:e7:34:c0:1d:5c:b7:38:d4:
         c2:39:14:19:d6:5d:fe:bc:56:ff:cc:6f:53:46:5d:4f:6a:f8:
         13:5c:2d:63:e7:f4:64:a1:f0:f5:64:5d:15:29:00:60:01:73:
         9d:39:e0:bf:82:74:25:4d:34:d0:3e:56:e9:31:83:8e:39:cd:
         b7:be:72:6d:9e:08:c8:6f:b0:98:a4:c2:41:bb:e4:ea:61:dd:
         1a:61:8b:8f:5f:4b:d5:bd:67:61:fb:72:ba:40:86:10:85:e7:
         75:a4:a7:f0:11:00:3f:ea:ce:8f:e1:c4:af:99:01:5a:43:c0:
         bc:70:c3:88:54:6f:5b:f5:97:3d:1e:65:86:23:97:46:d2:39:
         08:2f:a4:83:57:60:49:a2:10:e1:f3:54:77:5f:5e:9c:6c:94:
         f4:37:b6:7d:85:f8:de:db:87:20:0b:64:ad:52:7a:99:36:d8:
         16:da:e7:c9:13:c1:8f:04:29:a8:63:30:18:ca:a6:2a:d4:b0:
         6e:41:08:9a:7e:88:9f:1d:28:88:6b:5f:87:88:92:24:41:e5:
         07:70:4c:c4:68:79:99:9f:bf:97:b1:8b:5b:62:e5:77:3a:36:
         d4:24:d1:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org