Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/COMPAL/PyM_55iwylV6fmOekIw5yJZuKeM.roa
File:                     PyM_55iwylV6fmOekIw5yJZuKeM.roa (raw, json)
Hash identifier:          PyrYp1UVGjae3tHO0uTIdJj8pJ+UxD95NXvZ3OWgsp8=
Subject key identifier:   3F:23:3F:E7:98:B0:CA:55:7A:7E:63:9E:90:8C:39:C8:96:6E:29:E3
Certificate issuer:       /CN=791128256BB12B79908180ABC59F2CF8629889EF
Certificate serial:       09ED
Authority key identifier: 79:11:28:25:6B:B1:2B:79:90:81:80:AB:C5:9F:2C:F8:62:98:89:EF
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/PyM_55iwylV6fmOekIw5yJZuKeM.roa
Signing time:             Thu 15 Sep 2022 02:50:07 +0000
ROA not before:           Thu 15 Sep 2022 02:50:07 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     131680
IP address blocks:        103.122.216.0/22 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2541 (0x9ed)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=791128256BB12B79908180ABC59F2CF8629889EF
        Validity
            Not Before: Sep 15 02:50:07 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=3F233FE798B0CA557A7E639E908C39C8966E29E3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:e9:66:bc:1e:e7:d2:85:b0:f6:6f:0f:83:ff:
                    aa:29:6c:32:f7:a7:93:ca:cb:35:0a:00:43:cf:24:
                    1b:96:ad:9b:65:b9:7e:04:be:85:20:6e:17:5b:1c:
                    52:a3:ac:b3:bf:4d:9b:14:61:d0:d9:de:3d:06:8b:
                    62:38:7e:b6:c8:22:0c:ae:40:27:34:9b:04:03:99:
                    56:c6:a0:e6:02:47:19:c0:60:57:33:2d:a8:1d:ff:
                    93:a2:97:c8:93:d2:b5:41:10:cb:f3:9e:8a:97:89:
                    dd:74:84:9e:37:dd:30:cb:3f:ea:66:a2:c8:82:1d:
                    43:91:5e:a4:6d:3e:a1:6f:c7:84:06:31:3f:ac:a7:
                    29:3d:43:f8:dc:fd:50:78:0f:85:e8:0c:9e:89:a6:
                    49:78:bf:5a:11:ac:e9:27:f1:d8:ee:25:06:6f:3c:
                    ab:79:61:a1:e2:e5:75:88:b6:6d:dd:6f:d5:79:e3:
                    67:ad:b4:a1:86:6e:0a:90:fc:59:12:77:87:be:a5:
                    2c:12:e8:ca:6f:d7:15:56:c9:2e:60:d8:4d:8b:51:
                    4b:70:28:92:40:c6:4e:a6:d9:d1:36:e9:5f:92:b5:
                    53:73:f9:10:0c:9b:d3:e5:c4:50:5a:37:d8:2c:32:
                    9f:d4:ce:59:57:8f:d9:32:61:df:d7:d9:2a:04:ad:
                    14:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3F:23:3F:E7:98:B0:CA:55:7A:7E:63:9E:90:8C:39:C8:96:6E:29:E3
            X509v3 Authority Key Identifier:
                keyid:79:11:28:25:6B:B1:2B:79:90:81:80:AB:C5:9F:2C:F8:62:98:89:EF

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/eREoJWuxK3mQgYCrxZ8s-GKYie8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eREoJWuxK3mQgYCrxZ8s-GKYie8.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/COMPAL/PyM_55iwylV6fmOekIw5yJZuKeM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.122.216.0/22

    Signature Algorithm: sha256WithRSAEncryption
         4a:a9:09:08:2e:bb:8c:21:87:6b:76:8b:5e:c6:02:91:37:0d:
         4d:f6:2d:bb:c6:96:7f:d8:d4:45:ce:2c:ae:ae:80:f5:c3:cf:
         ca:79:e2:6b:c4:72:96:45:b3:13:8f:53:e8:cb:36:36:66:e6:
         98:dd:21:14:63:49:6b:25:c8:30:a4:74:65:bc:cf:8c:e2:53:
         7c:2a:53:30:2e:98:92:66:64:34:60:17:d3:fd:83:b6:28:57:
         d0:06:74:0e:23:9c:d7:a8:5b:7c:84:a9:b1:2b:81:a0:3d:a7:
         5b:2a:99:e9:c3:5d:e3:8f:90:32:8d:56:fe:8a:38:b5:6d:ae:
         f6:19:ba:ed:a5:e5:35:33:64:99:c9:1e:ea:e4:ee:b3:95:4a:
         c9:8e:13:40:3e:4c:e0:ae:26:b9:c4:fb:a1:29:8e:e7:7b:0a:
         30:cf:b1:1f:a5:f5:af:d7:0a:8e:53:72:c7:90:e5:cd:af:23:
         ad:e2:dd:97:7e:9e:c7:06:8f:e9:09:6b:d8:ef:c8:7f:56:48:
         46:7a:41:0e:04:8e:7b:80:0e:50:8d:90:9b:72:22:b1:58:d9:
         07:1a:92:a2:18:0e:22:40:6e:61:08:15:77:f7:fa:fc:84:af:
         58:c3:f1:dc:11:cb:c5:30:2f:2f:8d:0b:18:59:29:f4:f7:ee:
         0c:dc:92:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org