Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/OPOy9aW3oL0nf4-xW5PwV9qv9WE.roa
File:                     OPOy9aW3oL0nf4-xW5PwV9qv9WE.roa (raw, json)
Hash identifier:          VRHbcjEFMlUa1523jSA7+QIYXcwj7eGpU8ZJzXkhp2k=
Subject key identifier:   38:F3:B2:F5:A5:B7:A0:BD:27:7F:8F:B1:5B:93:F0:57:DA:AF:F5:61
Certificate issuer:       /CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
Certificate serial:       0775
Authority key identifier: 6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/OPOy9aW3oL0nf4-xW5PwV9qv9WE.roa
Signing time:             Tue 29 Sep 2020 10:00:14 +0000
ROA not before:           Tue 29 Sep 2020 10:00:14 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     4780
IP address blocks:        61.58.16.0/20 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1909 (0x775)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6FDEA34707152290C1D2606FFBFC69B927D40A5B
        Validity
            Not Before: Sep 29 10:00:14 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=38F3B2F5A5B7A0BD277F8FB15B93F057DAAFF561
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:63:63:f0:a4:1c:27:29:91:87:d5:d9:4a:7b:
                    e3:8c:89:df:34:7c:4d:e5:f6:92:be:a2:73:f0:e3:
                    5e:8f:d5:05:85:85:aa:58:dd:12:92:7c:59:c8:e9:
                    fb:a5:e8:91:9f:5c:67:d1:73:48:ac:01:b8:11:31:
                    c2:f4:35:d9:b1:2d:a4:3c:7c:85:87:d7:93:d3:89:
                    60:c0:ac:d6:37:4b:15:85:79:31:aa:39:4a:d8:7c:
                    99:3c:8b:7b:03:d5:6f:b5:c3:94:f8:10:24:dc:90:
                    36:9b:40:49:de:f0:19:cc:3a:9e:ce:55:b3:2e:4e:
                    aa:b6:f2:73:52:6e:86:1b:32:af:7e:94:c4:a1:fa:
                    2b:95:69:42:54:84:e3:de:c2:da:32:15:cb:71:f9:
                    ba:bc:78:ca:be:0b:bc:93:cc:f7:29:40:b6:91:93:
                    42:34:b0:81:0b:70:40:d9:dc:90:f5:61:28:a5:67:
                    9c:e5:83:f7:19:30:5d:9f:00:90:ac:49:c4:e5:96:
                    97:92:5c:7b:e3:49:5a:7b:23:a6:ef:e6:35:4e:e5:
                    6a:bc:93:47:15:aa:42:52:17:07:75:e5:73:40:82:
                    4a:fc:26:18:d5:cd:6d:42:6e:e3:cf:93:dd:99:87:
                    a6:86:13:2d:33:e0:0d:aa:f4:57:1b:bd:cd:59:7b:
                    15:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                38:F3:B2:F5:A5:B7:A0:BD:27:7F:8F:B1:5B:93:F0:57:DA:AF:F5:61
            X509v3 Authority Key Identifier:
                keyid:6F:DE:A3:47:07:15:22:90:C1:D2:60:6F:FB:FC:69:B9:27:D4:0A:5B

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/b96jRwcVIpDB0mBv-_xpuSfUCls.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/b96jRwcVIpDB0mBv-_xpuSfUCls.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CYCCATV/OPOy9aW3oL0nf4-xW5PwV9qv9WE.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  61.58.16.0/20

    Signature Algorithm: sha256WithRSAEncryption
         44:1e:0c:ff:4b:52:9a:8f:5a:92:22:60:87:a3:d1:ad:ec:15:
         25:45:4f:51:9f:5d:5c:e5:0c:01:d7:96:6f:8c:13:1e:ce:47:
         73:38:c3:36:3e:8a:1e:05:8c:72:7c:81:3c:81:26:c3:3c:7a:
         7f:94:01:4a:37:ce:56:5c:7f:27:fe:ef:fc:24:05:ae:ff:74:
         f8:a5:dc:03:f7:17:2e:8d:30:3a:69:12:16:5c:af:a5:b6:f5:
         91:d9:fe:08:c3:dd:4b:8a:f5:69:bb:e5:52:36:27:73:28:9c:
         e2:1b:61:6f:4d:71:7e:f4:88:00:9b:8a:57:0f:4e:1d:f9:c7:
         19:d4:11:c7:e6:4c:ca:9e:f0:81:1d:86:28:c8:ed:93:bd:75:
         53:b6:c4:3e:da:f4:a4:6f:32:dd:db:f5:b6:45:68:b4:af:c8:
         f7:0c:b9:99:f3:c8:ff:ec:c1:c1:c5:71:8d:ea:40:4d:83:d0:
         79:ad:6e:bb:d7:12:61:00:3f:6d:4b:80:ee:fe:14:81:78:7e:
         d7:ab:2c:10:64:a2:c5:19:f7:14:ed:fb:a2:f3:6b:10:d7:e7:
         d0:b5:0e:c3:2f:bf:e9:cf:77:ed:69:82:17:3e:7b:31:59:1e:
         8b:31:ab:56:73:7d:50:9a:7d:21:07:94:13:b9:51:01:ff:45:
         c1:95:9a:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org