Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/tA7U5r2s5z2dxViYDCXdVk85xzw.roa
File:                     tA7U5r2s5z2dxViYDCXdVk85xzw.roa (raw, json)
Hash identifier:          yHlZpOAjMEwQICy114Eg+iYhXeEuHJ0tK7doHsQ9LpM=
Subject key identifier:   B4:0E:D4:E6:BD:AC:E7:3D:9D:C5:58:98:0C:25:DD:56:4F:39:C7:3C
Certificate issuer:       /CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
Certificate serial:       0962
Authority key identifier: A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/tA7U5r2s5z2dxViYDCXdVk85xzw.roa
Signing time:             Wed 29 Sep 2021 02:38:13 +0000
ROA not before:           Wed 29 Sep 2021 02:38:13 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     396982
IP address blocks:        103.123.131.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2402 (0x962)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A6ED14DB12101A125D3112DC4CC5602D30D8B477
        Validity
            Not Before: Sep 29 02:38:13 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=B40ED4E6BDACE73D9DC558980C25DD564F39C73C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:d4:57:92:6d:c8:4f:22:f6:7f:63:1b:e0:61:
                    d4:f4:d7:e2:ea:52:a1:48:0e:49:fd:2b:fa:49:60:
                    2a:0c:90:ce:a7:cc:42:cd:f5:cf:ea:98:e2:28:20:
                    29:fd:77:d9:8b:fc:f0:0d:d8:80:18:b8:89:4e:f6:
                    c0:c0:29:f7:7d:34:45:28:bb:42:d7:4e:c4:d5:fc:
                    3c:c7:08:54:1e:de:f3:a8:f6:69:92:80:c9:f9:aa:
                    e2:e4:3c:21:f2:9f:28:4c:a5:b3:ed:3c:44:cf:1b:
                    04:ef:87:d1:ae:51:b2:27:a7:79:3b:da:79:a7:5e:
                    65:27:c3:15:ef:2c:b8:2d:99:81:22:03:51:70:6a:
                    87:f9:2b:df:5d:57:fc:f7:19:22:b9:87:42:f8:30:
                    54:cf:e6:ed:c7:06:ae:26:21:22:75:ba:fd:30:aa:
                    d3:f9:a8:54:51:91:b7:a2:d5:44:70:0e:2a:3c:17:
                    4d:e9:85:41:d0:3d:b9:bd:fa:1a:66:26:34:b7:73:
                    dc:d9:ff:03:11:12:73:e6:2a:7a:4d:0a:be:e6:78:
                    05:b9:cd:f5:ac:8e:b4:00:1d:e7:7f:49:fb:9c:a8:
                    e0:19:3c:c5:28:89:d5:d4:97:46:86:0d:04:e7:1b:
                    fa:42:77:b5:f6:0a:e2:b3:a5:0b:dd:f3:c8:02:ce:
                    e8:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:0E:D4:E6:BD:AC:E7:3D:9D:C5:58:98:0C:25:DD:56:4F:39:C7:3C
            X509v3 Authority Key Identifier:
                keyid:A6:ED:14:DB:12:10:1A:12:5D:31:12:DC:4C:C5:60:2D:30:D8:B4:77

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/pu0U2xIQGhJdMRLcTMVgLTDYtHc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pu0U2xIQGhJdMRLcTMVgLTDYtHc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DENPAIO/tA7U5r2s5z2dxViYDCXdVk85xzw.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.123.131.0/24

    Signature Algorithm: sha256WithRSAEncryption
         19:cb:41:58:7d:01:0d:4a:29:87:fc:72:b8:42:f8:0b:33:38:
         2f:5e:a9:f1:44:b7:12:c6:5f:33:14:c4:5a:5f:08:7e:9c:61:
         5a:32:01:c3:ff:5f:c2:99:9f:cb:93:16:a2:34:d6:c5:ba:cf:
         3a:bf:0e:b4:61:cb:30:72:d8:36:cd:ba:3f:88:7c:7d:14:4d:
         34:56:35:79:f6:30:c1:17:8c:85:65:59:96:d5:3e:b3:6a:68:
         24:8f:f4:ad:d2:98:d1:1a:e9:6b:ec:4b:6f:19:84:19:af:24:
         32:0a:16:71:08:bc:de:db:9e:06:8d:2b:73:31:25:0a:5c:76:
         af:47:5b:da:6f:d9:b8:ac:e0:c2:33:cb:03:db:f0:e9:ab:91:
         2a:1e:4b:b5:c4:54:91:5b:82:ea:42:9f:80:fe:8f:30:1e:38:
         92:58:a8:64:54:7d:2b:48:05:57:bc:13:fa:9d:f9:c9:26:f3:
         8d:04:23:d8:e3:0e:7f:35:cb:5c:74:84:1d:5e:8c:48:6f:56:
         3d:1b:1a:d5:9c:67:52:02:5f:ae:50:ac:3c:c1:fd:65:56:ba:
         90:bf:68:45:b6:ea:47:bf:ba:af:99:70:a6:3f:dc:5f:92:de:
         73:23:1c:82:18:d3:84:dc:8a:7f:7e:59:8b:f8:67:7e:4c:94:
         8c:b3:a8:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:34 2024 by rpki-client on console-fra.rpki-client.org