Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/iTaUB7KgFy_2lkXPEYuD-VfUClc.roa
File:                     iTaUB7KgFy_2lkXPEYuD-VfUClc.roa (raw, json)
Hash identifier:          O4sirCj6+zZgDe9+wB0P9ntTyiNECYSlqkTiZBLMv9Y=
Subject key identifier:   89:36:94:07:B2:A0:17:2F:F6:96:45:CF:11:8B:83:F9:57:D4:0A:57
Certificate issuer:       /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
Certificate serial:       0AB7
Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/iTaUB7KgFy_2lkXPEYuD-VfUClc.roa
Signing time:             Thu 15 Sep 2022 02:37:44 +0000
ROA not before:           Thu 15 Sep 2022 02:37:44 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     9244
IP address blocks:        61.247.165.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2743 (0xab7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97
        Validity
            Not Before: Sep 15 02:37:44 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=89369407B2A0172FF69645CF118B83F957D40A57
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a6:55:b2:18:f8:85:1b:3e:62:75:df:7a:e6:90:
                    e5:6c:30:19:03:e9:8c:b6:8c:59:0c:8c:71:49:81:
                    f5:aa:5a:90:be:ee:31:8f:db:ab:be:76:73:0e:06:
                    cf:93:e2:27:df:e6:db:b8:c0:93:84:53:2f:97:f6:
                    8a:41:b1:aa:03:b2:b9:0c:ce:a5:1f:c4:17:0f:e9:
                    7b:21:10:5f:5d:d0:07:2f:1e:42:fe:2e:1e:93:f4:
                    16:25:73:aa:ab:d3:31:70:85:59:23:9c:96:1b:de:
                    c1:45:fc:cf:2e:a9:b0:97:5c:af:0a:a4:d1:3d:fc:
                    38:ae:f9:68:e2:8e:a7:63:36:e2:3e:96:71:c7:96:
                    a1:a9:a2:5f:68:c2:9c:0d:6b:4a:c1:66:4c:eb:d2:
                    00:b8:dd:a2:40:60:3f:06:82:8b:f4:5e:43:8e:54:
                    14:3f:40:e5:1a:07:55:55:10:a5:b2:ba:a0:ad:7f:
                    2b:f3:d0:67:8e:ea:b2:6c:8b:26:58:d0:b8:b9:c7:
                    1d:2e:21:6e:21:dd:bf:ab:5a:b8:9b:34:6d:d3:a9:
                    ef:91:90:09:38:fb:cb:65:ac:b7:15:81:8f:6e:3a:
                    63:97:c8:e7:04:28:df:d1:4d:ba:27:90:7e:35:5f:
                    32:23:f3:14:cb:71:03:da:44:9d:cb:66:ac:a5:32:
                    20:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:36:94:07:B2:A0:17:2F:F6:96:45:CF:11:8B:83:F9:57:D4:0A:57
            X509v3 Authority Key Identifier:
                keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/iTaUB7KgFy_2lkXPEYuD-VfUClc.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  61.247.165.0/24

    Signature Algorithm: sha256WithRSAEncryption
         71:dc:49:5f:d0:9e:db:56:fa:74:86:38:ff:9f:7e:5d:33:6b:
         10:39:87:34:cc:ab:73:98:61:83:97:2b:7f:68:89:20:6f:03:
         4d:9c:a4:20:68:cf:53:a3:ee:32:28:d2:17:d1:48:8f:d1:77:
         73:f5:e4:db:a1:74:72:47:49:38:2c:15:4d:09:85:1d:1a:34:
         75:61:b0:90:da:9c:b8:cf:3d:b7:7f:b5:9b:b0:b8:9e:b4:1c:
         4f:4c:84:b3:78:71:45:b9:aa:2d:6c:ab:88:a7:ff:88:60:9d:
         62:2a:35:d0:7c:30:a6:86:3e:a2:f9:c4:aa:43:2d:b4:f7:cf:
         27:c0:42:dc:5e:c6:ef:55:a6:70:96:d0:93:58:f2:91:a7:13:
         09:a4:e3:0e:db:92:87:7c:8b:48:1e:49:95:64:00:6b:7d:0e:
         a8:3d:16:f7:42:5f:43:ff:46:a0:7e:e5:27:72:19:d2:a1:65:
         6e:dc:ab:89:51:49:56:0f:b7:f7:70:63:80:d6:b8:8d:aa:5a:
         7b:0e:ec:6e:ac:0e:dd:1d:13:b4:e9:6e:2a:91:05:38:8b:23:
         1f:b5:99:0b:4b:d8:71:b0:28:58:32:98:01:33:fa:c4:7d:9b:
         c1:1e:82:2c:08:53:d9:7a:69:02:92:2d:98:a3:7c:71:0c:ec:
         f0:0b:1d:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:35 2024 by rpki-client on console-fra.rpki-client.org