Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0UnpFIr0zG9Xq06s-0O4ENEyYog.roa
File:                     0UnpFIr0zG9Xq06s-0O4ENEyYog.roa (raw, json)
Hash identifier:          6GVEsThywIfmebWOqlgRaDPxS7XnNDsEW0pepyLRZSo=
Subject key identifier:   D1:49:E9:14:8A:F4:CC:6F:57:AB:4E:AC:FB:43:B8:10:D1:32:62:88
Certificate issuer:       /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
Certificate serial:       0B2C
Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0UnpFIr0zG9Xq06s-0O4ENEyYog.roa
Signing time:             Thu 15 Sep 2022 02:48:27 +0000
ROA not before:           Thu 15 Sep 2022 02:48:27 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     131660
IP address blocks:        168.95.246.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2860 (0xb2c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A
        Validity
            Not Before: Sep 15 02:48:27 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=D149E9148AF4CC6F57AB4EACFB43B810D1326288
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:08:f8:22:d1:f1:b4:95:01:0a:93:17:7c:74:
                    bd:b2:2f:63:b2:5b:ff:52:21:82:9d:2e:75:df:42:
                    9d:05:d4:31:c0:ff:b6:85:da:ac:18:e7:b4:e7:f3:
                    be:51:52:5b:af:c3:c1:44:05:2d:69:9d:d4:9a:c9:
                    e9:a1:99:42:75:3d:56:8b:df:27:8a:15:99:7f:d3:
                    13:52:69:c0:51:02:fb:75:48:bd:86:c5:10:17:87:
                    90:06:2c:8d:16:f6:07:b5:d0:c7:c5:6e:eb:19:3c:
                    f2:11:74:06:48:43:df:5c:a1:62:14:0a:37:58:3d:
                    58:21:5c:50:b8:cc:43:c7:67:84:10:0f:d5:44:e6:
                    a9:34:9d:76:28:ff:78:06:bc:da:b6:25:d6:e0:ea:
                    4a:6c:9b:1a:d9:f7:5c:be:33:36:f0:46:e3:cd:97:
                    cd:26:5a:02:c1:71:7b:65:a2:cd:01:26:87:58:c3:
                    d9:33:8b:e9:e7:6e:6e:76:81:ea:06:e8:43:ce:65:
                    90:42:5e:23:58:29:79:6b:85:50:8e:2e:6b:db:5d:
                    d0:b5:e1:67:23:bf:da:cf:c8:c1:45:40:5a:d8:4b:
                    9d:f2:2f:82:ba:91:73:8c:99:2a:65:4b:51:5c:9d:
                    59:e8:85:94:0c:a6:bf:5b:2b:4e:ec:6c:3b:ae:6d:
                    aa:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D1:49:E9:14:8A:F4:CC:6F:57:AB:4E:AC:FB:43:B8:10:D1:32:62:88
            X509v3 Authority Key Identifier:
                keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0UnpFIr0zG9Xq06s-0O4ENEyYog.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  168.95.246.0/24

    Signature Algorithm: sha256WithRSAEncryption
         75:df:57:62:04:09:68:01:15:24:75:3c:87:4d:68:aa:0f:9d:
         b3:c6:e4:b3:fc:19:d3:54:bd:d9:5e:24:02:4d:2e:ed:80:0a:
         43:c4:15:92:b1:cc:3e:9e:88:99:7f:ac:bb:68:f0:00:ea:a7:
         29:0e:39:84:71:8e:03:1d:30:30:9f:f2:08:a0:c9:80:54:ad:
         da:69:b3:83:f6:ca:8f:3c:0a:6c:4b:03:e2:aa:5f:ce:93:48:
         fb:c3:f1:ad:a5:74:cd:63:4d:d8:7c:05:0e:94:f7:ce:b8:be:
         28:33:41:89:ce:a1:be:d2:c3:ed:53:c1:31:52:ae:2d:df:19:
         cd:b7:92:fc:ef:01:e6:37:9c:dc:61:01:d9:83:b5:17:25:ba:
         e5:bb:34:59:01:30:21:82:a5:de:ef:d6:86:ee:90:86:af:7f:
         fd:d8:2d:56:6a:57:c1:d3:75:94:38:ac:b6:71:fe:33:fd:b3:
         ed:c6:b0:2a:ef:55:2b:51:41:86:90:7e:41:2a:e0:e1:18:fc:
         f3:77:9a:7c:f8:55:43:b6:ac:e7:16:5a:7b:2a:09:b8:a6:8d:
         31:4c:35:2a:71:9b:23:6a:2b:e8:93:bd:1a:7b:41:b1:ce:6d:
         d0:ef:a2:5d:44:35:c8:ff:0c:7b:c7:ef:b4:52:a5:f8:23:ea:
         09:a5:60:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org