Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/HMY2pPsuvFXErMFKBiuTLlMiIuY.roa
File:                     HMY2pPsuvFXErMFKBiuTLlMiIuY.roa (raw, json)
Hash identifier:          LtSvgnyEqoNtc29APp+M+ybEvveu/6kUh4q4NbdWAlI=
Subject key identifier:   1C:C6:36:A4:FB:2E:BC:55:C4:AC:C1:4A:06:2B:93:2E:53:22:22:E6
Certificate issuer:       /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial:       0C29
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HMY2pPsuvFXErMFKBiuTLlMiIuY.roa
Signing time:             Wed 29 Sep 2021 02:50:57 +0000
ROA not before:           Wed 29 Sep 2021 02:50:57 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     3462
IP address blocks:        218.164.0.0/15 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3113 (0xc29)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
        Validity
            Not Before: Sep 29 02:50:57 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=1CC636A4FB2EBC55C4ACC14A062B932E532222E6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:91:26:0b:0b:de:68:72:5a:bb:58:9e:5d:88:
                    97:bd:4e:6a:1f:b4:40:c7:78:f5:7e:58:79:5a:49:
                    d4:83:81:6d:3d:c8:e9:0a:23:55:3a:2e:cc:4c:c4:
                    84:19:e1:76:ef:42:f6:fe:5f:94:14:36:3a:18:43:
                    5c:08:c0:fe:36:17:4a:a1:e9:6f:3a:bf:04:dd:66:
                    60:7c:95:b2:1a:f9:1a:c0:42:6b:89:08:08:de:f5:
                    fa:c1:25:23:70:87:be:97:eb:6e:db:77:75:48:99:
                    41:32:4b:dc:18:98:55:f6:1d:c8:3a:a7:e0:4b:14:
                    20:ba:81:9d:d9:94:3e:2b:9a:fd:22:ef:4e:80:3b:
                    f8:b5:11:24:b7:f7:f3:b0:74:57:b4:ed:f7:9d:43:
                    a4:fc:fe:19:c1:72:92:14:bb:85:ff:19:0d:a8:15:
                    ee:6b:66:32:75:8c:59:67:64:22:87:d4:8c:bb:62:
                    ba:fa:1d:b4:58:40:c6:1f:e6:c6:93:27:3f:1e:d0:
                    02:7b:5c:0e:14:93:66:23:b0:1b:be:5a:bb:83:bc:
                    f0:a6:bc:1f:76:8d:61:45:e7:68:14:ee:4e:8d:dd:
                    60:4f:3f:cd:51:93:f0:60:80:1f:d6:88:74:00:16:
                    ee:49:83:14:a2:8d:a4:6c:f5:19:45:f9:4e:c2:aa:
                    9a:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1C:C6:36:A4:FB:2E:BC:55:C4:AC:C1:4A:06:2B:93:2E:53:22:22:E6
            X509v3 Authority Key Identifier:
                keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HMY2pPsuvFXErMFKBiuTLlMiIuY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  218.164.0.0/15

    Signature Algorithm: sha256WithRSAEncryption
         a3:2b:11:a1:8d:bf:98:d9:74:40:56:4d:ba:f7:63:5c:f7:5a:
         c2:78:e8:0a:e0:e0:17:18:e7:8c:54:29:d2:39:85:67:5b:32:
         7f:af:a9:f0:fe:e5:a1:a3:fd:09:7d:da:4c:d3:22:33:bc:47:
         fa:82:4c:56:9b:e3:a0:a5:c0:ae:87:1a:70:c3:8d:69:ff:65:
         70:95:5e:a8:c8:16:1e:89:cc:46:22:ab:77:77:70:37:12:e2:
         b0:80:c4:29:63:0f:7e:ac:3a:8d:1a:00:8e:5f:64:7b:d2:81:
         bf:bd:9e:98:4b:e7:e6:b7:2b:bc:62:84:48:d7:99:9d:24:32:
         38:94:45:92:d0:d7:4c:c1:e0:f8:f1:b2:69:d1:dc:f9:d6:bf:
         84:b8:33:d4:6a:0a:0f:e3:72:72:1a:41:0c:21:b9:44:ee:cd:
         5e:70:33:fa:bb:58:40:7a:d5:d1:93:0a:01:44:06:e0:5e:4d:
         d3:f6:4a:d6:07:85:8a:48:a2:ba:9c:71:3f:55:c6:a0:d4:ab:
         ee:14:01:26:c3:df:23:d2:a8:89:4b:47:d3:39:5a:80:10:40:
         34:d3:7d:32:3e:4a:ca:cc:62:ac:ea:ed:64:cd:df:9a:54:01:
         9d:1b:a0:98:a6:0a:f8:f0:c9:3c:4a:50:11:25:5c:a6:a9:5d:
         e2:7f:bd:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:08 2024 by rpki-client on console-ams.rpki-client.org