Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Hu0DKhsDx9XMkumF6XlRoC1MGDI.roa
File:                     Hu0DKhsDx9XMkumF6XlRoC1MGDI.roa (raw, json)
Hash identifier:          EbsrwBvaVuUKhGQoqg++LYi3ujoq9OsO0/boh05x5aE=
Subject key identifier:   1E:ED:03:2A:1B:03:C7:D5:CC:92:E9:85:E9:79:51:A0:2D:4C:18:32
Certificate issuer:       /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial:       0DB9
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Hu0DKhsDx9XMkumF6XlRoC1MGDI.roa
Signing time:             Thu 22 Dec 2022 09:05:45 +0000
ROA not before:           Thu 22 Dec 2022 09:05:45 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     7500
IP address blocks:        202.39.32.0/28 maxlen: 28

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3513 (0xdb9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
        Validity
            Not Before: Dec 22 09:05:45 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=1EED032A1B03C7D5CC92E985E97951A02D4C1832
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:c9:2a:61:9f:3b:11:10:00:38:5a:1e:6e:16:
                    32:93:e8:73:1b:6e:85:83:a4:10:e0:80:65:80:d9:
                    32:4d:ac:25:6b:65:b0:98:33:7a:57:10:c8:41:07:
                    bc:28:e5:ae:14:a8:1e:fd:24:d4:f4:4e:5c:37:61:
                    bf:02:d0:e8:7c:6c:ac:b4:6d:b5:fe:90:83:71:1b:
                    6a:a2:8d:5d:38:02:8a:12:de:4c:f8:24:93:f3:93:
                    df:66:ba:b8:e2:ff:e5:8f:82:dd:ba:a6:52:8f:cb:
                    60:84:98:50:8b:3c:b8:da:20:82:88:c3:d5:88:42:
                    8e:26:df:05:70:8a:c7:05:55:e6:53:c8:6a:0d:50:
                    22:a4:19:ba:e4:b0:3a:22:d4:45:09:a0:83:66:b2:
                    97:19:d2:37:eb:f9:0b:1a:f1:28:5e:a0:a8:e9:bb:
                    1d:01:23:b0:52:b6:2b:81:ce:b1:27:10:56:8f:a2:
                    47:12:5d:1e:94:06:9b:8d:ea:76:0c:df:da:3c:62:
                    66:82:ad:a1:04:20:ba:3a:83:be:47:ea:cf:d4:53:
                    f7:ed:4c:47:e9:6e:83:24:03:ce:54:e2:10:49:fa:
                    59:13:46:ba:b5:a5:39:67:9a:62:2c:6d:a3:69:9b:
                    15:81:1b:f7:e2:63:76:3c:4f:98:a2:6c:1e:1c:39:
                    22:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:ED:03:2A:1B:03:C7:D5:CC:92:E9:85:E9:79:51:A0:2D:4C:18:32
            X509v3 Authority Key Identifier:
                keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Hu0DKhsDx9XMkumF6XlRoC1MGDI.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.39.32.0/28

    Signature Algorithm: sha256WithRSAEncryption
         64:6c:d3:01:ff:1a:32:c7:bf:b9:da:91:82:e3:ee:0f:ce:23:
         2a:6c:c7:ed:7f:6b:0c:54:68:3c:e4:a4:e0:e4:61:1b:e3:74:
         dc:9e:22:1a:e8:16:51:61:a3:91:04:d7:f4:5a:34:45:fa:f8:
         ab:2b:b9:f1:6c:5f:b4:9a:7b:62:1a:4a:c6:f1:ba:df:f9:22:
         e0:cb:40:17:e2:55:a7:45:1a:8d:21:a6:2c:2a:10:24:c7:a6:
         8b:89:6f:93:02:0b:b1:f7:f9:dc:f0:07:92:29:f8:62:dc:66:
         e5:11:56:a2:5c:d8:69:fe:70:61:36:c5:48:d6:dc:43:d2:d6:
         f9:0c:26:5e:42:b6:f6:06:70:d4:e6:8f:cc:b3:6a:76:98:9e:
         c3:ea:ca:7f:07:c4:6c:fe:b0:43:b3:6a:a6:c0:2a:0a:30:8b:
         f1:33:0c:c8:d3:00:29:f0:f3:9e:9e:b3:92:cd:c2:43:85:1e:
         c4:c2:d8:18:8b:f5:e2:cf:49:d6:3e:8d:c4:03:3d:8e:1c:66:
         82:db:04:03:33:d9:57:81:db:29:2e:c0:a3:f0:30:4f:89:10:
         d1:5a:65:10:ed:ad:87:95:7a:42:a8:b8:51:0e:3d:88:c4:9d:
         30:d7:4b:fc:20:d6:a7:e7:90:d6:20:e2:f5:22:d7:c2:99:e7:
         f8:01:d3:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org