Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/hm01l-vd_0uwIgBibvT9HVBlDWs.roa
File:                     hm01l-vd_0uwIgBibvT9HVBlDWs.roa (raw, json)
Hash identifier:          C8sQnTNZBsADZv/I63R7EFGYb18JF5aslT4udXuNUSs=
Subject key identifier:   86:6D:35:97:EB:DD:FF:4B:B0:22:00:62:6E:F4:FD:1D:50:65:0D:6B
Certificate issuer:       /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial:       0BEC
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hm01l-vd_0uwIgBibvT9HVBlDWs.roa
Signing time:             Wed 29 Sep 2021 02:50:40 +0000
ROA not before:           Wed 29 Sep 2021 02:50:40 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     36040
IP address blocks:        2001:b032:c0ff:1::/64 maxlen: 64

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3052 (0xbec)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
        Validity
            Not Before: Sep 29 02:50:40 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=866D3597EBDDFF4BB02200626EF4FD1D50650D6B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:e0:db:be:be:a3:4a:26:e0:a3:2b:9c:dc:f0:
                    6f:24:a2:31:29:47:1b:e3:8f:d4:fe:e8:74:a5:58:
                    f5:79:85:42:be:30:7c:4f:a6:18:41:80:7a:61:44:
                    f5:f1:a6:79:8b:3b:99:3e:e9:fc:3b:e4:ac:a5:65:
                    76:2b:dc:57:9a:6d:69:6c:45:cf:bc:68:72:df:9a:
                    85:38:82:08:b6:3f:64:f8:9f:be:4c:64:70:4b:ff:
                    89:83:d9:b4:26:c8:1d:d9:75:c8:38:0f:52:34:71:
                    b0:d7:8e:44:fc:0c:ca:4a:1b:2f:2b:63:26:7d:1f:
                    c4:2d:3d:14:9c:29:10:e7:0f:d4:50:5e:2d:b3:17:
                    3f:1c:a0:4f:66:de:25:86:04:34:e2:01:c4:38:26:
                    80:78:ad:4e:c9:06:3a:38:42:19:7f:02:d2:9a:80:
                    55:ee:5a:f1:78:50:d7:16:b5:1f:36:5b:ed:57:af:
                    ce:31:c5:76:6c:38:5e:1c:d0:f3:19:5f:63:a7:ea:
                    52:b5:be:4f:ad:a3:7f:90:33:0f:54:a1:af:d6:a6:
                    c2:f7:74:53:1c:eb:3c:ed:b2:b4:f3:9f:6d:f6:60:
                    7f:a1:b1:97:64:b9:51:70:ae:7a:d9:3d:19:8d:be:
                    43:8f:fa:95:ad:e1:9f:6f:8f:72:3c:6e:7d:49:3a:
                    80:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                86:6D:35:97:EB:DD:FF:4B:B0:22:00:62:6E:F4:FD:1D:50:65:0D:6B
            X509v3 Authority Key Identifier:
                keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hm01l-vd_0uwIgBibvT9HVBlDWs.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2001:b032:c0ff:1::/64

    Signature Algorithm: sha256WithRSAEncryption
         c1:da:a2:79:2b:31:a1:fd:f1:8f:bc:63:ac:35:5b:7d:e8:f0:
         88:e1:4a:e8:d4:f1:e6:72:50:22:a7:dd:4f:ec:ae:e3:21:e5:
         e9:11:d4:91:e2:9a:74:a1:23:37:17:c6:ef:3e:fe:58:b9:db:
         36:63:32:75:dd:ef:36:8a:1d:b7:61:69:a9:c7:b4:da:00:24:
         9c:ca:63:72:45:0c:76:0e:20:0b:14:77:77:64:08:4f:af:3c:
         c2:91:61:47:e0:56:c5:87:eb:b1:aa:61:a3:23:a5:c2:76:6b:
         ad:9c:b9:2d:00:a2:89:90:0d:56:87:87:13:c5:32:ae:f6:60:
         2a:f2:12:8b:73:21:47:34:52:c8:e0:b0:78:be:77:4d:0d:e6:
         fe:36:75:8c:e2:aa:2a:47:6b:3a:ea:a9:6b:ad:b5:42:dd:ee:
         03:d9:5c:a8:71:b1:ac:a1:4e:8e:a2:89:3b:24:9c:67:a9:90:
         7e:45:de:38:53:be:47:a1:39:34:4a:b1:2b:0d:6e:41:f2:83:
         3f:6f:ee:04:3f:54:c6:7d:0c:46:5c:b3:e2:a8:d9:59:62:dd:
         c1:e1:e4:9e:bf:47:c9:2a:b9:29:4a:73:d4:2a:57:08:c4:ac:
         f9:74:97:3b:63:1c:db:c0:7c:69:9e:2e:c7:a4:3a:58:d0:db:
         61:7a:99:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org