Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/jSI2yKxH-9j0gS2eEjOv208gGHs.roa
File:                     jSI2yKxH-9j0gS2eEjOv208gGHs.roa (raw, json)
Hash identifier:          XOFuEyikFWbgjI+/1yuYMMRqpTqtphr5xipuqra1dJg=
Subject key identifier:   8D:22:36:C8:AC:47:FB:D8:F4:81:2D:9E:12:33:AF:DB:4F:20:18:7B
Certificate issuer:       /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial:       0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jSI2yKxH-9j0gS2eEjOv208gGHs.roa
Signing time:             Thu 15 Sep 2022 02:48:04 +0000
ROA not before:           Thu 15 Sep 2022 02:48:04 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     3462
IP address blocks:        210.65.0.0/16 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3446 (0xd76)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
        Validity
            Not Before: Sep 15 02:48:04 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=8D2236C8AC47FBD8F4812D9E1233AFDB4F20187B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ad:59:8d:f2:93:3a:9d:ab:7e:14:76:66:36:db:
                    63:ec:9d:56:fa:8d:ff:65:db:bc:72:34:fe:d8:cf:
                    8a:50:57:f5:18:29:2e:f8:f1:2d:c3:b6:a2:23:ca:
                    6a:2a:a0:2c:89:6a:3f:fa:94:ef:4d:e1:b7:a5:97:
                    d9:9c:c9:27:53:3c:69:a2:32:04:52:4f:2f:16:1f:
                    75:18:1d:8a:f7:de:1b:3b:4b:2d:b0:02:7f:c8:bf:
                    1d:74:dd:a3:ae:3f:ed:d2:e5:ee:c4:8b:d3:8f:48:
                    f7:6d:6d:d1:fc:33:33:95:83:22:58:f5:b8:1a:eb:
                    51:05:0a:f7:bd:60:62:e7:f8:1a:f0:24:0c:ab:e9:
                    11:30:39:d2:a1:5d:40:5d:7c:15:86:e8:e6:68:92:
                    c5:1e:a2:6e:83:51:38:00:22:a9:bd:e6:c0:aa:a8:
                    a9:c0:c7:09:e5:74:86:8a:84:36:33:0c:9e:c5:c5:
                    6a:7d:69:b7:8d:7b:90:59:29:9e:69:35:9f:e5:86:
                    16:28:20:13:22:03:f3:20:d5:15:19:8e:9a:4d:3f:
                    7a:1d:4d:31:17:98:ba:34:4a:9f:67:1f:bb:e0:a6:
                    09:98:ec:87:fe:2a:8b:f4:ea:8b:8b:7a:d4:f4:16:
                    5a:8d:b2:5c:62:03:8e:bd:3b:13:45:ce:11:14:d1:
                    f2:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:22:36:C8:AC:47:FB:D8:F4:81:2D:9E:12:33:AF:DB:4F:20:18:7B
            X509v3 Authority Key Identifier:
                keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/jSI2yKxH-9j0gS2eEjOv208gGHs.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.65.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         5c:00:6a:30:c7:5c:36:19:f4:e0:92:fb:62:5a:28:2a:6d:4d:
         e4:cd:3f:10:fe:7e:72:ef:2a:ba:ee:01:49:55:6b:04:92:f9:
         3a:62:29:79:e7:35:0b:21:37:3a:5a:20:cf:a8:e3:b6:fa:86:
         e7:3e:35:11:2a:63:99:c4:99:40:61:d3:af:df:24:3e:e0:87:
         31:08:46:3d:35:15:ca:6d:1a:3d:ef:44:10:94:3f:db:b4:be:
         e4:97:33:58:c4:47:45:70:08:92:6a:62:67:57:e9:ae:b0:fe:
         4f:5a:e5:cb:8a:de:c1:e4:55:85:6a:95:0d:b4:7b:e6:71:bc:
         1c:8b:32:57:f3:1d:77:ce:a3:6b:1b:24:11:28:53:33:c1:16:
         5c:d6:d3:7f:e3:55:c3:d6:57:da:72:28:8c:57:1c:b1:e3:75:
         4d:1a:cf:dc:cf:82:ef:a3:a7:e5:d1:36:9f:38:63:17:87:0f:
         4f:f6:68:45:26:05:55:06:f5:c9:60:2b:d6:b0:e4:0f:ab:3c:
         de:78:cf:75:7c:67:6a:8c:d8:6f:6b:e2:ec:65:ea:74:57:0d:
         60:36:1f:36:db:42:37:9c:5b:5a:c2:3e:1f:29:28:71:6c:e5:
         39:13:45:a9:1f:86:fb:48:0e:0c:64:37:08:97:bb:e7:5b:5b:
         0e:0a:24:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org