Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/5XhzfjcO-jmryQ15ERovTab785I.roa
File:                     5XhzfjcO-jmryQ15ERovTab785I.roa (raw, json)
Hash identifier:          b3n/FurwmIwEMqZSX/u0Tt/Mi3GYfqSMiQxmgwNKT1o=
Subject key identifier:   E5:78:73:7E:37:0E:FA:39:AB:C9:0D:79:11:1A:2F:4D:A6:FB:F3:92
Certificate issuer:       /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial:       0469
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/5XhzfjcO-jmryQ15ERovTab785I.roa
Signing time:             Thu 15 Sep 2022 02:34:59 +0000
ROA not before:           Thu 15 Sep 2022 02:34:59 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     17418
IP address blocks:        103.153.176.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1129 (0x469)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
        Validity
            Not Before: Sep 15 02:34:59 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=E578737E370EFA39ABC90D79111A2F4DA6FBF392
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:61:d8:6f:67:f7:ca:2e:50:94:e9:f1:1c:c2:
                    2e:74:13:a7:f1:05:5d:70:72:79:d0:77:0e:6e:9a:
                    fb:cb:c2:ce:97:90:89:f8:be:97:45:04:81:de:66:
                    e9:70:3a:69:a9:63:99:9d:8d:5a:ff:32:ba:b1:f6:
                    35:73:8a:8d:c3:13:22:df:aa:c5:20:4d:23:8c:e2:
                    06:d4:60:53:9c:b4:f1:7e:75:16:79:65:fe:95:d4:
                    1b:18:ce:47:08:ea:7e:98:cd:79:3e:d7:ec:fe:94:
                    5e:2a:2d:29:33:f2:85:12:10:16:c2:f0:eb:6b:7d:
                    00:f1:21:f6:00:18:7f:b7:58:9d:6e:15:3a:33:0f:
                    06:b1:51:1d:4a:ee:d2:5b:95:9a:49:05:af:2d:7a:
                    63:da:f6:d4:2d:cb:7c:b8:a8:21:2e:fa:b8:69:79:
                    8b:72:5b:4c:fc:a2:a1:7d:a0:f8:c8:e1:26:7c:16:
                    b3:6e:fd:37:30:0d:5b:52:ca:90:02:07:fd:96:89:
                    78:ae:76:2f:ab:00:10:a7:b8:f6:01:61:8e:cb:c7:
                    7b:dd:b7:53:36:fe:31:a8:01:15:49:47:a4:c8:49:
                    e9:ab:0b:4d:b4:6f:47:47:5f:79:86:11:da:72:26:
                    0d:ee:28:8e:b4:fb:ae:e7:08:c9:bc:60:a7:a1:dd:
                    87:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E5:78:73:7E:37:0E:FA:39:AB:C9:0D:79:11:1A:2F:4D:A6:FB:F3:92
            X509v3 Authority Key Identifier:
                keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/5XhzfjcO-jmryQ15ERovTab785I.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.153.176.0/23

    Signature Algorithm: sha256WithRSAEncryption
         92:f3:10:01:e8:0a:eb:18:32:f0:a9:12:be:3f:e6:6c:1b:05:
         36:06:10:d0:af:cb:97:0e:e4:3e:fc:0c:0a:43:25:42:50:96:
         c6:8c:3a:66:e1:3b:ed:ea:4b:0d:04:f0:b3:08:85:6f:f6:10:
         e0:5a:d5:cb:f8:11:33:3e:3f:1c:db:bf:b6:30:c2:63:52:d7:
         1e:de:43:ec:08:c3:1d:eb:2e:1c:8d:42:60:91:27:b0:19:b1:
         ae:db:ab:79:4e:b4:47:84:d6:1f:bd:20:53:58:ec:d1:cf:20:
         16:be:0d:f6:0e:cf:39:43:8b:ff:b9:ff:9b:a1:cf:95:42:05:
         8d:08:9d:2c:dc:54:af:35:7c:85:60:05:6e:e2:fa:32:ce:81:
         28:1f:6b:fa:2d:f3:9d:44:b6:40:39:b3:43:a4:eb:66:f0:f7:
         50:ce:83:5c:85:4c:9f:6b:84:3c:d1:46:23:61:1f:10:58:77:
         ac:66:98:4c:6d:33:6a:06:a7:71:ec:bf:8e:9f:f1:f7:91:b0:
         34:49:85:8a:67:51:bd:57:03:46:b3:55:a2:25:0b:6b:04:df:
         80:17:5f:98:57:e8:e4:94:77:67:35:f4:5a:7d:6e:00:d7:46:
         67:d7:11:0b:3c:f3:6f:a5:d0:34:97:90:ae:ae:bb:e1:08:49:
         ef:a2:a9:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org