Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KE-ING/YnpgZH_5Qrv1VCAn_Nz6YZC3EYg.roa
File:                     YnpgZH_5Qrv1VCAn_Nz6YZC3EYg.roa (raw, json)
Hash identifier:          CIE0dmVlA2Lz//7RfhaJhCUc65tmJyBvmZ0EiutnDNY=
Subject key identifier:   62:7A:60:64:7F:F9:42:BB:F5:54:20:27:FC:DC:FA:61:90:B7:11:88
Certificate issuer:       /CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
Certificate serial:       09EF
Authority key identifier: 99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/YnpgZH_5Qrv1VCAn_Nz6YZC3EYg.roa
Signing time:             Wed 29 Sep 2021 02:40:35 +0000
ROA not before:           Wed 29 Sep 2021 02:40:35 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     9416
IP address blocks:        119.14.0.0/16 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2543 (0x9ef)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=999BBE131DF5D346F27627CC4F8FA9FB57581929
        Validity
            Not Before: Sep 29 02:40:35 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=627A60647FF942BBF5542027FCDCFA6190B71188
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:d8:94:39:b5:42:f0:76:f5:ea:ae:89:55:ae:
                    0c:fe:19:5a:ab:c4:ab:ca:f9:09:6b:a4:6a:94:7f:
                    33:10:05:f7:6e:d1:6a:d0:f1:c8:1b:70:50:82:92:
                    17:6b:42:27:c3:64:5b:76:9c:05:43:43:6f:87:5f:
                    d4:c2:21:e7:95:8c:41:d6:a5:40:d0:b6:63:3d:56:
                    d9:d6:41:b1:4c:f8:1f:60:03:a1:66:4d:0d:5e:7b:
                    dd:13:d4:d5:b4:c9:2e:3e:63:d9:e5:58:85:b9:2b:
                    40:d6:42:45:6b:7d:58:11:0e:88:ad:23:33:3c:60:
                    90:66:ed:72:41:57:f8:3c:74:44:f6:5e:d4:fe:eb:
                    01:df:5b:cd:bb:df:f0:6d:85:d2:10:2f:ca:fc:95:
                    ea:f4:71:32:ea:16:9a:2a:8d:6a:9a:d5:49:1d:d3:
                    20:29:16:bb:7a:fa:97:82:5e:df:10:b6:54:4e:03:
                    e2:26:e5:37:34:b1:90:0f:d4:61:be:fd:d2:a7:c2:
                    70:4a:7a:6c:43:a9:15:36:f8:21:7b:da:37:f8:15:
                    93:1b:e9:02:6a:34:12:00:38:74:ed:6a:f6:7d:1e:
                    98:c1:29:ef:9d:6c:16:96:7f:8a:0c:28:92:59:5d:
                    2e:12:53:13:9d:56:a5:8a:83:2c:39:4f:ff:2f:44:
                    1f:6b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                62:7A:60:64:7F:F9:42:BB:F5:54:20:27:FC:DC:FA:61:90:B7:11:88
            X509v3 Authority Key Identifier:
                keyid:99:9B:BE:13:1D:F5:D3:46:F2:76:27:CC:4F:8F:A9:FB:57:58:19:29

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/mZu-Ex3100bydifMT4-p-1dYGSk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mZu-Ex3100bydifMT4-p-1dYGSk.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KE-ING/YnpgZH_5Qrv1VCAn_Nz6YZC3EYg.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  119.14.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         a5:5b:6c:02:f7:3f:77:9c:60:47:27:d8:64:83:70:a0:95:01:
         ef:42:e0:4e:a6:8d:aa:7b:a9:7c:ae:14:b0:20:bd:e8:77:9d:
         0d:c1:9e:af:ba:25:5c:89:f9:6e:f9:06:5b:b0:0d:63:2c:8f:
         0b:24:e0:4e:9b:37:77:ef:b8:8b:4e:52:1e:06:8b:3e:80:7d:
         19:c7:b4:fd:a4:4b:d6:83:f9:ba:d5:30:26:5a:6d:c2:06:32:
         36:22:41:f8:68:86:02:73:a1:74:6f:9f:6b:b8:e9:df:11:53:
         18:b8:c7:05:d3:cb:63:1f:bf:f5:88:69:2b:6c:4d:c0:ed:fa:
         ed:12:7c:53:aa:69:43:d2:09:2c:3c:63:80:e8:c6:f9:f7:ae:
         74:21:3d:52:e7:0b:14:f9:eb:bf:29:69:df:f5:e3:ce:af:34:
         56:61:23:70:50:de:9e:9e:17:01:9e:3a:8a:79:5b:fa:b3:e6:
         90:11:92:30:28:a9:79:12:86:e0:8e:d8:72:7f:5e:79:a3:99:
         0d:56:1e:8d:f6:74:56:c4:97:a2:b1:82:09:29:2b:86:5a:dd:
         d8:90:c1:65:63:bb:61:92:34:6b:96:c0:16:ff:21:eb:e7:2d:
         51:68:d1:90:1d:e0:22:aa:81:f2:7b:16:82:72:99:95:01:a8:
         c2:a2:fe:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org