Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/N7wz9ttqe_cUlzUBRd-c7QPLGrs.roa
File:                     N7wz9ttqe_cUlzUBRd-c7QPLGrs.roa (raw, json)
Hash identifier:          4iK9sLs+gl4rTYbWiBnm1/J7fv/+sMPxPkH3pZpJaCk=
Subject key identifier:   37:BC:33:F6:DB:6A:7B:F7:14:97:35:01:45:DF:9C:ED:03:CB:1A:BB
Certificate issuer:       /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial:       09DF
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/N7wz9ttqe_cUlzUBRd-c7QPLGrs.roa
Signing time:             Wed 29 Sep 2021 02:52:18 +0000
ROA not before:           Wed 29 Sep 2021 02:52:18 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     9919
IP address blocks:        61.61.128.0/18 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2527 (0x9df)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
        Validity
            Not Before: Sep 29 02:52:18 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=37BC33F6DB6A7BF71497350145DF9CED03CB1ABB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:60:ca:39:96:22:4b:6a:06:cd:51:86:39:90:
                    59:54:14:60:0b:13:a5:66:c0:15:55:b8:50:42:7e:
                    78:1a:12:55:11:61:f7:a3:68:1c:c6:6b:87:08:83:
                    1c:3c:90:42:22:76:f6:a1:f0:9d:9a:d5:f1:d4:f5:
                    a2:4b:75:dd:2a:23:6e:fc:dd:0b:88:0c:ba:0a:1e:
                    77:ea:e6:68:71:db:c9:74:d3:a3:0b:61:bf:88:f6:
                    9d:c2:29:71:a3:c4:46:93:67:11:12:37:02:f8:5a:
                    cf:f4:25:7c:6a:58:9f:74:e0:93:8d:58:58:bd:8e:
                    bf:13:16:f7:86:41:33:f4:7e:5d:39:fd:fc:b1:3c:
                    95:31:ce:8d:c3:5f:c2:25:95:d9:f9:d2:25:52:e1:
                    3b:1d:56:5c:11:0f:fd:47:ad:57:20:1a:c0:77:59:
                    60:f9:b3:20:2c:a7:2a:47:45:59:28:ca:93:30:3a:
                    dc:8e:bf:99:59:c9:24:00:7f:d2:1f:51:19:8c:5e:
                    de:79:88:25:fe:d1:98:e4:70:97:49:22:22:b7:e0:
                    f3:38:69:68:61:f2:f4:3a:aa:8e:3c:84:9a:84:b3:
                    75:f2:58:3a:0c:05:0d:47:17:6d:d6:8f:88:5b:a7:
                    a8:83:d9:2b:25:c3:da:d8:bc:31:6f:86:16:5f:25:
                    ec:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                37:BC:33:F6:DB:6A:7B:F7:14:97:35:01:45:DF:9C:ED:03:CB:1A:BB
            X509v3 Authority Key Identifier:
                keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/N7wz9ttqe_cUlzUBRd-c7QPLGrs.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  61.61.128.0/18

    Signature Algorithm: sha256WithRSAEncryption
         8a:ec:eb:b0:37:24:ce:08:06:31:95:29:9c:d5:f9:39:4e:e2:
         84:42:27:90:04:c6:1d:76:7d:10:2e:b7:fe:f5:eb:6f:91:b4:
         42:44:fd:c3:93:bc:93:ef:e9:93:3d:ff:f5:07:47:e4:67:1e:
         c8:89:79:09:40:9a:46:d3:6e:43:40:13:71:1e:5b:9b:80:ba:
         02:e3:49:16:e1:c5:b1:67:fd:0e:9e:29:26:5b:ba:e8:d1:ca:
         33:b3:79:22:06:14:90:03:0e:31:c8:ef:cf:62:cf:be:cb:a9:
         1e:0d:1c:9f:5b:95:80:13:68:a8:da:e9:e9:13:bb:92:d2:3f:
         df:e8:e6:d8:aa:29:6c:60:d5:0a:16:38:89:5f:5b:31:05:26:
         d9:51:29:1a:1a:3b:05:e4:d5:c0:41:58:72:73:53:71:e6:ab:
         97:03:05:5c:2a:36:c4:36:cf:ce:18:a2:7c:57:a7:c6:7a:a0:
         2c:a4:a1:94:31:a1:44:ff:6d:7b:f2:8f:04:07:05:fb:fe:95:
         c6:9f:3e:45:b7:87:57:cf:32:2d:5a:8e:f0:14:1b:84:06:c2:
         a1:63:95:e8:ce:c5:86:96:09:c3:10:9f:74:69:db:65:88:17:
         75:83:bf:24:7e:28:96:30:59:bb:5f:ed:fb:61:6d:16:58:f7:
         cf:5f:d9:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org