Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/UxQp5eQEKO1Ayb5Vby-G0ntFxbo.roa
File:                     UxQp5eQEKO1Ayb5Vby-G0ntFxbo.roa (raw, json)
Hash identifier:          1CgyRBQK2CYrxPhfjd+MWL4Jp+/da9jIWB5vUsVotnM=
Subject key identifier:   53:14:29:E5:E4:04:28:ED:40:C9:BE:55:6F:2F:86:D2:7B:45:C5:BA
Certificate issuer:       /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial:       0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/UxQp5eQEKO1Ayb5Vby-G0ntFxbo.roa
Signing time:             Thu 15 Sep 2022 02:49:47 +0000
ROA not before:           Thu 15 Sep 2022 02:49:47 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     131627
IP address blocks:        61.61.69.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2789 (0xae5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
        Validity
            Not Before: Sep 15 02:49:47 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=531429E5E40428ED40C9BE556F2F86D27B45C5BA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ed:8e:01:9c:29:c2:6a:7b:33:b8:d4:1c:39:ef:
                    c9:dd:56:91:cc:9a:22:43:a1:70:18:82:b4:f9:25:
                    10:79:9a:7b:87:ec:f0:a9:22:51:9e:18:79:a5:a3:
                    87:ee:98:ee:33:c1:27:c2:58:72:b8:b2:5f:10:b0:
                    23:49:f7:cf:97:c8:41:35:77:e0:50:9f:20:0f:94:
                    e8:6c:49:b7:60:58:b6:59:2d:e2:36:a7:12:43:c0:
                    22:08:27:76:71:e3:af:38:95:63:a7:11:eb:41:ce:
                    8b:0a:7b:98:12:a9:eb:10:be:0a:c7:87:94:04:c4:
                    dc:98:2b:2e:83:65:82:15:87:63:1b:ed:4a:23:af:
                    80:16:99:1d:26:44:89:5d:50:17:03:44:e5:fe:87:
                    32:4d:c4:3e:c9:2a:24:7e:7d:7b:4a:c9:ea:10:65:
                    03:88:3d:f8:df:9b:33:21:e0:e6:5a:9b:bd:6d:85:
                    c7:0f:24:78:55:97:a9:06:45:1f:21:52:02:3a:79:
                    8b:40:e6:fa:54:94:f8:b6:66:ee:d4:fc:0e:1d:c0:
                    6a:a6:3e:04:f7:0f:bc:cb:6a:0b:93:f8:72:07:b2:
                    4b:b5:52:95:09:b9:f8:2f:c3:f3:71:fe:4e:84:5a:
                    b0:31:61:a8:37:37:23:31:32:e8:d6:40:ba:ff:d3:
                    72:1f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:14:29:E5:E4:04:28:ED:40:C9:BE:55:6F:2F:86:D2:7B:45:C5:BA
            X509v3 Authority Key Identifier:
                keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/UxQp5eQEKO1Ayb5Vby-G0ntFxbo.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  61.61.69.0/24

    Signature Algorithm: sha256WithRSAEncryption
         3b:5a:81:6d:e3:93:52:3b:2d:bd:35:b5:b9:43:5a:29:b2:2c:
         30:e1:cd:d5:36:32:ad:1b:91:dd:42:88:59:ea:73:36:89:b1:
         91:85:01:d9:74:72:f5:0b:3f:b3:c7:6c:56:8d:b9:38:85:8f:
         ae:c4:e5:9d:5a:2e:01:ed:1d:4f:97:8a:79:09:06:75:e0:03:
         60:bf:53:6c:b3:8f:7f:af:ee:4b:9d:b6:79:f0:0f:d1:c4:0f:
         e5:78:dd:92:2a:ce:95:bc:97:2c:f6:4b:54:f6:b1:d8:b0:46:
         b7:d9:0c:e5:20:27:1c:ff:8a:06:cc:e7:49:3e:e3:cb:cc:a9:
         ee:6b:0a:59:2b:8f:f7:6d:b3:c6:20:ff:e4:28:79:98:c6:32:
         05:71:89:60:15:a1:70:ab:a1:5e:05:30:13:62:21:09:15:4f:
         c9:b7:6e:c9:b9:cd:1a:d0:a5:83:40:97:70:b7:8d:0b:dd:1c:
         0d:24:80:3d:ce:b1:9d:28:df:56:df:1d:3a:77:ce:b5:fc:5f:
         d1:de:47:d5:a8:0f:68:05:32:07:b9:12:17:ea:96:37:d5:87:
         7b:8f:0f:da:40:f3:d4:b1:b8:52:b4:a9:44:7e:21:19:28:fe:
         9d:22:d2:46:6a:4c:3c:09:c5:9e:d3:05:cb:f3:b3:9f:8e:e4:
         5b:42:86:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org