Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEEMON/LlewPSR8153PcfXIilTmsDkLWAI.roa
File:                     LlewPSR8153PcfXIilTmsDkLWAI.roa (raw, json)
Hash identifier:          A6KisCr7VCc064fvPZNT5YIMELLWcANP5GB31SF6lzU=
Subject key identifier:   2E:57:B0:3D:24:7C:D7:9D:CF:71:F5:C8:8A:54:E6:B0:39:0B:58:02
Certificate issuer:       /CN=0486F1D511D2C22EC95994B123B3A24962C1E327
Certificate serial:       50
Authority key identifier: 04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/LlewPSR8153PcfXIilTmsDkLWAI.roa
Signing time:             Fri 19 May 2023 05:42:02 +0000
ROA not before:           Fri 19 May 2023 05:42:02 +0000
ROA not after:            Thu 11 Jan 2024 15:30:09 +0000
asID:                     131659
IP address blocks:        103.67.161.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 80 (0x50)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0486F1D511D2C22EC95994B123B3A24962C1E327
        Validity
            Not Before: May 19 05:42:02 2023 GMT
            Not After : Jan 11 15:30:09 2024 GMT
        Subject: CN=2E57B03D247CD79DCF71F5C88A54E6B0390B5802
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:a4:97:7e:a9:a8:65:36:fe:b3:2e:1c:b0:c8:
                    e9:60:3e:8e:9e:94:03:d8:4d:7c:38:47:1f:c9:18:
                    2e:1e:e0:d2:4a:9a:24:5c:e4:16:e1:d6:14:3f:f1:
                    e7:77:59:da:47:7a:b3:4e:88:ee:eb:ea:b1:b4:55:
                    db:46:9d:f7:86:cd:51:86:97:44:de:da:de:fd:6e:
                    6d:4b:c7:b0:da:58:04:63:54:e8:a7:5a:e4:8a:f0:
                    c8:2d:2c:5d:ae:c0:13:3d:c7:ad:44:8a:18:04:40:
                    18:51:90:fc:09:ff:2b:0d:55:22:a0:45:81:ea:da:
                    17:fc:61:54:f4:1a:e5:8c:ce:14:fb:a5:eb:7d:24:
                    c2:1c:a0:05:81:1f:1c:6b:cc:05:a3:51:a9:d0:5f:
                    f7:dd:61:7e:aa:b9:15:bf:2f:a6:c3:06:87:4f:e3:
                    1a:dc:e2:ad:7b:33:19:bc:f6:a5:30:48:c3:24:54:
                    08:52:2a:98:d9:16:9b:fe:e8:9d:95:eb:a2:dd:70:
                    9b:4b:83:26:55:b4:8e:8c:6f:14:13:3f:4c:bb:d0:
                    ca:97:8e:08:d1:ce:45:26:61:01:17:c0:2c:df:5a:
                    81:0c:0e:39:99:ef:77:bf:30:f7:10:e4:44:3c:4f:
                    74:99:a7:39:19:76:40:76:67:11:a5:35:ae:f8:56:
                    4b:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2E:57:B0:3D:24:7C:D7:9D:CF:71:F5:C8:8A:54:E6:B0:39:0B:58:02
            X509v3 Authority Key Identifier:
                keyid:04:86:F1:D5:11:D2:C2:2E:C9:59:94:B1:23:B3:A2:49:62:C1:E3:27

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/BIbx1RHSwi7JWZSxI7OiSWLB4yc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BIbx1RHSwi7JWZSxI7OiSWLB4yc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEEMON/LlewPSR8153PcfXIilTmsDkLWAI.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.67.161.0/24

    Signature Algorithm: sha256WithRSAEncryption
         29:60:f0:4a:38:68:03:81:15:6d:e7:8d:47:d3:14:9d:ab:ed:
         5e:c1:7e:5b:c5:d6:fa:99:90:84:e1:bb:2a:ac:5c:f2:69:ac:
         f2:50:d4:0c:56:8a:40:16:df:12:28:52:e7:af:cb:66:90:ca:
         f8:b1:ec:21:34:46:c7:37:05:f7:72:be:fa:8f:fe:11:63:57:
         e7:8a:49:23:65:cd:c2:4b:e4:72:e0:54:1e:56:e1:88:2c:01:
         79:b7:a0:64:3e:0b:05:ef:46:03:04:13:1a:37:ea:36:b6:bc:
         7b:8c:bb:98:df:11:62:99:8f:6f:ef:91:66:86:1d:ee:13:c7:
         cf:94:63:c1:4a:10:21:84:b4:8c:00:99:42:13:67:96:fe:a2:
         78:f9:63:48:b1:33:0a:22:42:98:35:2b:49:dc:97:5a:ba:50:
         90:4a:d8:6d:98:18:d2:32:a7:34:ca:76:f7:62:94:1b:20:60:
         fa:1b:88:7e:57:7a:12:50:ba:56:38:31:af:8a:74:aa:67:e5:
         5c:d5:9a:dd:60:c3:1b:87:32:cc:11:8f:f8:01:d8:51:bf:92:
         a5:e5:20:9c:52:f3:b9:b7:52:c2:da:66:98:25:8d:77:1a:14:
         b6:54:f6:9e:03:24:a1:2d:8a:76:5d:1e:3d:07:63:65:00:47:
         10:10:a6:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org