Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/AK70exzEgGzErG_ijVafQmo8ge8.roa
File:                     AK70exzEgGzErG_ijVafQmo8ge8.roa (raw, json)
Hash identifier:          3triGqujeyS7XR3bT5JotvlK/VQuE5Vk5or++mOONv4=
Subject key identifier:   00:AE:F4:7B:1C:C4:80:6C:C4:AC:6F:E2:8D:56:9F:42:6A:3C:81:EF
Certificate issuer:       /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
Certificate serial:       02E7
Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/AK70exzEgGzErG_ijVafQmo8ge8.roa
Signing time:             Mon 16 Nov 2020 17:32:32 +0000
ROA not before:           Mon 16 Nov 2020 17:32:32 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     6939
IP address blocks:        2406:3540:f000::/36 maxlen: 64

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 743 (0x2e7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864
        Validity
            Not Before: Nov 16 17:32:32 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=00AEF47B1CC4806CC4AC6FE28D569F426A3C81EF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:bc:6e:76:fb:a5:70:0e:81:a6:d0:be:c4:62:
                    78:34:5f:e0:18:4f:9b:96:be:1b:5d:6b:78:6c:92:
                    ec:77:40:d1:b8:fa:4f:8b:f7:d6:09:b5:e4:5a:27:
                    89:fc:80:ec:ed:83:7c:d7:3d:e3:28:01:aa:0f:38:
                    ec:93:ce:ca:ba:3b:92:2b:09:93:be:1d:e7:dc:61:
                    d9:07:24:67:4f:9c:39:b4:f6:48:11:91:6b:dc:a4:
                    08:12:3b:8a:e4:a0:a4:c0:42:64:f2:2f:8c:86:54:
                    33:e1:6b:88:da:58:ca:58:4a:53:76:02:6f:0f:42:
                    e1:fc:38:c7:fc:9c:8c:90:5b:a2:fd:4d:e1:f8:af:
                    ad:58:f4:62:db:4f:5b:a6:a2:24:6c:54:0e:a9:3b:
                    bb:13:ed:bf:54:3a:ec:0d:2b:84:04:57:52:66:e7:
                    ac:d6:86:c5:af:fa:ba:71:71:32:10:7d:ae:cf:b9:
                    fc:e2:ea:24:84:39:bd:b9:aa:be:4f:5a:5c:88:c1:
                    b5:aa:8b:34:42:24:1c:c9:75:1f:fc:04:a2:34:d9:
                    d9:f7:4d:2b:5f:10:db:71:dc:70:ac:93:e4:c6:85:
                    fb:53:27:22:66:67:cc:18:3a:67:06:d2:ea:89:46:
                    82:d9:60:b6:56:6c:22:ad:18:89:91:8f:59:9a:21:
                    37:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                00:AE:F4:7B:1C:C4:80:6C:C4:AC:6F:E2:8D:56:9F:42:6A:3C:81:EF
            X509v3 Authority Key Identifier:
                keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/AK70exzEgGzErG_ijVafQmo8ge8.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2406:3540:f000::/36

    Signature Algorithm: sha256WithRSAEncryption
         1b:cf:c7:c9:b1:99:08:c1:25:e9:f0:f8:f9:dd:f3:8e:58:e5:
         b4:a0:d9:cf:23:a3:fc:4e:bf:17:39:fc:6b:25:71:77:11:f6:
         91:4b:a0:af:fb:84:69:cd:25:ec:8d:55:06:f4:db:a0:63:72:
         1d:cf:d2:36:46:38:56:a0:56:e0:6b:8d:48:8f:e7:81:bc:61:
         1b:61:9c:cf:cb:6f:f7:56:29:4b:79:79:a2:74:f3:48:21:b6:
         ed:9e:e6:1b:19:b4:ea:79:4a:7c:a3:17:f2:d7:0b:e0:1d:2a:
         37:95:3b:23:3d:45:57:b2:02:c7:5b:90:c9:09:c9:64:2b:ac:
         8b:ab:84:27:92:07:1e:49:bd:8d:bb:0a:af:67:48:c8:b8:8d:
         ad:44:66:d6:1f:62:64:34:ab:31:c3:3d:89:d7:d0:20:28:53:
         75:03:df:a3:37:5d:80:d2:6c:0d:60:05:a3:85:d2:e9:06:4c:
         7d:d2:9c:f9:c6:8d:f3:38:d9:7f:36:26:66:65:d0:a8:43:10:
         f2:74:ec:89:eb:ff:4f:09:0f:bd:5e:1b:ae:bc:ef:57:39:1f:
         9b:0f:ad:48:a3:00:bd:d2:38:5c:2d:6c:69:b1:8a:7c:1a:74:
         8d:fd:79:76:98:ca:39:6c:99:82:81:ef:7b:20:43:4b:b9:12:
         f2:63:90:f2
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org