Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCHC/SFBpXRdX6MgvBfBlfMK2XCUgzps.roa
File:                     SFBpXRdX6MgvBfBlfMK2XCUgzps.roa (raw, json)
Hash identifier:          WUxQc8+jUk83iXc102W2JDPd/w5ecEEDYtw+ZCGgkUc=
Subject key identifier:   48:50:69:5D:17:57:E8:C8:2F:05:F0:65:7C:C2:B6:5C:25:20:CE:9B
Certificate issuer:       /CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
Certificate serial:       0A48
Authority key identifier: ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/SFBpXRdX6MgvBfBlfMK2XCUgzps.roa
Signing time:             Thu 15 Sep 2022 02:38:19 +0000
ROA not before:           Thu 15 Sep 2022 02:38:19 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     7539
IP address blocks:        211.79.48.0/20 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2632 (0xa48)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ED38685FF3EA1F46685DE5F57C6A4B8104481891
        Validity
            Not Before: Sep 15 02:38:19 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=4850695D1757E8C82F05F0657CC2B65C2520CE9B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e8:53:80:9d:ad:69:b5:2b:21:c3:19:14:9d:79:
                    1a:f4:fb:d6:57:55:4e:f4:05:b7:59:db:fc:16:ce:
                    6b:a9:6e:8f:7f:35:45:b8:55:cf:dd:5f:d0:08:ae:
                    e8:21:3b:1c:d1:e2:1c:b2:64:b1:e4:ae:e6:f6:e9:
                    68:30:ee:b0:c2:5a:7d:ee:ff:70:f6:05:ba:7e:c0:
                    d5:58:d1:f9:16:9f:81:f5:c8:20:8d:08:cd:a6:1d:
                    83:07:81:54:eb:f1:39:d1:0e:91:0a:a9:9b:21:c7:
                    2d:f3:f0:cf:c4:25:8c:37:3c:23:30:60:a2:79:86:
                    bd:b2:42:4c:9d:7e:6e:28:be:53:1e:6e:d9:f4:1f:
                    0b:ea:91:e5:fe:bb:c4:c1:88:d0:2b:9f:9a:cb:bf:
                    ca:99:79:0a:70:d8:44:8a:62:3b:fa:82:a6:3d:93:
                    a0:fe:c0:15:c9:70:0d:08:69:b5:21:ac:4c:d8:27:
                    6f:b6:6b:de:24:8c:f7:09:79:c5:c2:70:dd:d8:48:
                    93:05:a3:3a:16:f5:69:da:c4:92:96:69:69:86:3d:
                    a8:d5:56:e7:be:0b:c2:52:57:56:9c:59:a9:e5:1e:
                    81:3f:c2:67:a6:47:0b:24:24:f8:35:58:44:6e:90:
                    b8:08:e8:37:63:4e:a6:77:33:54:7f:bd:bd:34:2a:
                    13:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                48:50:69:5D:17:57:E8:C8:2F:05:F0:65:7C:C2:B6:5C:25:20:CE:9B
            X509v3 Authority Key Identifier:
                keyid:ED:38:68:5F:F3:EA:1F:46:68:5D:E5:F5:7C:6A:4B:81:04:48:18:91

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7ThoX_PqH0ZoXeX1fGpLgQRIGJE.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCHC/SFBpXRdX6MgvBfBlfMK2XCUgzps.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  211.79.48.0/20

    Signature Algorithm: sha256WithRSAEncryption
         56:78:df:4d:4a:09:ef:12:28:da:4b:4c:f0:ea:b4:0f:5e:33:
         66:db:f6:dc:c4:1e:a5:03:a4:16:e2:66:64:98:d8:5f:85:cb:
         19:ce:5e:d7:7b:96:14:d6:b9:88:0f:f6:bb:b8:19:dc:75:51:
         a3:a5:11:63:7c:eb:55:83:40:cb:5f:f8:0a:d3:ae:32:52:06:
         6a:60:3c:33:de:9e:09:8a:61:c3:75:de:b5:97:b2:42:f2:06:
         9a:7e:ec:30:61:1c:ca:dc:3f:96:a3:78:cf:dd:89:10:cb:b3:
         96:c2:e0:2d:69:bf:bc:6e:93:0a:8e:ac:83:fd:a1:a3:0a:79:
         15:0c:7a:4a:73:4c:9f:93:3a:08:28:51:ec:9e:d9:a6:26:5f:
         72:ec:58:72:cb:3b:78:dd:09:ac:61:6a:08:ca:5c:8e:9e:12:
         4c:78:23:8a:8e:da:16:60:df:d1:d1:dd:63:a4:42:4a:4b:38:
         d6:93:61:67:84:d2:de:eb:90:0e:96:84:6b:30:b1:f2:2b:5b:
         2f:49:58:fb:26:e6:c4:43:af:e3:78:b7:b5:c7:ed:25:b7:84:
         64:4b:d6:aa:b9:94:70:20:b3:1e:cb:9d:47:d9:b1:c8:9a:33:
         a6:72:ae:a5:0f:1c:2e:d2:b5:f5:8b:91:c0:d6:14:52:c0:be:
         8d:53:6f:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:39 2024 by rpki-client on console-fra.rpki-client.org