Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/5wwDOPkIRdDXiMwvQrica8G9lrM.roa
File:                     5wwDOPkIRdDXiMwvQrica8G9lrM.roa (raw, json)
Hash identifier:          9xl/Shpb5Sj65bG4f0Oumr8CQMpG1ckGz69L0Dyz1E0=
Subject key identifier:   E7:0C:03:38:F9:08:45:D0:D7:88:CC:2F:42:B8:9C:6B:C1:BD:96:B3
Certificate issuer:       /CN=3122A9292CC930152ADE5A25848C1BDC4044C902
Certificate serial:       03
Authority key identifier: 31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/5wwDOPkIRdDXiMwvQrica8G9lrM.roa
Signing time:             Mon 11 Jan 2021 09:43:06 +0000
ROA not before:           Mon 11 Jan 2021 09:43:06 +0000
ROA not after:            Thu 02 Dec 2021 03:52:15 +0000
asID:                     31972
IP address blocks:        103.159.88.0/23 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3 (0x3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=3122A9292CC930152ADE5A25848C1BDC4044C902
        Validity
            Not Before: Jan 11 09:43:06 2021 GMT
            Not After : Dec  2 03:52:15 2021 GMT
        Subject: CN=E70C0338F90845D0D788CC2F42B89C6BC1BD96B3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:65:71:a9:44:60:2b:c7:8a:dc:31:31:fb:90:
                    e9:1a:f3:af:ea:30:3f:1c:23:e8:f7:f2:84:5d:bf:
                    12:6a:d7:bd:18:aa:6c:53:e3:59:ff:aa:fc:a9:b2:
                    27:10:a9:87:2a:ae:ff:06:79:92:6c:33:3c:a0:b1:
                    a6:1d:f1:29:d9:31:a0:b0:b0:c1:26:a7:e9:6c:1b:
                    81:b5:34:a2:19:34:95:80:10:1b:a1:72:9e:6a:5c:
                    4e:71:2f:dc:bf:01:58:50:56:fb:29:c9:df:20:0e:
                    25:af:a8:f5:d2:39:8a:0f:f3:cc:8c:35:50:74:d3:
                    52:24:08:83:0d:9a:df:1b:50:e9:09:96:89:b7:0c:
                    10:48:10:98:8a:64:33:d2:26:39:99:1b:c0:45:24:
                    87:50:9b:6d:65:c7:0a:d2:99:33:16:5f:91:6a:93:
                    55:ad:0d:d1:cf:2b:fe:a2:c6:11:b0:f5:ef:a0:5a:
                    2e:52:23:67:36:40:68:08:71:ed:f9:9f:eb:d7:a4:
                    ad:72:33:82:1c:13:88:aa:2d:f8:92:72:b1:1d:48:
                    9a:81:42:ff:53:a4:f7:67:8f:31:4f:b7:4c:df:c7:
                    09:e7:9c:15:c6:c0:9d:68:5d:2e:4f:93:ea:ff:b0:
                    a2:80:e5:c1:e9:9b:51:1c:a5:bb:73:69:d6:38:5a:
                    53:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:0C:03:38:F9:08:45:D0:D7:88:CC:2F:42:B8:9C:6B:C1:BD:96:B3
            X509v3 Authority Key Identifier:
                keyid:31:22:A9:29:2C:C9:30:15:2A:DE:5A:25:84:8C:1B:DC:40:44:C9:02

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/MSKpKSzJMBUq3lolhIwb3EBEyQI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MSKpKSzJMBUq3lolhIwb3EBEyQI.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/5wwDOPkIRdDXiMwvQrica8G9lrM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.159.88.0/23

    Signature Algorithm: sha256WithRSAEncryption
         09:70:bf:1d:4f:63:27:31:bb:ed:c0:af:60:a4:fc:f9:86:68:
         77:52:53:bc:0b:36:17:18:92:79:a6:5e:a3:66:93:11:ae:a6:
         32:79:75:a7:47:2e:e4:e8:5a:66:71:db:2d:db:97:ef:9d:5a:
         ff:11:96:72:3a:d0:02:08:cc:ba:6b:82:73:df:85:b9:c4:e3:
         4b:c7:ea:77:10:23:d8:e1:28:2f:05:76:0f:7e:08:2b:ff:ea:
         96:f7:36:9f:8f:b5:f9:42:5b:67:9f:da:29:a1:41:1c:ce:3c:
         d9:64:2b:eb:9c:4c:87:e2:dd:0a:80:a7:cb:8b:71:ea:80:7a:
         90:7a:8b:97:78:5f:5f:4b:9d:32:1b:fa:74:cf:5c:1b:68:6a:
         2e:cb:c4:48:e6:7f:c6:bb:ee:e4:f8:65:5b:fc:ac:54:41:dd:
         c4:89:e3:3f:e6:c2:07:0c:d2:c2:16:3a:52:27:03:2e:39:90:
         33:cb:1e:91:7b:b4:aa:56:64:95:f8:3e:3f:05:2b:54:df:03:
         b7:53:a2:cd:83:ae:63:3b:e3:b1:00:76:4c:b3:66:26:bc:3c:
         dd:a0:eb:c4:54:67:ed:db:34:41:95:02:43:49:2a:d4:c5:4c:
         39:f2:96:02:08:e2:f0:a2:63:b6:b3:71:8d:03:b2:bb:05:be:
         a1:0e:f8:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:42 2024 by rpki-client on console-fra.rpki-client.org