Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/kGPWH2NlbnqPeR8sA6IDqi-SkhE.roa
File:                     kGPWH2NlbnqPeR8sA6IDqi-SkhE.roa (raw, json)
Hash identifier:          tWG19oRcj6VeksBfNFXGXIDN+jg164MALYj2B/6vK/s=
Subject key identifier:   90:63:D6:1F:63:65:6E:7A:8F:79:1F:2C:03:A2:03:AA:2F:92:92:11
Certificate issuer:       /CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9
Certificate serial:       F0
Authority key identifier: 7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/kGPWH2NlbnqPeR8sA6IDqi-SkhE.roa
Signing time:             Thu 16 Jun 2022 07:27:17 +0000
ROA not before:           Thu 16 Jun 2022 07:27:17 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     38853
IP address blocks:        2407:9a40::/32 maxlen: 32

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 240 (0xf0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7B8257FFDC7CD1CB4196129CD40493352BC83BB9
        Validity
            Not Before: Jun 16 07:27:17 2022 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=9063D61F63656E7A8F791F2C03A203AA2F929211
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:db:f9:1f:60:20:e5:62:73:38:d5:8f:c3:1d:ea:
                    9d:6a:62:81:a1:21:79:2b:f2:4f:92:3e:55:5c:da:
                    50:67:a8:c7:41:a5:9b:18:02:b8:f2:b8:39:9e:7e:
                    a2:86:fa:b4:a6:fb:7d:08:c8:c5:da:de:14:7c:7e:
                    1a:62:58:c9:9f:ad:5a:be:6d:8c:1e:d8:f2:4c:5b:
                    09:e8:74:d3:34:0f:9c:34:02:4e:be:8a:ab:9d:46:
                    5a:9b:16:6d:28:99:62:37:7a:cc:16:0b:ad:b2:99:
                    07:8a:18:71:0e:48:1c:af:35:ed:b8:52:ae:ea:37:
                    0a:fc:8f:c6:d6:b3:42:25:68:8e:27:c8:bb:82:9d:
                    58:09:2d:63:98:82:54:15:90:b1:22:4c:50:82:d3:
                    87:47:af:ae:92:d6:61:97:b8:9d:3a:14:d7:8a:21:
                    aa:91:b6:06:12:2b:64:17:e4:d7:db:c1:56:1c:70:
                    ad:19:df:70:fb:f8:b8:6a:bc:a9:d6:52:ba:f2:09:
                    30:f5:0d:61:d8:10:9c:a0:12:a5:f2:07:c0:f1:db:
                    b0:20:21:a9:c5:c2:0c:58:45:e4:3a:e2:77:d1:36:
                    05:01:9d:e5:00:93:d9:45:5b:b9:e7:88:52:6d:f7:
                    9e:eb:09:42:9a:3c:46:61:18:ca:dd:a6:8e:01:7d:
                    ce:d7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:63:D6:1F:63:65:6E:7A:8F:79:1F:2C:03:A2:03:AA:2F:92:92:11
            X509v3 Authority Key Identifier:
                keyid:7B:82:57:FF:DC:7C:D1:CB:41:96:12:9C:D4:04:93:35:2B:C8:3B:B9

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/e4JX_9x80ctBlhKc1ASTNSvIO7k.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/e4JX_9x80ctBlhKc1ASTNSvIO7k.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PARAMITA/kGPWH2NlbnqPeR8sA6IDqi-SkhE.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2407:9a40::/32

    Signature Algorithm: sha256WithRSAEncryption
         14:e7:9b:74:a0:c9:57:33:b5:8d:4a:6c:ce:5d:e9:16:dc:3a:
         45:aa:d2:f2:74:0a:77:bf:3b:5a:c2:5e:64:3d:89:17:85:0e:
         5c:e6:75:8b:62:4b:3f:11:24:e4:56:bc:9d:9d:9a:31:3c:44:
         87:40:68:1a:a3:8d:c0:99:2b:8c:b6:bb:c8:a5:2f:d0:e2:fc:
         62:02:80:e1:af:6b:61:eb:0f:50:c4:0d:96:4b:83:0d:e9:19:
         57:af:ea:37:8e:16:1c:97:e3:2f:8e:74:10:41:e1:a4:30:75:
         a8:5d:4a:12:74:10:8e:56:28:ba:ae:22:5e:50:58:1e:af:3d:
         c0:e8:8c:31:68:24:d1:f4:a4:59:ac:1d:4c:fb:e2:b2:ed:1b:
         e7:04:ea:43:44:15:11:4c:e9:8e:ec:e9:46:f3:f6:58:1b:03:
         7b:8a:c9:dc:f8:e5:f1:d9:df:0e:5e:7f:0c:c8:bb:c7:8d:5d:
         f8:73:85:7d:b8:7e:89:4c:c7:59:2f:8b:06:24:b5:d7:b4:2a:
         02:e9:77:da:51:c9:1e:69:e7:27:eb:26:26:ef:70:a6:da:7e:
         9f:20:f4:fe:f7:60:b6:e1:b0:0b:6c:86:44:84:be:80:f6:2b:
         e3:19:be:8e:1b:47:d0:be:d4:6a:93:df:4e:e3:c1:fa:ac:cc:
         d7:6b:5c:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:17 2024 by rpki-client on console-ams.rpki-client.org