Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ArocRodo0jcZU7YttJJ124UWZLA.roa
File:                     ArocRodo0jcZU7YttJJ124UWZLA.roa (raw, json)
Hash identifier:          UDPUtJVQ8zENl/BG1/rkyUe201wZCqwLJGXqDmSi+x8=
Subject key identifier:   02:BA:1C:46:87:68:D2:37:19:53:B6:2D:B4:92:75:DB:85:16:64:B0
Certificate issuer:       /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial:       07EB
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ArocRodo0jcZU7YttJJ124UWZLA.roa
Signing time:             Tue 29 Sep 2020 09:57:33 +0000
ROA not before:           Tue 29 Sep 2020 09:57:33 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     9924
IP address blocks:        202.145.64.0/18 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2027 (0x7eb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
        Validity
            Not Before: Sep 29 09:57:33 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=02BA1C468768D2371953B62DB49275DB851664B0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:e3:bd:53:b5:41:f5:97:78:7d:4a:bf:a1:b7:
                    2d:f5:f8:68:b3:09:12:2c:82:ec:47:e2:01:05:77:
                    d1:8a:ef:97:5c:95:aa:fa:0e:68:29:f1:f9:38:4a:
                    61:5a:6a:3f:77:39:be:fe:9f:81:c4:87:0f:81:61:
                    ef:bd:2a:3b:53:49:6b:70:d6:24:69:3b:9b:1f:17:
                    35:a0:71:cc:6f:85:73:89:59:2d:3a:5e:a1:9f:e9:
                    3a:e6:be:96:2b:be:21:80:7c:e0:d6:b2:20:18:fd:
                    21:b5:d1:76:a2:61:c3:24:f9:a2:65:90:47:3e:5d:
                    29:9f:5b:03:47:84:2b:9f:ad:a0:3e:42:6c:02:d9:
                    75:89:92:81:2e:48:76:cb:38:f5:9b:f0:d4:ec:59:
                    10:42:9d:78:9b:40:d3:b8:5e:7f:a5:eb:96:0c:8f:
                    7b:a2:18:a7:8a:6a:55:48:27:68:91:d3:d4:e5:a6:
                    46:d7:45:3b:f1:67:2f:f7:5e:ae:f8:70:2d:c8:b7:
                    d2:08:f7:a1:4f:fb:dc:c8:3d:76:a9:0f:c1:51:60:
                    88:25:ba:61:ea:13:ea:55:59:95:ee:8e:47:07:58:
                    5c:26:e7:6d:55:a2:20:97:9e:f6:22:f1:c1:51:a2:
                    34:b6:76:92:cb:87:44:06:a8:9b:64:61:e9:06:c6:
                    96:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:BA:1C:46:87:68:D2:37:19:53:B6:2D:B4:92:75:DB:85:16:64:B0
            X509v3 Authority Key Identifier:
                keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ArocRodo0jcZU7YttJJ124UWZLA.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.145.64.0/18

    Signature Algorithm: sha256WithRSAEncryption
         07:0a:56:5b:4c:f8:22:ea:7c:98:da:41:22:4f:9c:79:2c:4c:
         93:b7:4d:3d:d5:fd:c8:d5:15:7d:23:fd:bd:3b:80:d5:2c:a3:
         64:b4:59:56:76:dc:b4:61:34:47:08:82:00:94:48:1f:cb:f0:
         c9:ce:64:77:f7:70:7f:0f:b5:7c:0e:98:32:a2:a1:78:e3:68:
         23:04:1d:30:aa:92:2e:59:30:e7:c7:25:d3:69:c3:b2:02:65:
         52:ed:41:a9:db:a0:79:01:c2:c7:b1:a9:40:a7:7f:03:c9:e5:
         0a:e6:86:0e:18:33:28:be:b4:0c:13:69:a2:9e:4e:e7:3a:3b:
         85:ec:42:aa:55:f7:a2:83:4e:d7:63:12:4b:aa:45:10:bb:f7:
         af:d4:9d:3f:7e:8a:61:d5:20:80:44:f3:fc:56:0c:64:9b:ec:
         93:03:58:a6:6e:14:32:0f:d8:f8:cc:4d:69:8f:47:8d:76:d6:
         3f:a2:3a:c1:c6:1d:db:2b:11:08:d0:cc:a4:88:0b:00:d9:4b:
         06:4f:d5:ac:d2:63:db:da:8e:25:04:68:45:23:16:ba:a6:e0:
         88:f6:6b:aa:66:d6:86:b4:d7:fb:57:5b:07:33:de:71:d6:bb:
         1f:b2:a4:04:90:5c:a0:d9:fd:44:eb:48:a3:cb:db:f2:a8:67:
         d7:2f:84:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org