Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cx7wJdXVTjIcM8Wm3Zc9YQIwPVE.roa
File:                     cx7wJdXVTjIcM8Wm3Zc9YQIwPVE.roa (raw, json)
Hash identifier:          C1jIdvAzoTAi3mc5w80pBwftwGl6M8HKdsaiqeW5vuY=
Subject key identifier:   73:1E:F0:25:D5:D5:4E:32:1C:33:C5:A6:DD:97:3D:61:02:30:3D:51
Certificate issuer:       /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial:       0803
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cx7wJdXVTjIcM8Wm3Zc9YQIwPVE.roa
Signing time:             Tue 29 Sep 2020 09:57:39 +0000
ROA not before:           Tue 29 Sep 2020 09:57:39 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     24164
IP address blocks:        203.65.174.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2051 (0x803)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
        Validity
            Not Before: Sep 29 09:57:39 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=731EF025D5D54E321C33C5A6DD973D6102303D51
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:6f:cd:26:bd:28:c4:19:92:43:19:ea:0d:1a:
                    cd:a1:fa:94:cf:8c:5c:d3:3f:c6:a4:09:f2:c0:6b:
                    2e:d6:f3:22:63:e3:82:fd:8c:3a:b2:99:18:60:f0:
                    a1:4d:22:67:99:39:3d:4e:c8:10:1a:15:e0:15:82:
                    35:75:ac:35:f6:8e:5c:74:d5:ae:7c:21:07:fe:c7:
                    53:58:96:a1:4e:4e:29:7e:16:ae:00:dd:20:88:89:
                    c5:fc:b0:26:8b:2c:9d:a3:c4:8e:da:44:f6:b1:25:
                    63:c1:f6:c6:7b:89:c8:25:79:a8:6a:d3:01:78:cb:
                    55:8b:0f:0b:5a:b3:2a:c6:32:f2:78:30:05:58:b8:
                    db:ec:4e:79:13:f1:0f:bc:0e:5f:55:7b:c1:81:28:
                    6b:c2:32:b5:2b:d3:e8:6e:df:f4:4e:2f:ce:81:b1:
                    39:9e:43:e0:25:32:f6:93:95:17:82:30:3b:73:0a:
                    32:9a:50:fb:8d:cd:9d:8d:76:b5:11:a8:05:35:e8:
                    f5:02:0c:f9:37:cd:97:de:29:e1:4a:c7:ff:fe:47:
                    24:e6:30:4a:0f:f7:3c:59:4e:9f:1e:da:b6:c1:44:
                    31:24:3d:7a:80:bd:58:ae:59:82:1b:31:1e:01:5c:
                    82:b0:da:72:45:55:5f:9e:d7:1c:98:f3:91:17:8a:
                    b3:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:1E:F0:25:D5:D5:4E:32:1C:33:C5:A6:DD:97:3D:61:02:30:3D:51
            X509v3 Authority Key Identifier:
                keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/cx7wJdXVTjIcM8Wm3Zc9YQIwPVE.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  203.65.174.0/24

    Signature Algorithm: sha256WithRSAEncryption
         2b:44:49:1b:bf:f3:16:cf:18:d3:44:a2:16:bc:18:d6:35:df:
         c3:8a:08:d3:e1:72:d9:ac:82:67:c9:0e:a0:68:c8:d8:f2:2c:
         4b:a7:45:32:1d:f8:ed:75:35:13:47:27:b6:5c:98:c3:40:9c:
         c3:3d:6d:d5:56:54:bf:f7:3f:39:8d:ef:4d:60:4c:b9:54:58:
         6f:b2:42:5c:d5:40:c6:1b:16:e0:36:15:3e:f9:f0:84:aa:b2:
         b2:89:90:35:3f:9e:d1:13:8c:20:67:4a:de:e3:de:4b:b1:a2:
         39:64:2e:26:62:25:1a:be:fd:cd:c8:33:bf:3f:4e:66:e7:69:
         f6:73:c4:e4:ed:f5:1f:ff:00:5c:d7:96:18:b0:c5:c3:04:30:
         79:05:8e:6e:94:f1:2d:b4:19:37:05:f7:57:2d:24:ae:95:46:
         4d:e3:52:24:8d:80:5b:d8:35:e7:94:92:54:f5:8c:41:4c:ae:
         7c:ed:18:db:bc:71:64:dd:15:c0:6f:3b:50:27:f3:47:bc:48:
         3d:da:db:67:24:4f:0b:83:3c:81:45:8f:7b:2a:a3:7c:04:4a:
         7c:50:72:30:49:05:71:d8:c5:0a:5b:ea:84:cb:07:7a:56:07:
         9b:33:61:83:22:bf:0a:9d:6c:38:4b:0d:40:ac:98:24:bb:ec:
         3c:ec:78:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org