Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ifYN7aTFqK69CannJVOqeQHP6hI.roa
File:                     ifYN7aTFqK69CannJVOqeQHP6hI.roa (raw, json)
Hash identifier:          iWsFUdRkm26232Y98ALtPY942bzdZpptY/IiFQTFOTc=
Subject key identifier:   89:F6:0D:ED:A4:C5:A8:AE:BD:09:A9:E7:25:53:AA:79:01:CF:EA:12
Certificate issuer:       /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial:       0AF6
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ifYN7aTFqK69CannJVOqeQHP6hI.roa
Signing time:             Sun 07 Feb 2021 12:40:05 +0000
ROA not before:           Sun 07 Feb 2021 12:40:05 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     131635
IP address blocks:        124.108.174.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2806 (0xaf6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
        Validity
            Not Before: Feb  7 12:40:05 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=89F60DEDA4C5A8AEBD09A9E72553AA7901CFEA12
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:6b:d1:27:20:41:a1:2f:ca:45:ac:f1:fb:fc:
                    28:88:0a:09:81:03:bd:99:f6:03:95:c6:ff:05:8f:
                    0a:1c:54:53:0f:97:db:52:db:c7:1a:72:a1:b2:27:
                    6c:41:11:e0:8e:d2:80:0b:9b:5f:f0:43:64:b3:11:
                    c3:f7:95:1f:2a:01:42:25:c3:4c:0f:1d:36:4f:5e:
                    76:16:3e:8f:7c:5f:a6:bc:0b:3e:1c:cf:60:6a:5b:
                    28:b1:85:bb:d5:3a:e0:c1:a4:61:78:c7:c5:bd:6c:
                    6a:12:ce:95:28:f1:83:87:96:41:fb:77:c0:e4:b9:
                    d4:2d:ef:fe:a0:06:80:fb:15:1f:18:2d:01:1d:75:
                    93:0b:68:35:bd:c6:ed:ba:ac:18:56:d6:c1:84:60:
                    54:60:c6:a0:98:93:d6:0d:12:f2:92:6b:bd:03:55:
                    c9:88:c1:cc:b4:23:a1:ee:42:ca:53:e1:e7:2d:f0:
                    58:56:19:2d:4c:bf:a3:8f:c1:44:56:4e:24:b5:c5:
                    5a:2e:29:ab:7b:99:17:dd:52:d2:13:f8:50:e7:b9:
                    de:5a:78:63:99:61:83:7f:df:0c:5a:29:00:54:aa:
                    a8:05:52:a6:ec:a5:e5:f5:70:55:e1:b6:93:0e:a4:
                    90:50:1f:dc:64:bb:e0:63:46:66:5f:22:c0:a7:8e:
                    f0:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                89:F6:0D:ED:A4:C5:A8:AE:BD:09:A9:E7:25:53:AA:79:01:CF:EA:12
            X509v3 Authority Key Identifier:
                keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/ifYN7aTFqK69CannJVOqeQHP6hI.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  124.108.174.0/24

    Signature Algorithm: sha256WithRSAEncryption
         7d:cc:f5:9e:4d:55:c1:14:77:e3:09:01:0d:2d:94:3f:70:4a:
         af:f9:72:f5:9b:93:f1:b8:75:d7:02:a4:5f:21:34:57:5b:d2:
         04:9a:cf:dc:18:de:92:d6:cd:ae:bb:3a:50:81:43:56:f6:c3:
         a2:90:9a:b1:f9:6b:85:27:52:cf:2e:79:50:4f:fa:c3:46:70:
         7a:a5:dd:04:8d:0f:cc:37:c2:a3:71:d4:64:22:d1:97:08:2a:
         03:15:35:e9:58:33:51:e2:21:cb:f7:9a:1e:bf:1d:42:02:e9:
         1c:a8:53:c5:55:92:7d:74:ae:8e:31:1d:5f:5c:37:99:33:41:
         91:70:62:28:eb:d3:4d:ec:1d:13:6f:bb:8c:da:ec:f4:2c:f1:
         55:19:75:87:90:b9:19:f9:39:dd:80:a6:c3:74:14:47:cd:7b:
         61:9b:54:80:08:87:43:7a:26:ea:fc:7d:67:d3:ed:79:dd:f8:
         68:61:96:91:3d:ab:dd:ae:ae:e6:12:f2:eb:a8:83:ea:34:61:
         f8:ff:d5:c4:e6:90:02:c4:fb:0e:ad:0d:74:7c:08:b1:7e:03:
         b6:2e:3f:ad:46:be:b9:f3:4e:c5:68:88:51:98:01:22:ef:8c:
         22:48:cf:8e:d9:d8:f8:da:86:d9:93:3b:93:c7:4c:58:0f:7d:
         7c:2d:22:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org