Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/yNdf9-TJr2pdTwVolqLujOjtJ4E.roa
File:                     yNdf9-TJr2pdTwVolqLujOjtJ4E.roa (raw, json)
Hash identifier:          zoNJJEMET/I4+dMtsNg5+8SPVqr/aUNEDfq/s0dtUzk=
Subject key identifier:   C8:D7:5F:F7:E4:C9:AF:6A:5D:4F:05:68:96:A2:EE:8C:E8:ED:27:81
Certificate issuer:       /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial:       095B
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/yNdf9-TJr2pdTwVolqLujOjtJ4E.roa
Signing time:             Sun 07 Feb 2021 13:08:52 +0000
ROA not before:           Sun 07 Feb 2021 13:08:52 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     198949
IP address blocks:        124.150.134.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2395 (0x95b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
        Validity
            Not Before: Feb  7 13:08:52 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=C8D75FF7E4C9AF6A5D4F056896A2EE8CE8ED2781
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:3e:a7:56:d7:58:75:5f:65:50:09:eb:de:ac:
                    96:fa:fb:d7:9e:11:0e:67:f4:2d:77:ec:a3:70:e6:
                    41:d6:df:b2:2c:3b:79:b0:99:ba:2a:03:25:cb:65:
                    06:c6:6e:37:64:80:fa:73:97:b0:27:7e:5b:f8:2f:
                    ef:19:19:cb:ce:9c:18:93:40:55:9f:15:54:58:aa:
                    7c:cd:48:48:d3:cf:8b:ed:4a:d0:b0:69:05:78:89:
                    92:b6:0c:e7:ab:c4:d1:84:39:9b:c5:6a:cb:2a:51:
                    0f:ff:a7:12:08:7c:a5:39:01:b0:0f:63:62:9a:41:
                    09:3d:7f:ed:6c:cc:71:9f:3c:01:45:e0:a6:e8:42:
                    d2:5e:bc:88:21:bd:85:8d:8b:da:81:32:48:42:ff:
                    46:06:02:24:a0:35:56:14:b2:f7:70:6e:c1:a3:a2:
                    15:02:06:eb:f5:6c:f2:8a:90:c6:ef:1b:5f:14:3a:
                    d0:e0:85:72:6a:83:9b:8d:25:b5:34:40:a7:21:47:
                    74:22:ed:11:7f:19:80:ff:20:4d:f0:44:2f:a7:4c:
                    b2:4c:57:ec:4e:06:c8:67:e7:2e:91:fc:51:82:51:
                    5a:01:5e:05:a7:95:d8:34:c3:59:03:fd:d6:43:c0:
                    55:24:ef:5f:f9:da:98:7e:f2:f7:d2:e3:39:85:a1:
                    81:67
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:D7:5F:F7:E4:C9:AF:6A:5D:4F:05:68:96:A2:EE:8C:E8:ED:27:81
            X509v3 Authority Key Identifier:
                keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/yNdf9-TJr2pdTwVolqLujOjtJ4E.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  124.150.134.0/24

    Signature Algorithm: sha256WithRSAEncryption
         ba:6f:c5:15:d6:e0:4e:85:79:9f:f5:92:48:fb:14:dc:05:e4:
         0a:36:7d:83:d0:4a:00:c4:0a:0b:d7:00:9f:a8:d6:37:79:88:
         53:7b:f7:75:4a:08:3f:ad:21:72:42:54:1d:2f:96:57:f6:a6:
         2e:57:54:64:fd:a4:5d:d3:e0:7a:04:a1:fe:40:a1:23:d4:3b:
         5e:15:a5:88:e1:a0:18:15:f1:08:b4:a9:a2:d5:88:79:86:1e:
         03:f8:1b:40:e7:a0:b9:59:d4:50:8f:d9:6d:fd:e9:20:73:a4:
         c9:23:04:ce:a0:49:1b:31:63:85:e2:f5:48:a3:df:74:1a:4c:
         59:78:a9:4d:f7:a4:02:a8:4d:ac:a6:3e:74:4a:ee:71:4d:c7:
         58:2a:d9:0e:ad:cd:b4:79:bb:b0:cd:72:d2:ed:b6:91:40:d8:
         14:bb:42:66:70:59:38:b8:49:b5:9f:83:ef:06:bb:10:9b:43:
         fb:5c:3d:13:8c:96:a3:2b:c2:e7:c3:bf:25:1d:25:5f:3b:63:
         79:6f:39:0d:dd:b7:4d:ff:ae:37:96:ea:37:02:09:07:85:72:
         a6:38:69:be:a0:57:8b:e5:1b:86:44:00:e5:ce:92:84:ae:fb:
         43:64:02:dc:dc:7e:86:ea:84:8a:8f:8f:42:14:2f:1b:2e:65:
         6a:2c:65:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org