Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/YyYJebbT3cluhmooCyaecURGO4M.roa
File:                     YyYJebbT3cluhmooCyaecURGO4M.roa (raw, json)
Hash identifier:          UmqUzM2C0amo5sazgzAc76M09k9txQApX6iP4cf0cAw=
Subject key identifier:   63:26:09:79:B6:D3:DD:C9:6E:86:6A:28:0B:26:9E:71:44:46:3B:83
Certificate issuer:       /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
Certificate serial:       0AA4
Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/YyYJebbT3cluhmooCyaecURGO4M.roa
Signing time:             Thu 15 Sep 2022 02:44:10 +0000
ROA not before:           Thu 15 Sep 2022 02:44:10 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38047
IP address blocks:        2402:c340:e168::/48 maxlen: 48

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2724 (0xaa4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C
        Validity
            Not Before: Sep 15 02:44:10 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=63260979B6D3DDC96E866A280B269E7144463B83
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:45:54:23:fa:82:5e:d9:7c:98:00:e4:e5:35:
                    fd:ba:f8:c0:fd:e4:1c:49:86:b6:cd:e2:4c:23:09:
                    02:cf:36:31:fb:78:dd:62:0c:97:01:a9:21:c5:b3:
                    15:77:02:d3:fd:09:b5:af:9f:67:c3:70:52:8b:45:
                    1c:c1:43:69:ff:48:ad:1c:77:b9:7f:8c:18:cb:c7:
                    57:28:aa:66:83:36:ee:d8:f8:98:f9:14:8c:65:16:
                    75:1b:b8:66:f7:f2:91:d2:88:68:a4:0a:30:58:0e:
                    21:f2:a9:64:97:c9:b9:17:e6:73:b0:d0:70:a4:b6:
                    03:e5:64:24:c9:cf:dd:84:ae:49:cb:10:bf:1b:ff:
                    e4:57:3b:e5:60:59:83:6c:cb:58:a7:14:cc:79:0d:
                    ff:15:6b:c2:4c:9b:3c:8d:35:33:28:51:cb:73:36:
                    b1:fa:c7:e6:70:fe:40:36:a1:6c:52:a8:c7:b8:d3:
                    e1:99:04:f8:c6:43:b0:e3:5f:d8:c0:d2:47:46:8f:
                    94:45:4a:52:d2:c3:26:90:c7:4e:f5:ab:bf:78:ad:
                    57:89:fb:3e:77:75:fc:f2:07:4d:c4:86:a2:76:61:
                    34:3a:c4:f5:65:d0:f2:00:f0:19:04:3e:8d:d9:17:
                    90:a3:4f:64:79:04:92:94:4d:31:9f:0d:ff:d5:73:
                    4f:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:26:09:79:B6:D3:DD:C9:6E:86:6A:28:0B:26:9E:71:44:46:3B:83
            X509v3 Authority Key Identifier:
                keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/YyYJebbT3cluhmooCyaecURGO4M.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2402:c340:e168::/48

    Signature Algorithm: sha256WithRSAEncryption
         96:49:69:f0:18:c1:1b:f9:d3:3e:b0:87:dc:e9:8f:df:b7:a4:
         42:df:ea:77:9d:7a:7e:7e:ff:74:ca:d4:d2:15:cb:b0:bf:58:
         e3:00:0b:55:8c:f8:d9:fa:67:8e:70:9a:46:42:78:10:0e:54:
         89:81:b0:22:75:97:e8:ed:89:5b:fd:91:22:59:16:c4:30:c9:
         e6:1b:8e:e1:56:83:ae:78:2f:75:cc:09:33:db:3d:88:2c:94:
         8b:61:18:5f:38:2a:3c:90:16:d5:bb:53:4d:53:dc:c3:b4:e5:
         94:85:37:f9:9e:a6:b2:17:ae:ef:09:72:d9:17:f3:e5:95:04:
         70:cf:bc:29:30:cc:de:b3:78:ec:be:54:16:3c:09:e5:f0:92:
         7d:f1:c5:0a:f5:11:c1:17:14:08:2a:3c:5b:eb:da:95:3c:c9:
         81:65:22:a0:bc:7a:95:f9:89:be:16:e3:81:fc:07:ef:93:29:
         52:f4:e2:b2:4a:65:ca:b0:e1:05:54:5b:07:df:f3:11:b8:1f:
         c2:80:ed:dc:94:f1:40:af:c0:00:6b:c4:af:a7:88:36:60:95:
         b0:a5:59:5d:30:ff:ed:d4:ec:8d:0e:33:6b:1d:82:6c:0b:35:
         12:72:2c:56:c6:61:79:47:bd:5d:8c:0b:69:3f:ef:01:e7:e3:
         24:e7:e2:18
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org