Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/4mwDsSarBURAmmmec6wqmAZyMsk.roa
File:                     4mwDsSarBURAmmmec6wqmAZyMsk.roa (raw, json)
Hash identifier:          toQ8S+czb2PjAMaEWmXmPFxol5GOmwm+YOUVv6NXvcQ=
Subject key identifier:   E2:6C:03:B1:26:AB:05:44:40:9A:69:9E:73:AC:2A:98:06:72:32:C9
Certificate issuer:       /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
Certificate serial:       0980
Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/4mwDsSarBURAmmmec6wqmAZyMsk.roa
Signing time:             Wed 29 Sep 2021 02:51:54 +0000
ROA not before:           Wed 29 Sep 2021 02:51:54 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     45474
IP address blocks:        27.105.206.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2432 (0x980)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B
        Validity
            Not Before: Sep 29 02:51:54 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=E26C03B126AB0544409A699E73AC2A98067232C9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:aa:46:71:50:1d:bf:ec:59:37:13:14:fa:db:
                    a6:60:f3:59:15:be:ec:fd:de:e2:97:ab:25:43:e5:
                    b7:84:b6:7b:63:c6:cc:e6:06:57:cd:8c:13:f4:e0:
                    45:c7:f2:c2:e0:3d:73:7d:6b:4c:b4:96:4d:fa:af:
                    81:20:0a:30:38:d5:7d:e5:79:f4:21:a4:69:cf:a3:
                    bd:c7:36:44:6d:b0:03:50:5a:62:23:ba:ec:99:5c:
                    bf:c3:37:aa:e5:8e:6f:55:b8:1e:02:9c:cf:16:2f:
                    a3:04:37:60:5e:58:80:a4:ac:94:7c:6d:eb:85:98:
                    8c:f5:d4:c6:3c:73:31:97:6c:5b:e0:0b:0d:d5:45:
                    3f:4f:63:74:d6:66:2c:8c:f1:13:8a:b3:41:c3:87:
                    34:bb:8a:1d:2e:ad:b7:51:fd:63:be:93:35:96:56:
                    a1:e8:1c:55:5f:27:d5:50:d7:95:14:bf:5c:a9:80:
                    4d:2c:07:49:91:df:e7:8e:06:2d:e6:b5:78:d0:2a:
                    4b:9b:43:81:cc:17:25:74:7d:0b:01:7c:c1:94:c1:
                    53:3d:d6:3e:bf:24:4e:15:e7:24:e1:cc:80:d6:6c:
                    09:09:b3:59:20:7d:d1:09:ed:ad:e1:ba:70:24:8d:
                    85:39:f4:45:ec:2e:8b:48:9c:6e:0e:d4:46:01:d6:
                    cf:93
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E2:6C:03:B1:26:AB:05:44:40:9A:69:9E:73:AC:2A:98:06:72:32:C9
            X509v3 Authority Key Identifier:
                keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/4mwDsSarBURAmmmec6wqmAZyMsk.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  27.105.206.0/24

    Signature Algorithm: sha256WithRSAEncryption
         78:83:70:52:02:df:5d:c3:45:bd:12:ae:bf:6e:6f:34:ca:e1:
         31:bb:67:07:cf:02:b5:1c:28:fe:1c:af:e8:78:c3:f1:61:84:
         25:cf:4b:a1:a0:cd:6e:85:d4:ed:06:3b:ee:9a:7e:72:f5:de:
         8f:6f:4e:be:83:51:9e:85:06:49:f3:5e:62:1f:60:4d:b4:17:
         32:92:f0:34:fb:42:92:f1:89:4a:58:cf:b7:a3:a4:d1:c8:ef:
         5f:60:b2:42:8e:bb:db:fc:91:f9:08:d9:31:42:d7:1a:bf:d6:
         45:f9:04:ed:ec:4d:77:af:30:ef:c4:46:11:39:05:ce:ad:fc:
         51:9b:39:6d:34:92:3d:a9:b3:24:e7:a8:0b:92:4b:4f:16:79:
         f4:af:cb:f1:2e:9a:56:1a:ad:0e:a1:15:c1:21:1e:0c:74:32:
         33:9f:cc:5c:77:cf:17:ae:01:ae:59:9c:84:41:8b:86:42:3d:
         70:37:ec:ab:3a:6d:2f:44:8d:74:7c:36:8e:2c:af:e1:e9:4f:
         d5:59:92:e9:34:91:ee:e9:29:d7:db:cd:18:93:c5:98:36:8f:
         c7:9f:f4:b6:7d:1b:34:d5:c8:4b:fa:63:e1:29:ca:ca:5d:d0:
         b0:ef:b1:a7:f0:cd:88:b4:89:28:b4:7f:02:37:05:ac:59:fe:
         1e:b7:fb:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org