Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/EoWffEBTODm-9egUs1MGOb4QirA.roa
File:                     EoWffEBTODm-9egUs1MGOb4QirA.roa (raw, json)
Hash identifier:          aO2WVmLKyC6zCPx4EIElOMdGYns72ZHEv2xBkXfXxlA=
Subject key identifier:   12:85:9F:7C:40:53:38:39:BE:F5:E8:14:B3:53:06:39:BE:10:8A:B0
Certificate issuer:       /CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
Certificate serial:       0A6B
Authority key identifier: DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/EoWffEBTODm-9egUs1MGOb4QirA.roa
Signing time:             Thu 15 Sep 2022 02:42:05 +0000
ROA not before:           Thu 15 Sep 2022 02:42:05 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     131627
IP address blocks:        101.3.106.0/23 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2667 (0xa6b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=DF5673A1972126E7D2CC5D4D51B49108345BF8C9
        Validity
            Not Before: Sep 15 02:42:05 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=12859F7C40533839BEF5E814B3530639BE108AB0
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:0a:c2:f7:c4:7e:1b:7d:b2:70:0f:b0:79:23:
                    44:77:04:4b:1a:a2:2a:28:3e:be:58:1b:54:8f:46:
                    af:db:4c:4f:93:76:88:66:4b:dd:34:4e:9f:f2:23:
                    24:f9:31:54:8c:10:2c:4b:57:e1:e4:29:74:5a:ca:
                    16:ff:6e:23:75:17:45:86:00:40:13:8b:16:2e:62:
                    ee:fd:b0:75:ee:d9:46:83:5f:00:24:7c:84:ee:29:
                    f2:1e:29:96:fa:00:d0:aa:b0:97:75:2d:2b:bb:8a:
                    ce:99:38:e4:5e:f0:d6:d1:4b:33:b3:d9:4f:d0:c2:
                    cc:53:37:25:88:68:4c:56:ec:09:13:75:40:fe:73:
                    8d:ac:c5:c7:ee:c8:f9:f1:dc:5d:14:d6:d3:ac:e4:
                    9e:4b:46:64:4c:00:10:9b:73:5f:7c:88:1f:e7:2e:
                    e3:e4:7c:b3:df:78:eb:c3:85:6c:ac:93:7e:a4:27:
                    dc:81:ed:7d:1f:8a:ef:1e:82:e3:6c:50:4d:b1:c2:
                    dd:09:28:4a:70:f1:ec:c1:99:67:b8:e9:09:87:c1:
                    ae:b9:cf:29:c4:8e:ff:fc:ac:91:73:72:ed:dd:05:
                    86:0b:0d:79:d4:f7:76:d8:a9:7f:78:e3:04:1e:89:
                    2f:1f:a9:76:b2:e3:af:c5:86:0b:75:50:ec:56:db:
                    e6:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                12:85:9F:7C:40:53:38:39:BE:F5:E8:14:B3:53:06:39:BE:10:8A:B0
            X509v3 Authority Key Identifier:
                keyid:DF:56:73:A1:97:21:26:E7:D2:CC:5D:4D:51:B4:91:08:34:5B:F8:C9

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/31ZzoZchJufSzF1NUbSRCDRb-Mk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/31ZzoZchJufSzF1NUbSRCDRb-Mk.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIFO7716/EoWffEBTODm-9egUs1MGOb4QirA.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  101.3.106.0/23

    Signature Algorithm: sha256WithRSAEncryption
         59:83:6c:59:9b:d2:d9:d5:dd:38:da:59:d6:24:13:20:23:3b:
         9f:ae:f3:13:a5:b5:47:32:8e:fe:7f:34:b8:b5:f9:c5:23:1c:
         80:0a:4b:4f:85:4a:85:de:78:19:99:48:42:c4:e0:88:93:a3:
         21:5f:c9:91:c2:96:b2:f3:09:fc:89:34:d2:eb:20:db:e5:2b:
         96:3d:2d:9c:1c:d7:17:4c:3d:01:7a:1a:0d:ca:a9:6e:e2:9b:
         a6:40:50:70:5f:dd:37:73:19:ca:d5:04:81:ce:3b:85:d2:c8:
         30:05:80:ef:65:e5:13:ca:9b:24:2f:43:4d:81:bf:58:3e:4f:
         31:fe:10:3a:7d:5a:9f:e8:10:7f:6c:74:3b:f2:d0:c7:70:84:
         8d:d3:ad:2d:d4:c3:a3:5f:b1:2a:5d:d4:eb:9c:48:2e:f5:e4:
         20:17:95:60:82:1a:70:25:5f:e5:22:9a:b2:c6:7c:4c:a4:8f:
         d9:e3:75:13:43:f5:08:fa:4e:1b:cb:9b:64:ca:cf:e1:71:b6:
         d3:cf:70:48:e9:dc:0a:f7:1e:1f:d0:79:46:d1:1a:48:77:5e:
         15:dd:75:e3:7b:53:79:b7:54:fe:9c:1a:02:99:cb:f0:6c:86:
         e4:75:86:96:38:81:e9:69:3d:cb:79:4d:ee:33:40:b5:83:ac:
         5d:ac:78:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org