Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/9h2BQ10igP6Iy58MOKG4IOWih2M.roa
File:                     9h2BQ10igP6Iy58MOKG4IOWih2M.roa (raw, json)
Hash identifier:          JvzUkHA4AI0f2G27ONgG74QTQi4xWqOLXm3gf/TEKKw=
Subject key identifier:   F6:1D:81:43:5D:22:80:FE:88:CB:9F:0C:38:A1:B8:20:E5:A2:87:63
Certificate issuer:       /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial:       0A92
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/9h2BQ10igP6Iy58MOKG4IOWih2M.roa
Signing time:             Wed 29 Sep 2021 02:41:23 +0000
ROA not before:           Wed 29 Sep 2021 02:41:23 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     1659
IP address blocks:        140.138.0.0/16 maxlen: 16

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2706 (0xa92)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
        Validity
            Not Before: Sep 29 02:41:23 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=F61D81435D2280FE88CB9F0C38A1B820E5A28763
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:73:0e:ce:0d:9f:a7:3e:d5:e4:ed:f7:8b:ff:
                    88:95:d9:b5:d8:0f:7a:73:5c:6e:5e:96:2f:dc:21:
                    c9:89:31:24:f0:42:94:ce:6b:6d:db:ba:e4:cb:93:
                    ca:ac:5f:44:bc:3c:60:3a:7d:a7:ba:06:5a:25:4f:
                    a4:53:f4:d3:4b:6e:89:55:15:1a:29:07:d7:91:cc:
                    41:05:f8:19:b1:5f:9c:80:5c:bc:a2:b6:a8:a1:be:
                    19:21:c8:d9:39:19:ff:08:88:c0:4e:df:ad:9b:d3:
                    9a:12:23:0b:ae:36:d6:d8:a8:4c:36:16:80:53:2c:
                    cc:28:a2:84:3f:d4:f5:12:4f:ed:f4:13:1a:da:d1:
                    d6:51:31:98:59:61:21:8a:36:14:2c:83:e7:48:f4:
                    b5:b9:59:70:a0:8c:40:07:16:b0:68:65:54:22:a1:
                    20:e9:f1:d7:c5:89:59:77:3b:6f:e3:e4:b2:4a:ad:
                    21:ba:a7:73:c9:ac:34:01:d7:c5:2c:0d:9e:31:08:
                    8a:76:7e:ea:6c:d6:0d:40:0e:17:58:09:b4:22:60:
                    9b:e1:63:27:09:c0:fd:5d:aa:af:e9:2b:22:cd:37:
                    82:d4:48:24:78:54:4f:c3:f9:7f:91:12:92:b4:9b:
                    bb:6b:82:a8:b4:81:63:7c:92:fa:c5:83:90:77:dc:
                    8c:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F6:1D:81:43:5D:22:80:FE:88:CB:9F:0C:38:A1:B8:20:E5:A2:87:63
            X509v3 Authority Key Identifier:
                keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/9h2BQ10igP6Iy58MOKG4IOWih2M.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  140.138.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         9e:57:c8:4b:14:b2:aa:f5:c1:23:48:97:3c:f2:21:49:73:5b:
         16:c5:81:90:48:c2:04:3b:a4:31:06:09:28:ae:17:dd:69:e5:
         13:3b:28:02:d5:a8:6d:0b:4d:84:51:99:08:03:75:79:df:6e:
         0f:5f:36:d3:f0:73:58:e8:f7:a1:f6:dd:0c:47:26:bc:b8:de:
         99:71:ee:97:1c:c0:e8:f4:09:04:31:dd:db:15:ec:fb:96:d8:
         d6:69:8e:f2:2d:04:b3:1b:87:fa:ad:77:a1:03:6a:08:83:22:
         b3:ec:34:03:08:68:bc:29:21:dd:81:fb:0f:00:4c:d7:5c:e9:
         0a:20:a8:82:cb:03:91:ae:53:41:4d:a1:3e:e6:d9:b7:75:a8:
         b2:d5:de:d1:27:7b:a8:5d:31:6f:b4:f8:76:9c:bb:1d:f4:9a:
         5e:a9:73:37:aa:de:22:b3:92:0c:85:db:84:75:2f:18:94:8f:
         35:97:04:9e:da:95:88:3d:50:25:62:8d:e6:03:42:88:08:95:
         de:b2:46:d9:78:24:22:69:8a:96:94:45:5b:d9:f2:2b:bf:45:
         37:fe:fd:79:ec:f5:eb:25:b4:16:65:3e:a4:d0:6b:46:88:55:
         2d:4f:9d:53:ff:7b:61:26:af:fc:73:6e:f6:f0:63:6c:06:b0:
         b3:38:53:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org