Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/TCPT0oRSdfniOM2E4Z7jLGpnAlE.roa
File:                     TCPT0oRSdfniOM2E4Z7jLGpnAlE.roa (raw, json)
Hash identifier:          dsaXpRrKVS0DtpdApJN3wFy3li5IZ25T3XLyHxWnTTE=
Subject key identifier:   4C:23:D3:D2:84:52:75:F9:E2:38:CD:84:E1:9E:E3:2C:6A:67:02:51
Certificate issuer:       /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial:       0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/TCPT0oRSdfniOM2E4Z7jLGpnAlE.roa
Signing time:             Thu 15 Sep 2022 02:41:10 +0000
ROA not before:           Thu 15 Sep 2022 02:41:10 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     1659
IP address blocks:        210.71.0.0/17 maxlen: 17

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3032 (0xbd8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
        Validity
            Not Before: Sep 15 02:41:10 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=4C23D3D2845275F9E238CD84E19EE32C6A670251
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:61:6c:43:c6:92:77:be:6b:54:21:94:b9:52:
                    30:01:d7:47:5e:eb:c9:41:02:fd:1a:5b:25:6b:32:
                    e3:b8:50:12:15:ab:35:26:dc:54:4e:4b:17:26:e9:
                    68:b3:d7:30:46:c6:c5:dc:ba:12:6e:f8:9d:f7:63:
                    e8:74:b0:04:68:21:69:6d:08:81:f8:df:4e:43:3b:
                    c1:0a:ae:25:25:80:4e:31:a3:ce:60:75:9a:31:df:
                    78:42:61:d9:65:60:dc:d5:33:30:75:20:e5:c4:b8:
                    f0:71:28:3c:c8:90:c2:eb:08:13:aa:54:40:2f:22:
                    21:e6:c5:8f:f9:be:dd:dd:a7:02:01:38:51:c0:60:
                    58:bb:d9:25:0b:39:0b:50:a8:47:d2:c0:c6:79:57:
                    1d:b0:e7:b2:f3:30:b4:00:a0:79:7a:78:ac:1c:d7:
                    64:65:1f:66:b5:ea:c8:10:58:ab:57:ae:c7:8f:2e:
                    32:db:31:2a:b4:0c:92:da:6c:5f:f3:2d:57:9b:ec:
                    1d:92:42:16:83:61:da:20:46:af:b0:74:b8:69:3d:
                    ef:cf:f1:c2:db:ad:81:f6:a2:80:44:81:d2:61:5c:
                    0b:29:f7:a1:27:3a:53:b2:9e:f9:6e:46:5d:6b:1c:
                    72:32:51:27:35:99:a0:63:85:cd:78:f0:e1:a9:27:
                    e1:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4C:23:D3:D2:84:52:75:F9:E2:38:CD:84:E1:9E:E3:2C:6A:67:02:51
            X509v3 Authority Key Identifier:
                keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/TCPT0oRSdfniOM2E4Z7jLGpnAlE.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.71.0.0/17

    Signature Algorithm: sha256WithRSAEncryption
         64:2f:5c:fe:c0:77:01:74:40:9d:52:86:68:06:4d:e2:55:e9:
         9f:b2:59:fa:cb:e0:f7:15:c4:f6:4b:3b:03:af:11:57:48:c2:
         ec:e7:c5:04:36:11:9e:95:41:b0:be:c6:b8:e3:cc:85:9a:12:
         cf:e1:e3:bc:f2:2c:b5:ca:af:f8:5e:d1:d5:be:d8:c5:b0:e0:
         f3:41:12:ff:11:12:1c:56:15:ec:61:23:b3:75:a9:db:2d:40:
         17:e9:99:25:f1:e0:98:db:42:c6:84:24:56:e2:3a:d7:be:db:
         05:52:1b:ad:94:63:0a:f6:74:1d:6a:77:dd:0a:66:a8:7c:ec:
         02:4e:32:5b:05:c0:40:2e:e2:d1:e8:14:f3:35:a4:6b:22:cc:
         61:87:65:cb:d6:68:65:fc:aa:7e:32:a3:3d:db:d1:90:94:44:
         20:50:32:3a:b5:51:b8:c6:16:35:9c:09:5e:75:5f:fc:91:e6:
         03:ff:d6:c0:0d:ed:88:fd:e1:15:ac:b1:7e:1f:19:d5:1c:a1:
         c6:bf:19:b0:36:b2:cc:e4:3a:75:79:7a:58:f9:dc:4f:38:32:
         38:92:74:27:ae:d2:d3:91:81:7f:eb:64:a1:13:fc:e6:2e:1d:
         cc:a7:cc:3e:29:41:e7:dd:c5:2d:bf:e4:43:74:28:70:08:4e:
         b6:11:42:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org