Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/V2Efoc-x87CUmZ1HnFF_4l4OB1I.roa
File:                     V2Efoc-x87CUmZ1HnFF_4l4OB1I.roa (raw, json)
Hash identifier:          kx5wgya07J72m0lMffPRiVJL+GnRlhLwnnW4Mm2o7PY=
Subject key identifier:   57:61:1F:A1:CF:B1:F3:B0:94:99:9D:47:9C:51:7F:E2:5E:0E:07:52
Certificate issuer:       /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial:       09DA
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/V2Efoc-x87CUmZ1HnFF_4l4OB1I.roa
Signing time:             Sun 07 Feb 2021 12:39:15 +0000
ROA not before:           Sun 07 Feb 2021 12:39:15 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     1659
IP address blocks:        163.28.0.0/16 maxlen: 16

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2522 (0x9da)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
        Validity
            Not Before: Feb  7 12:39:15 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=57611FA1CFB1F3B094999D479C517FE25E0E0752
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:84:0f:13:32:a3:44:11:4a:4f:04:13:34:ea:
                    e3:cd:4d:d9:4e:9e:7f:90:21:75:c1:32:23:84:06:
                    02:44:a0:0d:f2:e1:e6:e3:fb:12:54:dd:62:6e:6f:
                    10:e0:37:57:ef:86:59:a8:b6:2e:65:81:79:06:dd:
                    1c:da:ad:bc:f6:05:91:92:60:45:c1:9a:58:be:5f:
                    5f:4f:e1:6b:bb:a3:44:be:6d:67:ba:fe:70:5e:e2:
                    cc:b9:69:a4:17:6a:76:fb:b0:de:8c:ea:45:1f:29:
                    f1:c3:e2:95:c6:da:25:37:64:3f:c3:25:fe:9d:ad:
                    a7:09:02:96:f9:7d:99:6a:ac:01:9d:3d:db:52:43:
                    42:86:af:94:05:2e:07:d0:b0:fc:4c:c8:02:68:3e:
                    f6:62:2d:fa:97:9c:20:71:04:a2:ca:27:02:7d:08:
                    c6:40:6e:d9:60:ab:13:34:7c:e8:be:7f:82:a8:19:
                    7e:67:df:4b:6a:2f:ef:79:49:3d:7e:5b:46:a3:8c:
                    99:17:f5:ff:d8:ad:d4:f6:e9:2c:f5:42:c8:10:ac:
                    1c:d1:37:5d:fd:32:bb:b5:ec:6f:50:b5:a4:25:e2:
                    b1:2c:19:80:10:4e:3c:a8:24:cc:c1:0f:3a:08:9d:
                    82:e8:84:a2:ef:82:24:92:0b:d8:74:34:c5:c1:38:
                    f5:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                57:61:1F:A1:CF:B1:F3:B0:94:99:9D:47:9C:51:7F:E2:5E:0E:07:52
            X509v3 Authority Key Identifier:
                keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/V2Efoc-x87CUmZ1HnFF_4l4OB1I.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  163.28.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         57:36:8e:31:82:31:dc:8c:31:22:2c:ec:12:bf:49:76:2e:47:
         ad:ae:85:2b:5f:7a:6f:7b:01:46:89:59:55:c8:98:41:55:a4:
         d2:82:70:ff:47:e2:bf:9b:a0:e9:39:31:c9:c5:3f:3c:3a:b2:
         fa:78:c3:2b:c7:8e:3d:0b:ee:85:84:f8:4a:f2:0e:0b:f8:e5:
         b4:7f:0b:8d:a2:77:88:53:46:31:ef:c1:e0:98:28:97:c1:3d:
         ef:f7:0f:02:28:b0:19:e4:ac:dd:30:6b:c3:16:db:05:85:8a:
         e3:cf:90:78:8e:00:a0:d6:0a:e6:6b:06:ea:d5:33:b1:f9:b7:
         f9:c3:53:be:8e:91:6f:24:c9:2f:8a:36:82:72:b1:60:01:7b:
         58:dc:eb:5c:bd:48:71:d7:69:51:af:4f:cd:87:10:64:9c:b1:
         9e:86:fb:d4:75:7f:bc:3b:7e:3a:30:fa:56:d7:d2:89:54:9b:
         c4:05:04:78:57:fd:f9:df:62:fa:00:14:43:7a:92:d6:fe:20:
         7e:8d:0c:03:ab:28:40:b5:9a:87:c7:4f:53:0d:95:52:f9:d5:
         bf:91:44:8c:98:d9:7a:ef:9c:fb:99:aa:9c:0a:43:5c:30:cd:
         dd:af:d9:d0:79:e6:59:12:ce:2d:39:12:c0:ab:cc:e5:41:80:
         01:b3:fd:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org