Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/_yN8msW7cD_CFc3LK1RN_K5b5Ww.roa
File:                     _yN8msW7cD_CFc3LK1RN_K5b5Ww.roa (raw, json)
Hash identifier:          lleRl9xPVloBkRNTPqKTM3Q7zW8AaHegjaD0S9qWCrw=
Subject key identifier:   FF:23:7C:9A:C5:BB:70:3F:C2:15:CD:CB:2B:54:4D:FC:AE:5B:E5:6C
Certificate issuer:       /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial:       0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_yN8msW7cD_CFc3LK1RN_K5b5Ww.roa
Signing time:             Thu 15 Sep 2022 02:41:08 +0000
ROA not before:           Thu 15 Sep 2022 02:41:08 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     1659
IP address blocks:        210.70.0.0/16 maxlen: 16

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3032 (0xbd8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
        Validity
            Not Before: Sep 15 02:41:08 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=FF237C9AC5BB703FC215CDCB2B544DFCAE5BE56C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c3:f3:b4:ae:a6:1b:95:46:8f:5e:b2:25:c1:c9:
                    5e:3c:12:30:26:ba:24:0d:cc:07:98:0c:64:37:39:
                    4a:64:6c:65:40:e8:7d:60:8c:d8:a7:b8:99:7a:89:
                    f1:5c:3c:70:cc:ac:5e:b7:3d:74:f4:da:c0:f3:8e:
                    fd:41:61:6f:d4:04:6c:1b:7d:bf:b4:de:24:c2:ad:
                    ef:b8:3c:47:c0:58:0f:8b:7c:6e:e2:31:10:f3:4b:
                    2d:38:b2:ce:91:62:08:2f:82:de:39:4a:98:50:41:
                    2f:54:b1:cd:a3:2b:c0:5a:00:28:dc:40:14:ab:8e:
                    9c:82:f0:6c:ae:c4:d2:73:75:22:fb:f6:48:6e:ef:
                    2f:01:c6:20:7e:44:94:dd:59:5f:f7:9f:68:47:60:
                    15:ae:e6:ab:92:4f:3e:4b:66:a1:1c:c9:d5:c9:0d:
                    a0:21:0d:23:11:a4:ed:27:05:50:ac:14:9e:9d:8a:
                    44:2d:db:cf:da:6b:73:8d:d8:b8:b8:43:c6:00:a6:
                    80:10:08:ec:15:66:7d:d9:8f:1c:96:1d:e0:ef:1d:
                    f7:86:06:90:7d:45:1b:bb:ea:55:db:a5:e5:42:31:
                    8d:96:eb:fd:05:0b:3a:fd:2b:8e:26:ce:fb:bb:b2:
                    3b:c4:b2:43:7d:fb:12:28:61:d7:15:7a:ef:ef:45:
                    21:e5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:23:7C:9A:C5:BB:70:3F:C2:15:CD:CB:2B:54:4D:FC:AE:5B:E5:6C
            X509v3 Authority Key Identifier:
                keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/_yN8msW7cD_CFc3LK1RN_K5b5Ww.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.70.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         29:a6:95:52:0d:5d:17:ca:8a:6a:63:71:4f:ae:f3:44:0a:d7:
         3b:7e:63:de:4e:c6:d4:fe:5c:50:f9:65:8a:95:8a:33:a8:b6:
         92:b3:f7:d4:96:d3:ce:45:3f:f5:5b:cc:af:2c:4d:0d:80:fc:
         67:d8:40:7d:60:5e:4a:78:13:6a:f7:a1:8b:7b:24:d8:fc:ad:
         2e:31:95:2d:93:a1:ae:0a:ca:3f:32:2d:ed:05:2b:eb:d1:d1:
         d0:42:12:a4:d5:43:3c:45:79:a4:9b:33:63:3b:16:68:cf:4e:
         6e:00:70:7c:29:1e:66:97:f5:ff:e8:90:67:74:4c:ff:45:d5:
         a1:fd:55:9b:bd:99:20:28:f6:4a:e5:4d:81:e4:e7:c0:22:62:
         a7:c2:21:f9:03:9a:a4:2a:87:c5:cc:f0:52:67:bf:a2:b0:2d:
         d0:8f:57:38:f4:8c:a4:54:28:82:44:ad:aa:53:10:ec:0f:4b:
         01:4e:1a:9a:03:90:d5:7c:bb:19:89:f3:8b:15:a3:5b:9a:73:
         ff:44:70:1c:48:80:1e:a8:ef:d5:0e:84:c4:fc:3f:68:1a:a6:
         57:3b:b9:43:54:70:51:6d:ce:fc:4f:5e:50:ba:a3:80:65:e0:
         62:6a:3b:21:d8:58:b2:76:f3:5d:f7:76:79:43:df:1e:e6:5d:
         74:12:01:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org