Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/bKyXAShvpBGklzXFTT_EQRwjoH4.roa
File:                     bKyXAShvpBGklzXFTT_EQRwjoH4.roa (raw, json)
Hash identifier:          MpvG8kwpybZygb/yVRjolP3SUAAUw6eolFTGfxEnCpc=
Subject key identifier:   6C:AC:97:01:28:6F:A4:11:A4:97:35:C5:4D:3F:C4:41:1C:23:A0:7E
Certificate issuer:       /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial:       0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/bKyXAShvpBGklzXFTT_EQRwjoH4.roa
Signing time:             Thu 15 Sep 2022 02:41:13 +0000
ROA not before:           Thu 15 Sep 2022 02:41:13 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     18185
IP address blocks:        120.117.3.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3032 (0xbd8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
        Validity
            Not Before: Sep 15 02:41:13 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=6CAC9701286FA411A49735C54D3FC4411C23A07E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:f5:b7:32:9b:d6:9e:b7:cb:b7:35:65:28:37:
                    60:38:af:e4:65:a6:b6:ac:64:06:06:c8:5d:dc:0e:
                    03:0a:76:02:af:d4:73:ac:8a:e3:4a:be:b9:7a:fb:
                    3c:a0:ef:15:57:38:69:ac:36:1c:3a:b3:00:69:4d:
                    5b:5e:b2:aa:e9:d2:0d:aa:9c:c3:ad:12:c2:01:71:
                    d4:f1:ec:34:44:a4:16:db:b6:1e:56:2d:61:27:64:
                    46:f8:42:70:8a:8d:6e:12:15:b8:14:72:ad:a8:79:
                    3a:91:11:39:97:23:6e:80:73:61:10:4d:40:5f:5d:
                    3d:3d:ae:59:b5:c7:df:ff:e3:f8:b5:74:4e:c2:68:
                    db:4f:1a:d6:46:a7:93:35:10:be:a5:34:1a:b1:92:
                    9d:d8:1e:3c:03:b8:0f:dd:90:38:ec:ec:24:ff:a7:
                    fc:a7:94:d7:8c:44:5a:e1:18:4d:90:70:4f:cb:f0:
                    e3:c0:99:09:36:2c:d2:10:c8:76:ee:0d:cf:f6:69:
                    86:94:8b:5e:84:02:84:51:da:2d:13:7c:fe:1d:4e:
                    19:3c:8a:15:ac:d1:62:c5:10:92:b9:0a:7e:32:8b:
                    ab:4a:1a:c3:34:f7:e1:39:56:87:e5:2e:62:d0:2e:
                    48:53:ed:ee:7a:5d:2c:ad:e6:a4:3c:fa:06:53:69:
                    4b:f9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6C:AC:97:01:28:6F:A4:11:A4:97:35:C5:4D:3F:C4:41:1C:23:A0:7E
            X509v3 Authority Key Identifier:
                keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/bKyXAShvpBGklzXFTT_EQRwjoH4.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  120.117.3.0/24

    Signature Algorithm: sha256WithRSAEncryption
         6a:09:78:dd:d3:db:93:32:11:94:14:4c:59:22:f1:84:e0:a8:
         e7:b5:eb:2c:c2:05:49:b8:9e:37:f6:41:ca:41:70:8a:44:fb:
         d4:c8:11:b7:43:27:29:80:a8:6d:74:a7:1e:43:e1:63:dd:77:
         a1:8b:e1:1d:c1:b6:56:75:86:b0:93:57:74:22:ca:bd:50:94:
         de:45:eb:f8:5a:9b:e7:5e:9a:56:22:47:9d:85:8f:cf:57:83:
         23:e6:02:e0:89:3c:72:90:ef:c6:48:f0:c4:a2:0f:3e:4d:38:
         4f:77:a7:51:80:f6:db:cb:44:ad:78:21:4f:98:8c:c6:e7:e1:
         13:22:00:bc:30:7f:d8:46:43:2b:68:7a:77:10:38:ff:20:4e:
         1f:1a:37:61:c9:c2:b1:a3:1c:e7:34:30:63:9b:53:a3:13:4d:
         34:a6:18:22:26:28:17:65:e2:f6:d8:a5:04:66:a1:68:2f:27:
         c6:8b:ac:42:d5:ea:e1:bd:77:f2:b7:59:ba:db:d9:31:06:d1:
         8f:87:b7:1a:be:1c:49:a1:e4:59:2a:cf:5c:9c:00:bc:b8:35:
         a8:89:17:4f:3b:45:fc:b5:08:6f:82:fd:9c:35:76:46:44:c5:
         b3:e3:0e:b6:f0:91:97:cd:7f:e2:2c:45:76:c8:1b:44:a3:87:
         53:7c:a3:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org