Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/qkWrybHDGrKUiNVJaR9BCN90sWs.roa
File:                     qkWrybHDGrKUiNVJaR9BCN90sWs.roa (raw, json)
Hash identifier:          VG5IhIojTi74MXd0eUAOpMl1Jqhmu/E9vWsk0OUzet4=
Subject key identifier:   AA:45:AB:C9:B1:C3:1A:B2:94:88:D5:49:69:1F:41:08:DF:74:B1:6B
Certificate issuer:       /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial:       0ACF
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/qkWrybHDGrKUiNVJaR9BCN90sWs.roa
Signing time:             Wed 29 Sep 2021 02:41:07 +0000
ROA not before:           Wed 29 Sep 2021 02:41:07 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     1659
IP address blocks:        163.13.0.0/16 maxlen: 16

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2767 (0xacf)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
        Validity
            Not Before: Sep 29 02:41:07 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=AA45ABC9B1C31AB29488D549691F4108DF74B16B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:16:10:8d:45:b6:d9:9a:5c:f3:c6:af:b5:5c:
                    58:a7:8d:2d:bc:17:34:9b:a8:d3:b6:6d:b3:85:78:
                    7b:ff:32:72:ea:41:b8:65:45:33:b8:af:68:19:f4:
                    68:55:ab:ad:5c:6f:ad:8e:dd:30:7f:e9:03:cc:17:
                    96:cc:d5:2c:e8:03:f2:f8:35:cf:7c:9a:34:ea:77:
                    15:d2:a0:a5:34:d9:05:25:76:61:eb:d3:c6:80:6d:
                    19:fe:9d:bc:05:f1:3b:8b:6d:6d:b1:78:88:5a:eb:
                    a6:26:53:aa:58:b7:7c:d9:e0:bc:7f:ed:a5:d4:53:
                    3c:e8:06:6c:3b:c3:c2:7b:56:2a:8a:15:3a:67:dd:
                    b7:28:c2:f3:5d:94:a8:15:7d:b1:ff:ce:ab:ac:46:
                    a5:34:3c:5c:84:47:98:1d:52:6a:0a:c8:bd:5d:e3:
                    f8:78:c7:21:5c:0a:37:29:0c:03:df:bd:37:9d:5c:
                    eb:ac:a8:31:c8:76:94:a8:a2:70:7e:0f:64:8c:d6:
                    f6:fc:a1:d3:d3:db:54:5b:9a:6b:9e:c8:6a:57:6d:
                    85:a2:13:c8:31:ae:a6:04:80:c5:3c:66:e6:82:64:
                    a8:13:b4:9d:1d:c5:a4:25:74:97:f1:31:e4:69:ca:
                    06:0e:18:29:91:bf:13:e5:35:b1:a2:cd:28:7b:e8:
                    7e:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AA:45:AB:C9:B1:C3:1A:B2:94:88:D5:49:69:1F:41:08:DF:74:B1:6B
            X509v3 Authority Key Identifier:
                keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/qkWrybHDGrKUiNVJaR9BCN90sWs.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  163.13.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         4f:63:56:7c:7c:6c:ec:0f:29:a7:1d:aa:cd:77:a6:05:b5:b4:
         f7:be:65:4c:49:b1:0d:20:91:2f:88:f8:92:5a:40:2b:0a:bf:
         72:11:80:32:d1:00:cd:f6:0b:b7:97:9b:48:eb:26:ca:b7:78:
         9e:0d:d2:98:31:6c:48:82:c6:3d:45:22:08:eb:8a:9f:4d:0d:
         0f:1b:4a:80:b3:f0:eb:9c:ee:ac:40:b6:2b:ca:6b:58:17:c1:
         35:50:9e:5c:87:f3:34:fe:1b:e9:d8:7a:ca:f1:3d:29:9a:fa:
         d7:a3:58:da:2e:04:b6:56:d2:bf:69:05:6c:d1:be:19:0d:11:
         68:17:01:d4:88:c6:0b:3c:2e:da:4c:d7:00:78:ba:dd:c4:3a:
         d2:18:8e:3b:6e:52:e8:0e:54:98:c6:ad:be:72:48:07:d7:e4:
         bb:91:d0:60:1b:8e:1c:1c:0d:c1:85:2a:6e:d9:c3:ab:ed:a4:
         65:48:0f:27:00:b6:52:ba:78:0e:46:d8:55:b8:93:64:3e:e4:
         5a:3f:93:da:88:d3:9c:ee:09:d3:15:aa:43:2f:80:3a:44:dc:
         6b:b2:74:8b:97:f2:39:52:94:b6:5a:fa:b8:0c:56:4d:50:b5:
         57:78:c0:ed:14:7c:c8:9e:3d:e8:be:3f:e3:fe:59:6b:29:1c:
         0e:78:2f:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org