Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/yD6wkvTSZlu-oTYKs5-WfAXNi3s.roa
File:                     yD6wkvTSZlu-oTYKs5-WfAXNi3s.roa (raw, json)
Hash identifier:          Pm1AiXbGVoPQQuXRSHTfYesfvrvEjESOmaeFqk0uBaA=
Subject key identifier:   C8:3E:B0:92:F4:D2:66:5B:BE:A1:36:0A:B3:9F:96:7C:05:CD:8B:7B
Certificate issuer:       /CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
Certificate serial:       07B5
Authority key identifier: 45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/yD6wkvTSZlu-oTYKs5-WfAXNi3s.roa
Signing time:             Tue 29 Sep 2020 10:06:46 +0000
ROA not before:           Tue 29 Sep 2020 10:06:46 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     38844
IP address blocks:        140.122.0.0/16 maxlen: 16

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1973 (0x7b5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=457B10372A686E3FF73656BEB5CD3DEBC932371A
        Validity
            Not Before: Sep 29 10:06:46 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=C83EB092F4D2665BBEA1360AB39F967C05CD8B7B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:0a:ba:25:92:10:a3:ba:ce:94:67:ac:7e:5b:
                    09:36:6e:1d:00:e0:4f:29:5a:de:98:df:c0:42:8d:
                    11:a8:7f:49:a1:78:0b:71:1d:58:4b:22:41:cc:5c:
                    f4:90:8f:2a:0e:a5:fd:28:42:7a:dc:ca:bc:cc:50:
                    62:f8:df:b0:2c:68:99:47:2c:92:72:71:9c:2c:a1:
                    da:cc:9e:ca:e2:71:56:74:ad:21:3e:40:3f:82:8f:
                    5f:b8:92:2d:e7:bd:4a:50:88:85:89:3c:b7:db:68:
                    fe:29:f8:29:e3:ee:b6:19:98:a0:51:93:0d:2c:42:
                    eb:76:d1:ea:be:98:6a:69:e5:d6:df:41:80:42:57:
                    29:58:48:b0:90:f2:e7:2e:b5:36:b4:0b:31:cd:6b:
                    cb:c9:ae:35:c3:c3:3a:89:44:bf:f8:5b:65:70:7c:
                    df:83:25:ce:0b:a9:06:0c:48:d0:6a:0b:32:d4:cd:
                    44:08:19:e8:5e:42:97:88:53:ac:d1:50:4f:c4:60:
                    b5:12:34:9a:01:a9:ae:13:1d:33:53:31:7e:15:8a:
                    c3:f9:9a:89:24:27:5f:b2:7d:e3:8a:f7:31:06:37:
                    96:72:be:43:5d:cb:92:28:00:5e:4f:83:46:84:cd:
                    ea:b6:c3:bb:a4:ed:ae:9b:2d:f9:da:4d:80:fe:5f:
                    bf:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:3E:B0:92:F4:D2:66:5B:BE:A1:36:0A:B3:9F:96:7C:05:CD:8B:7B
            X509v3 Authority Key Identifier:
                keyid:45:7B:10:37:2A:68:6E:3F:F7:36:56:BE:B5:CD:3D:EB:C9:32:37:1A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/RXsQNypobj_3Nla-tc0968kyNxo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RXsQNypobj_3Nla-tc0968kyNxo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/yD6wkvTSZlu-oTYKs5-WfAXNi3s.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  140.122.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         6d:2e:83:5e:d8:25:29:82:2e:8d:8c:97:b6:58:9b:07:94:54:
         7a:2e:8c:cf:32:2c:49:a6:25:f4:e3:ce:9b:85:d7:b1:94:4b:
         79:4f:33:82:61:6b:c3:e7:b4:28:8e:d8:26:25:2b:95:c0:77:
         ce:92:a0:df:48:ab:b5:49:6d:db:2e:f1:38:92:d8:2e:cd:7e:
         9c:1e:f9:29:26:f4:75:a0:2e:33:16:23:c3:79:fd:ca:61:2e:
         56:72:3e:0c:02:b0:82:37:57:e9:52:a4:6a:c0:62:a2:cd:e7:
         a0:68:04:66:f9:31:a4:41:79:69:05:ae:e2:19:2a:63:fb:fa:
         ee:bf:37:e2:dd:6f:8b:b3:7f:74:e2:01:f4:8b:ab:e1:ae:cb:
         00:b1:43:05:d2:e0:c3:ea:b6:68:66:5d:91:be:35:8d:a6:5a:
         b7:9e:68:dc:c8:3c:23:06:ce:66:a3:32:09:1d:0f:b9:f9:d3:
         8a:07:83:8d:ec:66:15:f6:2e:c7:d9:f4:ba:71:77:7a:e2:1d:
         60:d4:60:f8:55:ca:95:7f:6c:80:d2:a0:cd:9a:d3:43:ab:a3:
         db:bd:ad:8b:3c:8c:02:b4:e2:e1:02:ab:4b:c3:4e:94:5c:50:
         57:ec:1c:ce:90:ee:bd:08:36:cf:0a:33:0b:d0:4a:0b:6c:09:
         6c:04:ae:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org