Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/_T9OiUtqEAVSAzNrm7xEd6xP9RY.roa
File:                     _T9OiUtqEAVSAzNrm7xEd6xP9RY.roa (raw, json)
Hash identifier:          S724ISdRUWIM55f2ZidtAoPgeh/IK+z9GtAcn/Dc6Rs=
Subject key identifier:   FD:3F:4E:89:4B:6A:10:05:52:03:33:6B:9B:BC:44:77:AC:4F:F5:16
Certificate issuer:       /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3
Certificate serial:       09
Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/_T9OiUtqEAVSAzNrm7xEd6xP9RY.roa
Signing time:             Fri 09 Dec 2022 02:37:34 +0000
ROA not before:           Fri 09 Dec 2022 02:37:34 +0000
ROA not after:            Tue 05 Dec 2023 15:30:19 +0000
asID:                     134823
IP address blocks:        2400:c9a0::/32 maxlen: 48

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9 (0x9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3
        Validity
            Not Before: Dec  9 02:37:34 2022 GMT
            Not After : Dec  5 15:30:19 2023 GMT
        Subject: CN=FD3F4E894B6A10055203336B9BBC4477AC4FF516
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:92:e3:d7:55:09:fd:c4:1e:f1:29:43:1b:9c:
                    11:3c:fe:76:24:a4:c4:e7:34:f4:e0:0f:81:08:97:
                    bd:38:e0:2d:ac:1b:3b:67:6c:00:66:fb:48:63:fc:
                    95:51:3c:c5:43:65:e3:de:12:32:f0:26:fa:24:cb:
                    5f:6f:9b:43:a9:6e:17:14:31:24:ee:a9:f7:9d:7c:
                    92:b5:93:ef:a7:6d:aa:6d:0f:98:5b:e8:ce:0f:6e:
                    47:a9:11:f2:16:11:d9:28:c6:57:2f:82:77:53:1e:
                    93:3c:10:9b:6e:ca:2c:4d:4c:14:27:0d:74:9a:89:
                    2b:f8:b2:f4:b0:04:63:65:4c:47:8b:b0:8d:8b:93:
                    27:b9:e3:98:2d:8f:59:9a:6b:f8:25:9f:e5:2b:ce:
                    ec:b3:57:2c:25:9a:5e:a4:21:17:6f:73:3d:43:54:
                    7f:a9:cf:96:df:ea:9e:21:35:f6:e7:68:1a:bf:69:
                    fa:7c:7a:d3:6a:c2:f4:b1:9d:19:96:6b:19:19:71:
                    8f:95:fd:0e:c3:2b:a4:98:14:db:bf:e2:9d:71:82:
                    23:c5:22:d1:c0:61:11:60:25:ea:9f:20:83:34:db:
                    24:40:48:fc:8d:26:12:0a:18:67:69:39:ae:02:0b:
                    67:aa:bf:c3:5e:cb:ad:34:7e:33:f5:1b:14:76:b4:
                    25:5f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:3F:4E:89:4B:6A:10:05:52:03:33:6B:9B:BC:44:77:AC:4F:F5:16
            X509v3 Authority Key Identifier:
                keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/_T9OiUtqEAVSAzNrm7xEd6xP9RY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2400:c9a0::/32

    Signature Algorithm: sha256WithRSAEncryption
         44:87:e4:29:06:88:c8:8e:e6:68:3c:69:71:2c:5e:42:b0:b4:
         ba:84:d1:18:db:a3:be:bc:ab:4f:a2:fd:c9:bf:63:98:6e:b8:
         7a:5c:3a:07:7b:70:7a:8f:90:ad:28:ce:1a:00:b3:85:7c:45:
         9a:44:eb:b1:5e:78:be:82:b1:36:7a:dc:40:e4:bc:06:b5:d9:
         34:8b:4f:fa:bd:92:cd:26:00:10:15:3c:f3:d8:d4:8c:59:66:
         14:1c:d8:ef:7d:86:34:70:56:cb:54:d9:fb:77:9b:84:eb:cb:
         3a:3e:a4:7f:7b:a5:55:08:6e:3e:41:3a:69:39:9a:8e:a9:41:
         c0:07:1d:55:8f:e0:74:f9:a1:10:b7:c0:04:e4:a8:fa:f1:cf:
         e0:5f:46:17:f3:60:ca:77:ba:60:ac:65:ed:a4:30:dc:79:2d:
         3e:cf:81:f3:77:c0:53:1a:91:d1:1d:71:2a:6d:5c:f2:63:40:
         b5:03:5a:cd:c3:a0:bc:c6:2e:4c:f2:9a:7b:08:9e:8e:8c:3d:
         fa:86:d3:b1:de:02:96:f3:d8:d6:49:27:3c:b6:8e:d0:9d:76:
         16:25:0e:1e:25:f0:bc:f2:a6:0c:db:8a:ab:2b:c8:78:01:08:
         eb:a8:53:0c:f1:6a:06:62:7e:ed:2a:eb:55:68:38:eb:8a:52:
         ab:cb:fa:55
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org