Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/n5mv2Gv0ysozFT-kdsbSsiEKckc.roa
File:                     n5mv2Gv0ysozFT-kdsbSsiEKckc.roa (raw, json)
Hash identifier:          hscFMzIot/Lm71n+Gtt/p26eZok1rb8vTh5inkESow8=
Subject key identifier:   9F:99:AF:D8:6B:F4:CA:CA:33:15:3F:A4:76:C6:D2:B2:21:0A:72:47
Certificate issuer:       /CN=2D7204617354D70523B6F65A270712B6B19D815E
Certificate serial:       0965
Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/n5mv2Gv0ysozFT-kdsbSsiEKckc.roa
Signing time:             Wed 29 Sep 2021 02:53:10 +0000
ROA not before:           Wed 29 Sep 2021 02:53:10 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     57401
IP address blocks:        2403:7f40:e001::/48 maxlen: 64

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2405 (0x965)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E
        Validity
            Not Before: Sep 29 02:53:10 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=9F99AFD86BF4CACA33153FA476C6D2B2210A7247
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:72:51:9a:10:b6:d9:6d:82:53:72:1b:7e:bf:
                    d5:ac:9e:b0:db:f0:9d:1c:c4:bd:ba:f4:99:68:7d:
                    e0:75:74:be:2b:6a:21:43:6e:08:0c:ce:d4:d7:bf:
                    6b:61:6a:89:b1:cf:6a:b1:b6:5c:ab:94:fa:9a:50:
                    26:c0:67:f2:64:88:84:e7:81:f2:20:b6:16:cb:e5:
                    11:fe:66:03:ee:b7:e9:7f:fd:3f:37:10:f3:4a:8b:
                    4b:70:d6:26:81:65:67:5b:f6:70:41:8a:ed:e1:4c:
                    98:aa:0b:ba:57:83:1f:53:89:f5:2f:5a:6d:72:5a:
                    ed:e3:7a:50:1a:c4:70:b8:f4:c6:2d:6d:1f:c6:6f:
                    dd:8d:38:f3:97:01:01:58:b1:76:07:eb:a9:85:bf:
                    22:01:1e:d8:1d:59:c0:4a:6d:ef:83:44:15:ca:0c:
                    20:53:d9:c0:ae:ab:c8:42:49:d1:95:8b:52:c5:c1:
                    d4:40:df:f4:1a:eb:8a:ab:1f:ee:d3:76:d2:1b:02:
                    12:9b:f1:7d:9a:2f:39:95:d4:b2:96:8f:ee:5b:0c:
                    92:63:0f:91:d4:ce:bc:fa:96:3b:fe:71:fd:fd:47:
                    3f:59:6f:5b:9a:2e:42:ef:76:7a:6c:53:85:7a:40:
                    5b:55:bc:1b:0e:66:40:61:a3:aa:0f:74:cb:f0:22:
                    20:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9F:99:AF:D8:6B:F4:CA:CA:33:15:3F:A4:76:C6:D2:B2:21:0A:72:47
            X509v3 Authority Key Identifier:
                keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/n5mv2Gv0ysozFT-kdsbSsiEKckc.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2403:7f40:e001::/48

    Signature Algorithm: sha256WithRSAEncryption
         4f:bb:8c:d0:7f:d5:54:08:f6:a8:d4:20:57:1b:46:fc:e1:78:
         97:ca:a2:56:b7:78:de:ee:cd:dd:20:95:cb:5d:79:f5:cf:bf:
         d8:c9:a4:ef:42:ed:93:35:63:07:7b:a7:74:4c:55:d7:d9:2d:
         ba:56:4f:8d:09:cc:9f:26:33:ee:36:d9:b8:53:10:f0:40:7d:
         88:7b:d0:28:41:33:e8:46:d9:ba:bb:58:f1:50:2b:67:0b:14:
         c8:28:61:8d:1f:ac:b0:72:a5:c5:e0:b7:d1:e2:7b:c2:c9:8f:
         d0:9b:31:57:1a:d1:4b:77:20:fd:6f:41:d0:72:b6:2e:66:45:
         c4:89:43:89:d6:f9:85:96:96:34:46:26:ae:7c:e2:69:0b:25:
         b2:ac:f9:7d:66:08:5f:e4:d6:3c:de:05:d8:d0:d2:82:cb:56:
         20:a0:32:2a:74:42:ac:b8:7c:25:20:60:27:6c:0f:85:f4:77:
         89:66:02:d6:4d:c1:ae:42:5f:06:89:da:54:d1:83:b6:38:38:
         13:2c:e6:fb:f8:40:26:2b:38:e1:0a:e6:39:5a:73:5f:d5:d6:
         fe:d0:3f:a7:97:dd:41:44:47:33:4b:3a:64:ef:80:83:d1:aa:
         d4:4a:c6:60:c3:09:01:f3:20:af:de:1d:0d:d2:ad:68:03:07:
         c0:fb:c1:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org