Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/Ew2CmihWD8lZzOX4ooxPVQcx0Ow.roa
File:                     Ew2CmihWD8lZzOX4ooxPVQcx0Ow.roa (raw, json)
Hash identifier:          Xkq83PRXepFpBET2SXgQUljO4zwdooGdtvASOWOkjQ8=
Subject key identifier:   13:0D:82:9A:28:56:0F:C9:59:CC:E5:F8:A2:8C:4F:55:07:31:D0:EC
Certificate issuer:       /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial:       08E5
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Ew2CmihWD8lZzOX4ooxPVQcx0Ow.roa
Signing time:             Sun 07 Feb 2021 13:06:58 +0000
ROA not before:           Sun 07 Feb 2021 13:06:58 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     4780
IP address blocks:        61.58.156.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2277 (0x8e5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
        Validity
            Not Before: Feb  7 13:06:58 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=130D829A28560FC959CCE5F8A28C4F550731D0EC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:a6:bb:b2:3c:a6:c7:63:98:c7:d1:56:06:61:
                    e6:bd:db:31:6f:ad:73:5d:cd:17:9f:59:03:69:80:
                    de:90:df:e6:a0:46:5a:9b:9b:67:63:6e:93:c2:f2:
                    5c:66:a7:26:e7:07:2a:33:86:37:46:a4:87:0b:dc:
                    84:5d:c4:20:7b:3e:48:49:0c:17:f7:41:43:ab:31:
                    52:c0:89:bf:c2:04:a9:3d:3b:e2:22:ba:9b:e6:c1:
                    cc:48:90:82:a3:c1:0c:7e:69:96:0c:1e:59:49:2b:
                    8f:e2:bd:46:be:48:6b:c2:e5:47:e2:b0:41:ad:3e:
                    cf:5a:ce:b4:43:14:f3:29:c5:50:de:dc:7c:ba:93:
                    b7:9c:e0:48:34:76:dd:3a:1c:6a:99:3d:87:6e:34:
                    ce:2e:20:5d:85:df:bb:01:8e:91:52:b0:85:90:3c:
                    ef:b8:f8:be:79:60:f9:bd:93:98:1f:ac:09:6c:a3:
                    4e:0a:dc:71:b0:53:83:c4:b1:d1:b5:a8:58:8f:9c:
                    ee:8c:16:f3:5d:6f:17:d7:07:69:e9:7c:ef:4d:00:
                    44:ea:97:aa:34:16:6e:cd:bf:76:dc:7c:43:0a:84:
                    27:22:23:2b:cf:b4:05:b3:b3:6f:66:3c:a9:0d:51:
                    a8:ad:55:53:3a:00:01:3c:7a:94:15:f0:37:58:6c:
                    e2:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                13:0D:82:9A:28:56:0F:C9:59:CC:E5:F8:A2:8C:4F:55:07:31:D0:EC
            X509v3 Authority Key Identifier:
                keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/Ew2CmihWD8lZzOX4ooxPVQcx0Ow.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  61.58.156.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0a:7f:f0:1d:bf:f0:84:1d:09:f9:06:01:26:a1:1d:11:5b:89:
         b6:07:51:e5:46:13:2e:cd:ea:fc:74:64:81:32:a6:99:9e:c9:
         5b:c9:64:93:e3:ce:61:6f:83:f0:5c:95:71:03:98:27:d1:ca:
         ba:c7:55:9b:37:7e:cd:f1:02:4a:4e:11:5a:d5:22:9c:a8:6b:
         8d:38:ca:de:94:5a:40:80:d9:a7:2a:b7:c0:96:be:3c:0b:ed:
         9c:cf:f4:b8:54:42:de:47:c2:42:c8:a6:8b:29:4f:9e:9d:15:
         51:09:c6:f1:61:b5:e8:4c:f4:14:3c:91:50:4d:f0:40:dc:74:
         c6:22:22:c8:f6:47:df:0f:49:2c:dc:d8:f5:a6:b5:5b:25:f3:
         8d:11:74:58:1c:49:65:8f:4f:53:ce:bb:5d:ed:1c:c5:51:ab:
         80:4e:99:4c:5f:7e:f6:ec:7e:d2:32:fd:4b:96:87:3c:95:44:
         86:f4:a8:ab:83:f7:0d:01:68:ab:32:c9:d9:2c:f1:9c:15:5c:
         57:c1:69:0d:e0:2d:7c:c3:a6:2c:40:2d:49:38:11:90:7f:4d:
         9b:8f:34:d8:4d:15:0a:9d:40:9e:ae:e7:a8:2f:2c:b3:b0:f4:
         08:dd:08:33:01:b3:ec:f2:ce:5c:9c:df:90:dd:f4:80:64:63:
         9d:fb:7c:33
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org