Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/JNhFnODaa9Vu-xDH1lP8ckPe-7w.roa
File:                     JNhFnODaa9Vu-xDH1lP8ckPe-7w.roa (raw, json)
Hash identifier:          k+NXvGIQBusS9OG+ecAVwFIJZH22O5UFa5mSWRQ9RYw=
Subject key identifier:   24:D8:45:9C:E0:DA:6B:D5:6E:FB:10:C7:D6:53:FC:72:43:DE:FB:BC
Certificate issuer:       /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial:       0A97
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/JNhFnODaa9Vu-xDH1lP8ckPe-7w.roa
Signing time:             Thu 15 Sep 2022 02:50:59 +0000
ROA not before:           Thu 15 Sep 2022 02:50:59 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     4780
IP address blocks:        61.58.159.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2711 (0xa97)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
        Validity
            Not Before: Sep 15 02:50:59 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=24D8459CE0DA6BD56EFB10C7D653FC7243DEFBBC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:24:57:28:2f:5e:11:e1:12:ab:7b:b9:c7:3c:
                    5d:d4:74:17:46:a8:33:f2:bf:3f:9a:5e:b7:da:be:
                    1f:23:ef:2b:f0:0a:3d:a5:06:e4:ce:fc:77:a2:e7:
                    87:cf:bb:3a:88:33:3a:25:25:98:ab:4e:e6:d1:6c:
                    27:7e:0e:b7:67:1d:95:01:bc:da:d9:f0:f4:c2:59:
                    83:d9:37:1b:ae:d2:0c:6c:ef:53:07:c7:f7:e1:23:
                    e0:89:bf:df:e6:c3:59:3c:35:da:2d:fc:a6:ff:af:
                    cd:30:da:78:1a:fb:b2:21:19:f6:27:c3:a0:eb:98:
                    18:fe:b1:9c:fc:50:9e:44:de:40:8e:9a:ea:cb:43:
                    57:59:3f:7b:31:46:1f:e6:22:8d:d4:3a:17:7e:e9:
                    77:8d:17:2a:70:18:99:dc:43:3b:e7:d2:17:c5:ad:
                    bd:ac:18:ee:7c:7f:41:7c:a9:10:c9:67:8e:ba:56:
                    72:03:eb:c2:ba:c2:8d:f6:dc:f5:83:40:d8:83:19:
                    a1:cb:b2:7f:da:67:63:38:ae:aa:58:3d:99:90:31:
                    1e:bd:3c:e0:39:e9:3e:ef:8a:5e:69:1c:2f:51:53:
                    ae:b4:46:1c:62:ea:71:ae:32:ac:26:4b:26:7b:3f:
                    a7:18:99:7b:80:a0:2a:5a:b0:35:2e:bb:1d:d6:ce:
                    f9:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                24:D8:45:9C:E0:DA:6B:D5:6E:FB:10:C7:D6:53:FC:72:43:DE:FB:BC
            X509v3 Authority Key Identifier:
                keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/JNhFnODaa9Vu-xDH1lP8ckPe-7w.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  61.58.159.0/24

    Signature Algorithm: sha256WithRSAEncryption
         23:ad:54:ba:1d:0b:1e:4a:67:33:a7:f6:dc:02:5e:26:4b:a9:
         26:4b:0f:5f:7b:92:ea:a9:ea:43:45:8f:71:31:55:b4:b2:51:
         69:36:99:40:a5:68:01:65:4e:07:41:fa:1a:0c:97:d9:2f:c7:
         6b:db:42:d4:eb:47:9a:e1:3a:3e:b8:50:1c:d6:6b:95:d8:ac:
         28:88:c6:91:98:a7:b9:e5:a1:b4:65:8a:38:70:e7:95:81:f2:
         f0:4f:8f:06:b3:94:2b:33:36:77:43:e6:45:0e:57:45:41:7f:
         34:38:0f:1d:ff:3f:6d:85:4b:0b:3f:fd:50:70:18:f8:ba:11:
         06:e5:f2:40:b7:07:7c:b5:ca:77:20:e8:18:48:37:66:99:31:
         1d:5f:e5:f0:d9:86:1d:e1:9a:5e:e2:b5:3e:77:79:2d:19:13:
         c3:7f:82:1e:fe:65:11:6a:66:21:ba:1d:f1:36:d7:f1:c9:29:
         bd:d6:6b:8e:a5:59:27:f0:49:3c:ec:98:fd:9a:40:3c:69:c7:
         c9:08:4a:8e:01:f9:7e:1d:d1:8b:dd:c4:86:03:1b:97:82:1c:
         8d:a1:77:e5:11:ec:27:4e:74:6b:d1:34:54:7f:33:0c:aa:9a:
         78:c3:e2:ec:bc:b1:c7:6a:27:82:5f:35:5f:eb:ea:8b:02:ed:
         8b:bc:bc:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:45 2024 by rpki-client on console-fra.rpki-client.org