Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/lFcJNSEy2MZ-krms84DyFsBN5Ck.roa
File:                     lFcJNSEy2MZ-krms84DyFsBN5Ck.roa (raw, json)
Hash identifier:          igwVUIHvt4V/dBRIfVljAcShmZJ+V0c4gKGHVmy8fY8=
Subject key identifier:   94:57:09:35:21:32:D8:C6:7E:92:B9:AC:F3:80:F2:16:C0:4D:E4:29
Certificate issuer:       /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
Certificate serial:       0A97
Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/lFcJNSEy2MZ-krms84DyFsBN5Ck.roa
Signing time:             Thu 15 Sep 2022 02:51:01 +0000
ROA not before:           Thu 15 Sep 2022 02:51:01 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     18049
IP address blocks:        61.60.224.0/20 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2711 (0xa97)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A
        Validity
            Not Before: Sep 15 02:51:01 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=945709352132D8C67E92B9ACF380F216C04DE429
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:fe:fd:79:95:f5:ae:96:32:5d:c9:8c:60:d3:
                    2c:85:4a:28:27:74:d5:dc:55:92:90:00:60:14:91:
                    cd:7c:9c:a7:15:2b:00:ef:8e:76:e1:6b:4e:0c:18:
                    7f:59:22:84:9a:42:21:9c:09:cd:06:28:27:a9:5a:
                    e1:6b:62:68:48:d7:5b:ce:cd:d3:53:70:31:0a:80:
                    01:d8:40:42:c0:51:da:c8:f6:f6:87:93:af:80:1e:
                    bb:cb:dd:45:5e:50:f4:0c:91:92:be:ee:fa:06:ea:
                    bc:91:e1:10:57:a0:cd:13:7d:23:c5:2a:81:74:00:
                    9a:a5:99:10:6b:ff:6b:f3:f7:ad:54:5b:c9:79:88:
                    bd:81:99:1b:d1:21:5e:f7:7d:43:e5:a8:01:99:64:
                    e5:4c:d5:9c:c5:00:5b:59:bb:0e:15:d1:dd:5d:c7:
                    54:f8:ae:a1:72:ba:1d:77:10:32:59:8f:e5:0d:6b:
                    ee:98:7d:c3:55:cc:74:18:e9:b0:a1:ae:83:3a:07:
                    4f:2b:e4:8b:65:52:9d:42:bd:b7:47:4a:c3:60:70:
                    9a:13:c5:54:a4:eb:61:31:af:5c:8b:8a:17:09:67:
                    9d:df:66:e2:3f:16:f4:cb:c5:34:07:e6:38:ae:ee:
                    65:05:a1:82:58:f2:30:0d:bb:44:8b:4b:4a:b5:69:
                    52:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:57:09:35:21:32:D8:C6:7E:92:B9:AC:F3:80:F2:16:C0:4D:E4:29
            X509v3 Authority Key Identifier:
                keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/lFcJNSEy2MZ-krms84DyFsBN5Ck.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  61.60.224.0/20

    Signature Algorithm: sha256WithRSAEncryption
         b5:0e:1c:89:47:d5:2e:0e:44:9b:d4:64:74:04:38:43:81:57:
         f7:1a:6c:5b:8a:7c:34:17:30:fc:70:12:f7:80:f0:2a:43:d8:
         0c:5d:f5:cc:a8:ef:aa:15:44:67:d5:2d:52:81:17:5b:61:be:
         bd:2b:bf:c2:74:9b:dc:57:fe:97:bb:61:54:bf:a0:e4:19:c6:
         26:35:7b:df:47:02:c3:73:ab:8d:bd:7f:ac:a5:c4:c7:30:a8:
         33:bd:55:22:e6:c6:84:19:2a:7a:84:3b:f2:fb:7d:ab:04:a2:
         65:11:c2:c1:ed:44:eb:e2:5e:59:9b:7e:b3:23:30:c7:f0:90:
         50:a3:0a:1a:3c:95:73:af:a4:87:b2:fa:df:0a:6b:9e:9c:a7:
         54:57:43:05:b5:58:9c:29:ef:80:ba:a7:8d:c2:d4:b9:f6:e1:
         e3:51:fd:fa:7a:20:d1:19:b5:a3:bd:61:f6:ff:f2:52:5f:f1:
         0e:cf:6d:5c:36:55:4f:f7:98:0b:b2:76:e0:12:2d:a4:5d:56:
         fe:b5:5b:23:ae:77:c8:99:20:8b:c5:fe:e4:ea:3f:f0:17:f0:
         a7:5a:2a:22:ea:10:70:41:ac:39:22:06:03:58:d4:96:37:06:
         13:09:16:a1:6e:fe:21:7a:b2:3c:68:2d:0a:0d:7d:60:f1:3c:
         cf:b1:b5:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org