Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0JgmG3--lBYZAvZrsYQNL_lNtj4.roa
File:                     0JgmG3--lBYZAvZrsYQNL_lNtj4.roa (raw, json)
Hash identifier:          RPORlsUfwHayMr/jriGcjg9OjQBFATdJh+gbA72eijI=
Subject key identifier:   D0:98:26:1B:7F:BE:94:16:19:02:F6:6B:B1:84:0D:2F:F9:4D:B6:3E
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1D89
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0JgmG3--lBYZAvZrsYQNL_lNtj4.roa
Signing time:             Mon 04 Oct 2021 01:46:42 +0000
ROA not before:           Mon 04 Oct 2021 01:46:42 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     38841
IP address blocks:        2407:4d00:ff0a::/48 maxlen: 48

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7561 (0x1d89)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Oct  4 01:46:42 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=D098261B7FBE94161902F66BB1840D2FF94DB63E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:2a:ce:27:21:a3:2c:e5:5e:47:5d:90:38:be:
                    2c:29:2b:27:cc:6c:07:64:62:95:40:30:99:0c:55:
                    58:1a:2f:4e:ab:14:95:0c:54:13:3a:47:3c:c4:2c:
                    d2:1e:f2:10:7d:75:ba:3c:4e:32:35:da:50:3a:9c:
                    85:c6:ef:4f:79:5b:7c:cc:c0:81:72:59:6f:19:57:
                    15:0b:22:9a:dc:f9:fc:53:b4:ed:22:56:25:dd:02:
                    95:6e:89:26:f6:19:3a:e2:3a:f9:2e:83:04:27:cc:
                    b7:73:1e:42:bf:89:4e:63:6e:74:56:da:be:57:a0:
                    71:4a:a1:31:57:1b:1f:0e:ef:4c:a7:b7:64:cc:ad:
                    02:88:a9:00:19:75:73:26:1a:87:d3:a3:69:23:64:
                    d2:2e:5e:ac:3f:71:67:b3:6c:84:a7:8f:49:62:96:
                    b3:49:e5:48:ba:30:02:b3:08:ba:94:2b:ab:22:7f:
                    ee:83:6b:b2:56:b6:48:c4:bb:4c:bf:09:e1:89:a8:
                    29:74:69:91:8e:58:85:29:83:ff:1d:13:f4:9f:0b:
                    ba:26:f8:7b:4c:43:2b:17:48:b9:83:b4:c7:18:28:
                    6d:64:60:bd:82:33:f0:df:ee:dc:ab:c1:f2:13:79:
                    f4:5d:de:6d:9e:87:eb:05:90:d6:3f:54:25:45:9a:
                    e5:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D0:98:26:1B:7F:BE:94:16:19:02:F6:6B:B1:84:0D:2F:F9:4D:B6:3E
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/0JgmG3--lBYZAvZrsYQNL_lNtj4.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2407:4d00:ff0a::/48

    Signature Algorithm: sha256WithRSAEncryption
         4f:67:bf:de:94:8f:c9:7d:df:86:8c:f4:f6:25:dd:f2:22:cb:
         a4:bc:55:1e:28:ba:30:45:ca:76:53:09:4d:e8:d1:d9:a6:3a:
         11:a9:a8:bc:ea:0f:15:43:31:55:05:ae:8d:32:28:8d:d7:18:
         56:2e:28:bb:08:33:c7:54:b3:b2:d3:ea:aa:83:50:85:c7:12:
         a4:bb:96:4e:78:60:af:cb:fb:ff:74:36:2b:f1:10:30:77:9a:
         67:f3:14:5b:7f:49:bb:d1:f2:3b:dc:59:96:0d:fe:58:cc:2a:
         89:d2:34:15:69:48:d1:a0:fd:a2:c0:5d:83:27:da:4b:10:59:
         e3:6c:a4:e4:31:ea:04:67:1b:fd:7f:67:6a:da:c9:62:95:32:
         f6:fe:61:e5:62:72:ec:b0:c8:93:b2:2e:e1:e2:d8:49:6f:7e:
         be:b1:d4:bd:d6:74:94:17:e5:76:6d:9d:ec:09:da:c2:ca:04:
         17:b1:4e:2f:37:94:f5:05:85:f5:eb:3a:67:95:23:64:73:af:
         5d:78:31:18:eb:69:ac:62:8a:73:0e:3f:66:fc:ae:d9:03:af:
         1b:35:cc:01:f6:ec:7e:2a:46:28:7a:15:28:f6:59:dc:2b:e8:
         2b:3a:32:87:f4:74:c9:03:61:d1:96:19:f2:53:20:94:1a:cf:
         9d:28:12:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:46 2024 by rpki-client on console-fra.rpki-client.org