Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BKfM8L0YYGretJVOXJYIIxR6Dbg.roa
File:                     BKfM8L0YYGretJVOXJYIIxR6Dbg.roa (raw, json)
Hash identifier:          VRXeWjwcxUNL27s7ejM857Ub42ae+2F3U4WLp4hjYzg=
Subject key identifier:   04:A7:CC:F0:BD:18:60:6A:DE:B4:95:4E:5C:96:08:23:14:7A:0D:B8
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1B5F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BKfM8L0YYGretJVOXJYIIxR6Dbg.roa
Signing time:             Wed 29 Sep 2021 02:46:31 +0000
ROA not before:           Wed 29 Sep 2021 02:46:31 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     38841
IP address blocks:        123.194.240.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7007 (0x1b5f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 29 02:46:31 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=04A7CCF0BD18606ADEB4954E5C960823147A0DB8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:eb:30:29:db:e0:45:84:55:02:e4:50:ca:21:
                    14:36:99:21:88:75:bd:51:ea:10:83:e1:4e:fe:bd:
                    a3:5f:e3:f3:49:30:e0:a8:6f:d9:fe:c2:8b:c4:0b:
                    13:15:ad:eb:5a:5c:c0:a9:04:53:b3:09:ab:de:1b:
                    88:51:54:73:09:40:17:11:46:bf:cc:09:74:bb:fe:
                    13:36:81:b6:e3:a1:00:44:69:9e:6c:7a:0b:27:8c:
                    33:3c:7a:fa:dd:7e:a0:57:4b:81:c2:58:e5:c1:d1:
                    08:1a:a7:f7:f8:3e:32:fc:02:ce:31:bc:92:d3:54:
                    08:a3:98:66:eb:fd:b3:7b:2d:02:6b:57:46:50:01:
                    d4:24:d6:f2:17:79:8f:be:3d:a6:67:44:0d:39:64:
                    cf:7e:2e:1b:96:1f:3a:d0:e2:b9:ae:19:e4:c5:d4:
                    c0:96:21:7a:eb:56:81:80:b3:97:48:d3:ad:f5:04:
                    96:ab:8d:86:fc:30:ac:72:9c:c4:1e:1e:64:2e:64:
                    fb:0f:b5:d6:cb:42:46:cc:a6:77:18:56:df:e9:06:
                    21:2e:62:90:ed:15:35:97:4d:c1:d8:22:e9:14:0f:
                    a7:8b:24:ae:2d:84:9d:84:b6:ba:38:ea:50:bc:63:
                    f4:3e:88:a6:d9:70:83:df:56:5e:4c:ef:04:9b:94:
                    e3:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:A7:CC:F0:BD:18:60:6A:DE:B4:95:4E:5C:96:08:23:14:7A:0D:B8
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/BKfM8L0YYGretJVOXJYIIxR6Dbg.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.194.240.0/21

    Signature Algorithm: sha256WithRSAEncryption
         b4:31:4e:3e:0e:ab:07:73:20:18:fa:43:de:ad:37:40:76:a4:
         86:35:4f:c5:2b:75:5f:0c:59:58:ad:ee:05:3a:3c:a4:15:75:
         33:f5:cf:79:dc:97:99:eb:52:4b:4d:79:ca:90:ad:51:6a:69:
         69:45:34:f8:65:e2:95:8f:66:fb:d0:a6:a2:61:83:58:1f:07:
         62:4d:5d:3f:28:b0:de:a2:6a:88:32:9c:b3:f2:0a:91:e0:f5:
         76:22:99:c4:d4:60:02:27:ea:e1:65:46:07:71:b1:b2:b9:79:
         6e:19:4d:75:a8:f1:cd:76:da:06:c5:bc:22:0a:86:e2:71:85:
         fc:7e:21:7d:19:75:d7:5e:a2:a3:02:8b:56:be:3c:91:69:df:
         ab:7c:74:89:ea:be:67:c8:9d:89:84:02:af:13:1f:83:ca:ed:
         ec:b6:6b:9e:19:e3:09:99:c8:77:3e:c1:ce:b6:46:e0:22:4e:
         f5:89:67:17:c7:9f:10:1c:ec:49:db:ec:19:a6:5e:c3:c3:02:
         da:20:b6:81:eb:eb:d5:a8:ec:03:42:f8:88:ab:fd:c7:d0:ae:
         47:82:53:6d:7c:23:c7:51:56:9a:9d:13:fc:aa:c1:cc:53:9d:
         fd:3c:9b:60:14:11:c7:d4:6b:0f:0b:72:9d:94:ec:85:7a:00:
         31:dc:b3:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org