Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NdV5nvyen56v0zy9gs4zaAvfP0s.roa
File:                     NdV5nvyen56v0zy9gs4zaAvfP0s.roa (raw, json)
Hash identifier:          bWEbk+QMDn7pKqcop+R3hA0OVfnJ5V21egHN9HKViiM=
Subject key identifier:   35:D5:79:9E:FC:9E:9F:9E:AF:D3:3C:BD:82:CE:33:68:0B:DF:3F:4B
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       0CE4
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NdV5nvyen56v0zy9gs4zaAvfP0s.roa
Signing time:             Tue 29 Sep 2020 09:53:56 +0000
ROA not before:           Tue 29 Sep 2020 09:53:56 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     38841
IP address blocks:        123.193.128.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3300 (0xce4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 29 09:53:56 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=35D5799EFC9E9F9EAFD33CBD82CE33680BDF3F4B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:da:31:fe:55:95:63:ea:31:73:6d:7d:db:fd:
                    55:93:67:ae:4d:1f:4f:95:ef:a3:ee:95:0a:c2:b6:
                    96:84:26:0c:c0:d6:bd:21:04:b3:13:6d:ea:91:a4:
                    fa:70:f1:f7:57:da:21:d9:10:70:d1:b8:9e:9d:75:
                    ca:63:20:b7:cd:f8:f6:3d:ad:65:26:74:af:b6:56:
                    4f:c7:66:19:b6:ab:3d:af:8a:bd:db:94:4f:be:9b:
                    ef:6e:68:49:56:ef:fb:66:56:09:3f:d6:f2:5e:17:
                    31:4a:22:4b:a5:84:48:45:2a:84:d0:19:25:1d:72:
                    c9:57:d3:4c:01:5f:b5:ce:89:df:41:78:46:c4:89:
                    d9:b6:1a:d0:9e:a3:7a:18:7a:7f:69:f4:07:7f:99:
                    d3:0e:26:38:fa:1d:70:64:ea:d0:ea:9b:3d:c1:7d:
                    7f:a1:b6:cb:d0:01:f4:3e:8e:90:7c:88:6e:1c:e0:
                    45:18:05:30:f9:28:4b:a1:39:49:1c:7c:a5:b3:20:
                    d6:9a:0a:8c:f2:ed:69:38:c9:d4:5d:04:c9:a1:be:
                    2d:6a:b3:c4:11:aa:35:02:4f:d3:d1:f8:f9:dc:39:
                    4b:2e:fd:07:ba:42:e3:64:05:56:d7:f0:99:18:ee:
                    0b:1f:09:36:32:71:74:c5:57:c7:19:61:7c:03:ed:
                    0d:c3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                35:D5:79:9E:FC:9E:9F:9E:AF:D3:3C:BD:82:CE:33:68:0B:DF:3F:4B
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NdV5nvyen56v0zy9gs4zaAvfP0s.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.193.128.0/22

    Signature Algorithm: sha256WithRSAEncryption
         b2:d8:7a:da:e1:3a:97:f6:41:8f:72:6a:ad:62:06:e4:59:ac:
         e4:19:af:d5:e3:9a:ee:31:f9:14:f8:fe:52:c3:75:22:f8:47:
         26:c2:cd:fa:b8:c2:30:75:5d:3c:34:00:e1:06:a1:dc:be:7b:
         31:d5:44:a4:b4:c4:6b:46:2b:88:a1:a0:29:8a:21:54:b0:2d:
         01:30:66:50:2f:1c:50:1b:a6:ac:48:1f:4d:cd:d4:52:21:e5:
         d0:c8:08:6b:cf:ac:66:7e:04:d0:a4:50:e8:ec:ff:b1:9b:a6:
         e3:65:ec:e3:e1:30:6f:4e:0c:40:8d:fa:67:75:10:89:d1:88:
         03:4a:73:bb:2a:b5:60:ff:12:11:2b:dd:ed:09:b2:96:27:b6:
         64:00:5b:2b:81:e7:cc:e9:e4:cd:0a:18:72:44:d3:aa:44:ad:
         3a:da:fd:f9:35:be:4f:00:19:64:c4:7d:56:d9:8d:c0:8b:d4:
         3b:2e:8f:31:8b:87:ea:c9:7e:0c:12:dd:f7:ef:47:09:cb:fc:
         47:66:54:16:bc:95:c2:b6:72:c4:a2:47:65:80:52:22:92:39:
         d6:06:26:fc:85:70:25:6b:0d:65:49:cd:36:c1:0d:2b:eb:0c:
         8c:73:d7:97:ec:08:dc:52:83:63:97:29:c4:f1:9d:ef:86:94:
         6f:10:ce:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org