Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/URTjDG4iQRjGmBZX5vQXtLljaF0.roa
File:                     URTjDG4iQRjGmBZX5vQXtLljaF0.roa (raw, json)
Hash identifier:          UO6DeXGpP/gRs9JbHMTB/t1gptzNwphw4QAF3IBU2cU=
Subject key identifier:   51:14:E3:0C:6E:22:41:18:C6:98:16:57:E6:F4:17:B4:B9:63:68:5D
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1C6D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/URTjDG4iQRjGmBZX5vQXtLljaF0.roa
Signing time:             Wed 29 Sep 2021 02:47:46 +0000
ROA not before:           Wed 29 Sep 2021 02:47:46 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     38841
IP address blocks:        180.176.168.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7277 (0x1c6d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 29 02:47:46 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=5114E30C6E224118C6981657E6F417B4B963685D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:b6:4f:df:42:56:b0:c2:de:aa:ad:53:aa:36:
                    31:38:fb:61:7a:b6:3f:61:ad:b8:c6:9d:74:ed:69:
                    cd:8c:54:64:fb:60:72:c3:f7:1d:22:12:3a:58:c4:
                    36:f9:62:c1:51:ba:d0:73:34:21:c3:50:0f:17:16:
                    a1:ff:d7:7a:9c:8a:c3:7e:7e:97:99:48:f7:70:99:
                    1f:ca:58:6f:c0:4a:ec:38:df:3d:f9:68:23:f9:e1:
                    cd:b4:00:ff:7a:94:96:ff:8c:8b:90:51:35:10:b7:
                    82:14:92:d7:5d:eb:37:be:66:24:a5:7f:4a:ff:65:
                    e2:4b:dd:ec:a9:f8:56:76:39:54:e1:3d:97:ab:65:
                    ed:84:2b:51:28:45:96:ca:72:6a:8f:05:ba:bd:d0:
                    92:1b:75:72:da:90:e8:86:5c:05:e9:d3:9e:60:8d:
                    54:7c:b0:dd:ab:4b:cb:8f:a9:34:75:be:f3:ee:32:
                    d7:25:90:3f:d9:ce:56:8a:64:4d:68:42:d9:cf:58:
                    c5:a5:42:1e:07:29:b1:7c:d1:78:7a:aa:ea:30:f0:
                    73:67:3d:0b:2e:ef:91:76:d6:81:6a:6f:89:6d:5c:
                    57:3f:83:c2:f1:b3:23:06:e9:e2:79:4a:e1:7e:d8:
                    c9:5c:57:1c:48:e5:c3:b3:80:64:73:90:ab:8c:e2:
                    76:3d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                51:14:E3:0C:6E:22:41:18:C6:98:16:57:E6:F4:17:B4:B9:63:68:5D
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/URTjDG4iQRjGmBZX5vQXtLljaF0.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.176.168.0/22

    Signature Algorithm: sha256WithRSAEncryption
         05:1e:05:a0:37:81:e7:6a:80:af:f4:20:61:3d:c3:d4:24:a7:
         78:d4:32:d6:90:0f:e7:1f:cd:bf:f0:dc:aa:a8:11:ca:5e:a7:
         56:d3:a7:5e:90:3b:5f:f6:15:d3:18:47:c8:cd:29:92:ed:1a:
         e1:53:10:23:eb:d6:f6:4b:f4:34:4f:27:1c:22:fd:8d:6f:95:
         27:38:23:a4:8a:4f:b1:a2:99:79:ce:99:74:1e:69:7d:02:6f:
         0c:09:6a:36:98:cf:58:d2:fc:4f:ff:77:ce:1f:d3:05:e4:5d:
         1c:30:e0:fd:3b:d3:3c:db:80:52:f2:73:0d:bd:c1:54:6b:53:
         b4:e2:07:00:f9:b5:83:43:63:f9:15:80:c1:23:ab:ef:8a:c7:
         8b:0c:2f:63:47:77:f9:c5:63:e1:14:6c:9b:57:fa:ea:57:6e:
         0c:72:19:b3:02:f3:bf:9b:74:aa:1c:33:7f:c4:99:b3:8b:07:
         21:aa:00:87:e2:68:ac:53:a1:21:ec:70:5f:a5:9f:f6:88:e8:
         5b:86:5e:a8:69:fa:32:8a:f5:b8:87:a1:24:48:55:51:51:68:
         0d:04:20:f4:8e:34:65:c3:a6:55:21:f9:04:10:23:6f:b8:e6:
         94:df:ec:c8:8b:56:70:76:c2:85:ea:94:f9:fc:34:2a:fa:e6:
         54:c8:0e:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-fra.rpki-client.org