Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UmmB7e48QKULodTHelUKLnXUqqg.roa
File:                     UmmB7e48QKULodTHelUKLnXUqqg.roa (raw, json)
Hash identifier:          vBj1+pcg3j/Tt01bSI3iWebe1w43FuTPnztHIkVAfZQ=
Subject key identifier:   52:69:81:ED:EE:3C:40:A5:0B:A1:D4:C7:7A:55:0A:2E:75:D4:AA:A8
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       17B5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UmmB7e48QKULodTHelUKLnXUqqg.roa
Signing time:             Sun 07 Feb 2021 12:22:55 +0000
ROA not before:           Sun 07 Feb 2021 12:22:55 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     38841
IP address blocks:        118.232.144.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6069 (0x17b5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Feb  7 12:22:55 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=526981EDEE3C40A50BA1D4C77A550A2E75D4AAA8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:94:e1:98:e4:a5:47:a7:18:42:5f:4f:83:00:
                    30:0c:8a:74:63:7c:85:94:77:28:c4:10:4e:57:df:
                    8e:1d:a9:79:3a:8e:2d:0e:ae:91:6d:7a:a7:64:f4:
                    68:1a:a7:b2:7e:86:17:c0:2a:77:49:01:22:97:34:
                    c6:87:f1:3c:37:ea:25:4f:4a:b8:87:12:22:5f:50:
                    23:de:f5:da:e1:10:7a:f0:e5:b2:df:11:e5:32:22:
                    6b:07:71:5c:19:f2:13:a5:e5:d7:41:dc:19:8f:a1:
                    38:13:9c:f9:13:66:c0:ea:9c:85:67:3d:c3:63:0d:
                    ca:05:16:df:bb:8e:bb:99:2b:12:4e:e3:28:7e:e7:
                    f2:17:10:84:04:c8:86:5b:cf:4b:9c:f9:05:d6:94:
                    a3:33:13:a4:58:09:e5:44:ff:01:d6:0b:98:48:40:
                    0b:3f:3b:0f:85:7b:c7:ec:6b:b9:e0:fe:e4:8f:5e:
                    f1:41:67:32:7a:f1:2d:c4:15:12:3c:da:6f:54:17:
                    2c:23:4f:14:43:f0:65:1f:8a:55:56:63:52:ee:92:
                    de:78:4d:3a:c2:28:de:4a:3b:2d:bc:37:d0:25:96:
                    d4:0b:9f:5f:fd:36:7d:8c:8b:ec:22:92:89:4a:fd:
                    0c:d0:16:eb:ff:3b:1c:23:3f:fc:e5:da:15:51:da:
                    00:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:69:81:ED:EE:3C:40:A5:0B:A1:D4:C7:7A:55:0A:2E:75:D4:AA:A8
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/UmmB7e48QKULodTHelUKLnXUqqg.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  118.232.144.0/21

    Signature Algorithm: sha256WithRSAEncryption
         6c:05:08:3f:0d:69:e1:40:f6:8b:d5:ea:47:74:37:05:cd:e0:
         24:ea:20:89:78:cb:12:e1:fd:22:04:de:8a:48:ef:e2:b6:9c:
         53:a0:77:8a:98:4e:73:3b:8a:7c:51:40:52:ab:d6:c2:53:84:
         fc:32:5c:18:79:c6:bf:b2:e2:8a:76:82:a9:be:07:06:f8:78:
         28:e3:a4:c2:8d:50:fd:f9:cf:15:01:a6:5b:96:5c:8e:27:49:
         b3:33:9f:c1:73:90:17:80:c9:40:7e:6b:97:8b:3a:c0:51:8a:
         bd:92:40:9a:bc:9c:3c:2d:47:4a:14:7e:9a:58:2d:02:94:19:
         06:b8:7f:a5:3c:a1:f2:0e:0d:47:95:00:d1:de:54:a4:8e:f6:
         0e:3b:a5:90:54:e7:ca:eb:e6:b1:96:d8:88:b7:92:bf:ea:9b:
         5b:da:00:e1:7d:df:99:cf:c5:b1:a6:dd:3d:a8:bf:5e:77:d3:
         c7:71:32:8c:89:8f:fa:15:22:21:92:2c:13:b4:95:24:29:52:
         82:d6:8f:1c:6e:45:aa:13:d4:67:5e:0e:0d:27:47:9d:d3:11:
         c5:bf:e7:11:e2:da:94:ae:63:48:fa:88:b4:62:34:ea:63:8c:
         ba:ae:71:b4:28:76:26:dd:74:d3:4a:f8:61:ef:21:f3:c4:bb:
         fe:46:0d:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:32 2024 by rpki-client on console-ams.rpki-client.org