Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YFtvO8cF8tvUbc_4xdUCjQeNBSc.roa
File:                     YFtvO8cF8tvUbc_4xdUCjQeNBSc.roa (raw, json)
Hash identifier:          qgO3QgGyXF1+HfpDrGchF7KTfMmJDoqkf3msSmovrSc=
Subject key identifier:   60:5B:6F:3B:C7:05:F2:DB:D4:6D:CF:F8:C5:D5:02:8D:07:8D:05:27
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1AA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YFtvO8cF8tvUbc_4xdUCjQeNBSc.roa
Signing time:             Wed 29 Sep 2021 02:45:34 +0000
ROA not before:           Wed 29 Sep 2021 02:45:34 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     38841
IP address blocks:        123.192.32.0/20 maxlen: 20

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6816 (0x1aa0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 29 02:45:34 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=605B6F3BC705F2DBD46DCFF8C5D5028D078D0527
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:eb:9a:17:92:16:2b:35:82:67:67:44:6b:c6:
                    2d:aa:08:e0:a1:d0:77:41:56:e1:4c:99:80:b3:21:
                    d4:f0:e4:5f:1d:17:c9:ab:89:c9:b5:7d:33:8a:cb:
                    20:f7:c8:09:37:ed:17:4d:32:64:9d:6e:1b:de:2b:
                    4a:e9:be:ea:ae:c4:1b:54:7e:97:07:41:27:9e:32:
                    03:bf:66:6d:a2:41:53:63:d7:48:68:8b:7e:8e:48:
                    ee:10:dc:9a:1f:25:8e:ff:a0:81:71:6e:07:38:a0:
                    40:ac:29:5a:d5:31:c3:3e:8d:cb:e2:38:73:9d:6f:
                    3f:02:09:5b:fb:7c:5d:6f:6a:22:d8:b3:4e:2e:79:
                    9c:3a:55:f3:71:c4:70:c0:1b:e1:7a:e4:52:f4:ea:
                    35:f0:e9:27:50:8a:cc:26:1a:47:14:6a:4f:2b:9f:
                    82:77:7d:76:97:0a:86:8b:65:de:b5:4d:a2:7e:ef:
                    9b:06:b6:d2:66:64:23:a4:e1:7a:bc:d4:f4:e7:7c:
                    fc:48:5e:e7:40:77:38:e9:07:55:e2:72:72:2e:03:
                    ba:55:1d:46:5f:ed:63:f2:0e:42:bd:24:70:48:bd:
                    7f:e1:c3:85:2e:f9:e4:d3:0d:02:22:b8:63:72:c9:
                    67:37:1e:8a:7a:f3:3c:f0:5d:42:ae:2f:bf:9e:19:
                    f0:19
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                60:5B:6F:3B:C7:05:F2:DB:D4:6D:CF:F8:C5:D5:02:8D:07:8D:05:27
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/YFtvO8cF8tvUbc_4xdUCjQeNBSc.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.192.32.0/20

    Signature Algorithm: sha256WithRSAEncryption
         6d:c0:eb:98:d7:47:9b:7e:84:ab:03:e3:0a:0f:28:c1:9b:32:
         b3:af:c2:7e:17:2e:5c:77:45:70:db:72:7e:03:cf:fc:d4:29:
         2e:7f:84:ff:67:fd:1c:4f:e5:5a:75:d7:95:f9:17:11:8b:b7:
         13:77:dd:c5:9a:75:35:2f:d2:59:06:bb:fe:96:e9:15:a7:49:
         86:23:c7:01:e9:6d:79:e7:e9:a1:7e:99:4a:9d:80:6a:13:db:
         09:fd:6f:b6:81:12:b7:6d:58:a6:db:75:94:24:15:9a:02:cc:
         9f:91:cb:92:fb:5f:d1:ab:6c:df:52:bb:25:9f:20:50:85:08:
         e0:36:e4:a8:c8:7f:ef:bf:70:a8:2d:72:26:15:3d:40:7c:7b:
         18:5a:d8:a5:ce:f8:1c:54:05:58:fe:6e:cf:ec:8d:02:fd:b5:
         24:68:63:63:35:e4:e2:49:59:90:37:8c:f1:49:3f:ef:bf:88:
         ae:9e:09:d8:5d:5d:c9:57:dc:b8:60:60:05:ec:ee:1c:61:4c:
         2e:9b:c1:2f:74:26:f8:b5:14:94:66:e9:7f:12:68:f9:3f:b7:
         18:48:06:d8:fb:8b:84:cd:2b:1d:9c:7d:a4:c9:e6:e9:8b:f1:
         d5:e2:a1:f5:d5:23:d8:a9:c4:84:78:0a:3f:79:d0:bb:62:68:
         42:d7:f7:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:54 2024 by rpki-client on console-fra.rpki-client.org