Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_xlom-VukeiOW3Hl8j_CRoVfYP0.roa
File:                     _xlom-VukeiOW3Hl8j_CRoVfYP0.roa (raw, json)
Hash identifier:          PWwb/knSVDixrna1a/MIh4+t+7T4fdQkE7/RQ1IlBBk=
Subject key identifier:   FF:19:68:9B:E5:6E:91:E8:8E:5B:71:E5:F2:3F:C2:46:85:5F:60:FD
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1CE5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_xlom-VukeiOW3Hl8j_CRoVfYP0.roa
Signing time:             Wed 29 Sep 2021 02:48:21 +0000
ROA not before:           Wed 29 Sep 2021 02:48:21 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     38841
IP address blocks:        180.176.72.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7397 (0x1ce5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 29 02:48:21 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=FF19689BE56E91E88E5B71E5F23FC246855F60FD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:36:61:0c:3b:88:a5:a5:a7:fd:53:8c:57:c4:
                    37:34:70:5e:f8:e6:ad:18:4b:37:e1:92:50:87:e5:
                    32:58:1e:d6:41:63:20:6d:1e:29:49:68:49:93:d5:
                    b0:70:e3:b7:1d:ec:9b:58:55:c0:e0:03:80:cd:17:
                    1c:92:f6:6c:db:bc:d2:72:ef:55:d6:b2:43:17:99:
                    58:a3:bb:a1:5d:94:ac:ba:b1:0a:f9:cf:ec:4f:73:
                    b4:b5:bc:3c:d6:ac:49:9f:5e:47:7f:a7:69:ff:a7:
                    61:30:80:e3:58:e4:6d:99:5a:9e:98:e4:74:13:fb:
                    94:b7:e4:df:33:26:7d:9d:8b:8c:73:75:5f:78:2d:
                    10:7f:c8:e8:78:33:f0:26:eb:7e:9a:93:30:78:38:
                    b9:4c:18:dc:68:98:f0:b6:07:82:78:8e:41:0b:9f:
                    76:35:f4:5f:e4:ca:bb:a4:6c:7b:71:e8:f3:67:70:
                    95:ca:b3:8e:84:07:95:d5:c5:cc:10:88:97:33:88:
                    31:92:31:11:75:38:a2:b2:08:50:de:65:40:23:ab:
                    e9:78:b2:8e:0e:cd:f9:20:05:04:c5:dd:03:7d:c9:
                    fb:c9:f7:0d:09:ea:bb:78:30:ca:6c:4a:28:6b:3d:
                    f2:04:8b:6e:b0:9f:60:81:95:fa:bc:79:86:96:ed:
                    cd:75
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:19:68:9B:E5:6E:91:E8:8E:5B:71:E5:F2:3F:C2:46:85:5F:60:FD
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/_xlom-VukeiOW3Hl8j_CRoVfYP0.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.176.72.0/22

    Signature Algorithm: sha256WithRSAEncryption
         53:0c:a9:bf:4d:a0:4b:21:f4:66:86:e0:14:98:e0:cf:73:51:
         25:6e:4d:b9:46:12:65:ee:f3:b1:e7:43:cd:9d:fb:37:7f:5c:
         82:54:b7:4a:d2:65:c6:1c:84:5a:a9:ba:ff:e7:c2:52:df:6f:
         55:34:02:17:59:66:03:58:12:f7:ba:28:ea:2c:da:e8:c4:5a:
         7e:b9:14:f4:06:c6:e3:94:ea:3f:33:73:93:8d:76:63:72:d6:
         b6:63:e9:3d:28:e1:37:65:e1:61:6f:9c:15:b6:9d:52:af:8c:
         81:b6:85:8b:b6:0f:ab:ab:df:46:9e:7a:f8:24:fc:58:c0:3f:
         e9:c0:d7:02:6b:18:d1:71:0a:ea:0b:a9:76:a1:b8:8d:17:d6:
         39:d8:ff:e5:ba:6a:97:bf:46:9b:2b:15:ed:b5:3a:db:95:64:
         81:0c:68:59:c5:53:3a:43:f6:37:49:94:96:a7:79:ba:1c:ea:
         02:58:4a:6e:8e:6e:41:c0:d7:c5:3c:fa:64:4d:b1:9b:8e:19:
         29:63:de:6d:f9:15:4a:33:2e:75:88:bc:ec:dd:39:6c:65:cb:
         9e:24:c5:98:2c:a5:d4:8b:f6:c5:65:b9:7d:08:c1:d0:37:52:
         0e:c2:e0:f4:75:08:14:44:dc:a3:92:13:de:e4:3b:06:47:ff:
         73:ce:73:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org