Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cfPU2M2vvdFBB-5OjFWQ4bGRCl8.roa
File:                     cfPU2M2vvdFBB-5OjFWQ4bGRCl8.roa (raw, json)
Hash identifier:          OMxENQVLvj8FE6JTf9bIRWrKhFpvZnKfDgfVsBaJ2RU=
Subject key identifier:   71:F3:D4:D8:CD:AF:BD:D1:41:07:EE:4E:8C:55:90:E1:B1:91:0A:5F
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cfPU2M2vvdFBB-5OjFWQ4bGRCl8.roa
Signing time:             Thu 15 Sep 2022 02:45:57 +0000
ROA not before:           Thu 15 Sep 2022 02:45:57 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        180.177.24.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8096 (0x1fa0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 15 02:45:57 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=71F3D4D8CDAFBDD14107EE4E8C5590E1B1910A5F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:ae:e8:64:16:a7:f6:12:8e:68:8b:f5:24:11:
                    15:34:59:24:08:03:4e:18:fd:99:5c:28:86:87:83:
                    be:fe:83:25:9f:19:b9:8b:33:50:7a:2e:f5:0e:09:
                    91:ca:ae:2f:3d:8c:e9:9d:d9:97:e4:ea:67:3c:78:
                    d7:af:6e:1d:f2:51:49:05:40:73:51:67:a0:59:f3:
                    51:8f:12:54:94:43:01:ce:d9:b0:f4:b6:63:a3:dc:
                    59:bd:88:12:a0:12:d5:6d:ed:16:a9:37:4a:ab:32:
                    25:a8:80:a5:98:95:0f:90:ce:0c:b1:13:2d:af:ed:
                    35:5d:48:93:66:46:1d:47:ba:97:76:26:0a:e2:c6:
                    c4:2f:73:ff:06:7e:60:18:6c:53:fc:ed:c5:4b:39:
                    14:f4:25:92:9d:cf:14:13:4f:63:28:f3:3f:35:b4:
                    e0:69:ab:af:9c:ae:37:11:f8:73:bc:79:6f:53:26:
                    45:45:70:c7:9f:63:26:a0:0f:ac:b2:86:15:5b:b4:
                    8d:24:69:9b:cc:c4:d0:47:ed:24:7e:d4:4d:fe:c4:
                    9b:d2:c1:5f:52:3f:2c:13:ea:28:ae:02:9e:4c:41:
                    b9:89:1b:75:2a:36:fe:82:21:8e:4c:ca:8e:a4:7a:
                    af:1f:4b:31:be:3e:d9:1c:4e:a6:6b:d0:f4:bf:ea:
                    0e:51
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:F3:D4:D8:CD:AF:BD:D1:41:07:EE:4E:8C:55:90:E1:B1:91:0A:5F
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cfPU2M2vvdFBB-5OjFWQ4bGRCl8.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.177.24.0/21

    Signature Algorithm: sha256WithRSAEncryption
         45:04:60:64:29:c2:39:9a:0d:a5:44:4c:22:86:bd:40:f3:fb:
         f4:e3:5a:37:c0:a0:ae:e0:43:a3:65:3b:51:bb:3b:c6:e9:21:
         43:31:72:6f:91:08:00:46:bb:c2:55:94:1a:1a:b6:4b:fe:57:
         ec:d2:f8:39:1f:3b:e5:d4:68:9e:5a:f3:fb:78:32:f0:9f:4a:
         cb:49:aa:37:8b:0f:a3:e2:11:fe:16:b6:da:77:ce:4e:ba:fc:
         7b:96:fc:6a:e3:4f:10:10:4b:9d:b9:35:28:03:3b:dc:ad:83:
         13:57:77:c9:0a:15:ed:dd:ee:16:01:ba:95:af:63:21:22:37:
         8b:5e:69:8c:2f:73:02:fb:1b:eb:c3:0c:2b:4a:9d:e0:48:fe:
         2b:07:b7:b4:02:ba:f2:35:71:17:8a:d3:13:a1:72:46:c0:cf:
         d3:b6:92:6c:62:52:12:3e:55:cb:3a:d2:91:35:49:e8:03:a3:
         cd:4c:9e:b2:b3:dc:64:95:7f:9f:20:78:50:19:b8:21:64:50:
         c3:e5:1a:50:cc:96:34:30:03:e5:a0:f8:12:79:ce:b8:8d:52:
         db:3f:0e:36:c5:0b:f8:d5:b4:8e:91:15:27:b0:4f:d3:a4:6d:
         c7:3a:99:84:b2:87:54:68:11:bc:8f:39:3f:7e:8d:76:0c:ec:
         66:56:1b:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:55 2024 by rpki-client on console-fra.rpki-client.org