Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dyPLVWkYYtavmPCNVBZ8O5qqSpI.roa
File:                     dyPLVWkYYtavmPCNVBZ8O5qqSpI.roa (raw, json)
Hash identifier:          iJ+DW/NjD66VtG3EpnzLValwPka/tvUztouR8L5HqnU=
Subject key identifier:   77:23:CB:55:69:18:62:D6:AF:98:F0:8D:54:16:7C:3B:9A:AA:4A:92
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       189F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dyPLVWkYYtavmPCNVBZ8O5qqSpI.roa
Signing time:             Sun 07 Feb 2021 12:50:27 +0000
ROA not before:           Sun 07 Feb 2021 12:50:27 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     9924
IP address blocks:        118.232.0.0/15 maxlen: 15

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6303 (0x189f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Feb  7 12:50:27 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=7723CB55691862D6AF98F08D54167C3B9AAA4A92
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:7e:b9:99:6e:8c:6c:ee:31:29:b8:80:cb:f3:
                    16:31:2d:1d:2e:9e:ee:9d:5a:9d:d3:43:a1:d6:d1:
                    32:f6:5f:7b:36:42:a0:f1:68:4a:92:75:ef:b9:da:
                    5f:d8:a1:5c:e0:16:56:1e:b1:80:8f:7f:f3:8b:18:
                    1f:c3:c8:ed:ef:c9:01:8a:55:a0:7a:af:1a:1d:11:
                    64:33:2c:7d:be:6f:4a:f0:a5:61:e0:65:b5:74:bd:
                    fe:70:1c:5b:55:d1:11:8d:db:74:2d:c6:9f:d5:3d:
                    7c:86:30:97:84:8d:72:17:93:08:4e:71:b5:6a:86:
                    b7:d3:dd:12:08:2f:1b:36:3c:ef:e4:70:39:c6:4b:
                    0c:56:32:04:21:6c:08:d0:c7:16:74:23:42:cc:43:
                    24:f4:dd:48:71:05:82:82:1a:ac:99:a5:26:83:39:
                    50:96:8d:fb:f1:99:51:e3:c9:33:b9:b9:20:d0:2b:
                    49:e4:cc:24:4e:2c:e2:1c:86:91:ba:90:5e:4f:df:
                    c5:60:52:58:b4:57:f8:42:29:5c:44:9a:66:e5:3b:
                    40:0b:e2:f8:4d:e7:bb:2c:99:3c:f6:28:1d:26:7c:
                    40:91:a2:ae:4c:f8:99:a2:0a:60:4a:66:44:40:9b:
                    44:ab:ec:09:40:c4:33:55:63:7c:e2:79:19:83:e2:
                    24:13
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:23:CB:55:69:18:62:D6:AF:98:F0:8D:54:16:7C:3B:9A:AA:4A:92
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/dyPLVWkYYtavmPCNVBZ8O5qqSpI.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  118.232.0.0/15

    Signature Algorithm: sha256WithRSAEncryption
         b5:a2:42:9d:53:e1:35:ca:40:0b:70:90:72:53:ab:0c:2e:51:
         23:94:8a:39:5e:61:2e:7d:7d:69:41:25:41:de:e9:8d:e5:3a:
         63:67:69:e0:62:7c:07:a8:e5:b7:c2:78:a7:09:03:81:49:77:
         b5:8d:58:96:22:cd:99:0d:a5:30:cc:61:c3:32:1c:37:9c:f8:
         85:79:e3:85:f6:ec:0c:f3:03:54:e4:4f:e2:2e:d6:fe:91:f7:
         6d:24:34:3a:84:c3:ad:f9:90:14:8e:e5:a1:24:3d:65:e0:33:
         91:62:3a:a6:5d:92:f6:92:a8:7f:dd:2c:3f:df:2c:23:f1:0c:
         84:d4:02:6d:13:99:e1:f5:9e:a1:66:49:4c:11:57:92:6e:1b:
         b3:e5:89:86:44:69:a9:c2:7b:5d:85:5b:48:3f:cc:d9:57:f3:
         ec:0f:b5:f5:e8:9c:bd:87:14:1a:6c:41:e5:5d:03:35:aa:7e:
         b6:59:72:a7:a9:5e:50:94:45:33:43:10:24:23:95:f0:a1:0e:
         df:8a:08:1d:f5:9c:fc:8f:d4:42:6e:d6:18:1f:ee:c4:4f:70:
         c0:7d:43:10:9a:8d:1d:8f:0a:a3:48:02:0e:6c:eb:32:bd:c4:
         00:74:65:e7:c3:f4:fb:f1:06:06:00:5e:c8:26:24:78:ab:b0:
         87:fe:da:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:36 2024 by rpki-client on console-ams.rpki-client.org