Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/eFLsO2FbfKKS2-DkOU0FvCU_QfM.roa
File:                     eFLsO2FbfKKS2-DkOU0FvCU_QfM.roa (raw, json)
Hash identifier:          CJzLP0F/t6jA+44kwyuI5q4pSkdOXs/EgtaM0IDEfTo=
Subject key identifier:   78:52:EC:3B:61:5B:7C:A2:92:DB:E0:E4:39:4D:05:BC:25:3F:41:F3
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1AAD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/eFLsO2FbfKKS2-DkOU0FvCU_QfM.roa
Signing time:             Wed 29 Sep 2021 02:45:37 +0000
ROA not before:           Wed 29 Sep 2021 02:45:37 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     38841
IP address blocks:        180.176.0.0/18 maxlen: 18

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6829 (0x1aad)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 29 02:45:37 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=7852EC3B615B7CA292DBE0E4394D05BC253F41F3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a2:82:ff:17:ff:83:5f:e9:91:67:6e:ac:d0:54:
                    70:6a:df:57:19:1b:a4:d8:8e:3f:20:92:da:88:30:
                    e7:5b:1f:e6:2c:1a:8f:e6:10:44:e3:57:fb:bc:e1:
                    4c:21:f8:a3:55:ea:75:1c:6a:b5:10:fe:52:b6:dc:
                    a3:0c:39:49:d0:18:64:f8:69:2a:a0:2c:cf:86:9a:
                    85:24:38:9d:2e:7e:1f:10:f9:b7:14:07:ef:63:12:
                    a2:55:83:a1:92:09:03:71:0d:6f:e4:07:4c:a9:7e:
                    ad:99:72:1c:1e:f1:54:3c:4d:a9:9f:ef:52:73:f0:
                    78:d3:3a:29:cc:a8:bd:14:c2:b2:6c:a1:b1:67:ff:
                    b3:5e:91:13:1f:b1:3b:78:2d:3a:81:ad:7d:47:26:
                    58:7f:f5:e3:c9:2f:5f:92:2d:ea:90:f0:fa:e7:6f:
                    ec:d3:79:4f:04:df:cf:04:8c:81:7e:06:34:8f:25:
                    c5:08:d3:4f:10:8f:a0:25:7e:f8:1b:cc:40:69:4e:
                    5b:08:44:d9:66:97:6f:02:f9:00:bd:9f:64:dc:51:
                    f8:b8:5e:36:71:37:f1:51:9b:08:10:50:a4:a9:f1:
                    8c:e3:33:b0:70:8a:b5:5f:8b:0a:e3:00:8a:98:8b:
                    e6:b4:ae:89:76:b2:ab:8b:cc:eb:f1:66:56:7e:7a:
                    7d:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                78:52:EC:3B:61:5B:7C:A2:92:DB:E0:E4:39:4D:05:BC:25:3F:41:F3
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/eFLsO2FbfKKS2-DkOU0FvCU_QfM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.176.0.0/18

    Signature Algorithm: sha256WithRSAEncryption
         a7:7d:34:0f:54:92:d6:2b:1e:a1:ce:ea:05:c2:d0:91:c8:91:
         06:a5:ac:1e:b0:99:10:68:70:52:1c:1f:38:28:b2:99:6f:94:
         f2:0f:00:f7:2c:34:3f:53:f5:e7:1a:99:14:d7:9b:c0:2f:30:
         39:14:65:59:52:09:7e:a1:f4:00:83:e0:33:e3:71:46:20:87:
         7f:b8:b3:74:a7:08:97:64:0a:fd:0c:1d:41:d9:bf:12:96:cf:
         c4:03:78:cd:4e:8c:a2:79:2f:f7:3b:83:e0:5e:27:ef:16:94:
         f5:b1:93:a2:d8:65:2b:3f:4d:b1:d2:ad:36:79:96:49:20:b5:
         1a:b8:e4:95:10:4f:fa:04:14:04:ce:81:68:bf:68:d4:95:1b:
         89:f8:7e:cb:73:b7:58:98:88:de:c7:1a:aa:fb:f5:73:6d:0f:
         0a:f1:be:b0:d2:1c:16:a6:c3:7a:fa:0b:06:a3:e3:58:2a:f6:
         ac:96:b0:2f:81:06:13:5e:c1:9a:21:d8:01:27:b4:73:c4:07:
         9d:28:40:aa:d3:b7:70:79:c7:05:89:0e:b8:b3:fe:b7:46:32:
         e9:7c:de:40:7f:f3:3f:3e:66:3c:dd:e0:65:11:b0:ff:e1:ff:
         26:45:7b:f1:1a:57:bc:c2:48:c0:7d:f7:b1:48:aa:8a:53:fa:
         3a:8c:f0:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:36 2024 by rpki-client on console-ams.rpki-client.org