Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lIJL18d5vmJRmP6Vk4Rh3k06w1Q.roa
File:                     lIJL18d5vmJRmP6Vk4Rh3k06w1Q.roa (raw, json)
Hash identifier:          VqQ0egPCrafEPvABymhIcMks6d4yDm7mKJpIQOGtg94=
Subject key identifier:   94:82:4B:D7:C7:79:BE:62:51:98:FE:95:93:84:61:DE:4D:3A:C3:54
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1C61
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lIJL18d5vmJRmP6Vk4Rh3k06w1Q.roa
Signing time:             Wed 29 Sep 2021 02:47:41 +0000
ROA not before:           Wed 29 Sep 2021 02:47:41 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     38841
IP address blocks:        123.195.104.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7265 (0x1c61)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 29 02:47:41 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=94824BD7C779BE625198FE95938461DE4D3AC354
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e1:d7:d7:2b:95:6d:eb:1b:24:5d:fe:7f:df:60:
                    fa:cc:fb:6b:e6:cf:78:fe:18:6f:f2:98:e3:36:75:
                    d2:2d:b7:58:38:15:63:38:28:e6:ed:57:af:41:d1:
                    7c:3a:50:1c:7f:84:35:f8:2b:19:19:ad:55:82:a9:
                    5a:78:3a:92:b6:ca:16:01:fe:fc:81:65:76:21:06:
                    f8:a1:9c:98:41:64:b3:0a:72:0a:10:ab:5f:67:29:
                    0a:75:e9:f1:ad:39:54:1a:54:cd:53:b6:d9:a8:9b:
                    96:9d:0e:f2:95:9e:62:fc:a6:b0:98:00:2b:39:20:
                    55:4e:86:41:b8:e7:bd:68:96:b4:0f:b7:85:c4:20:
                    95:0f:4e:02:e7:20:83:e2:d8:22:f7:a7:59:5f:33:
                    2a:66:06:de:0f:1d:24:1a:72:15:6f:80:5a:76:e8:
                    4a:5a:27:e6:57:b7:12:c3:ad:59:92:f1:95:75:62:
                    5d:48:37:4c:30:d6:e6:a4:bf:82:ef:26:1a:ac:e2:
                    43:e7:fa:f4:32:31:f0:d7:e6:2c:5d:17:a1:d9:c6:
                    98:fc:85:b9:18:f8:5a:e1:2f:e6:3e:7b:4a:0d:aa:
                    1c:13:e6:1c:10:e7:c1:13:89:d9:7b:42:28:f6:8e:
                    bc:3d:64:83:2c:55:28:7e:21:d6:85:8b:fb:7c:33:
                    97:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                94:82:4B:D7:C7:79:BE:62:51:98:FE:95:93:84:61:DE:4D:3A:C3:54
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lIJL18d5vmJRmP6Vk4Rh3k06w1Q.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.195.104.0/21

    Signature Algorithm: sha256WithRSAEncryption
         a7:1c:c5:a7:ed:ac:24:24:ba:2d:0f:64:21:21:b1:eb:9f:57:
         ec:17:59:0d:60:85:8d:c5:69:ad:6e:e5:b5:11:4c:e2:40:f6:
         be:a7:d7:db:2e:1d:d6:9d:65:be:f1:25:1a:f5:c2:08:0c:bd:
         55:83:33:32:d2:96:85:26:84:b0:ea:59:2c:85:b9:16:44:49:
         a8:b7:f5:ae:1d:5a:c2:2b:52:cc:52:7c:82:78:78:a0:31:49:
         46:2c:fd:9d:ff:f1:06:a1:41:c4:aa:8d:b8:21:dd:83:27:8a:
         ae:8f:08:23:c1:3b:25:0d:c4:7e:d5:b1:aa:00:4e:20:9a:66:
         c6:07:2d:74:f0:bc:14:96:7c:6e:d3:e5:48:03:d1:c0:3e:8c:
         ba:f4:90:65:97:6d:9d:77:7f:07:bb:62:ee:ae:f1:c3:32:8c:
         66:2f:57:66:05:9e:a0:fa:ef:17:7b:63:e6:cd:fc:76:dd:76:
         c4:ef:09:3b:90:2a:26:c0:66:07:c5:79:81:fe:31:0b:22:67:
         3a:68:b5:82:5e:c8:15:72:ea:8d:ad:d0:fc:4f:48:1a:dd:16:
         7e:73:5a:c8:05:73:d6:48:d9:d4:8e:0d:8e:02:3b:5a:7d:ab:
         db:f4:0c:16:f3:af:7b:79:5c:46:d6:2d:c3:b0:bc:56:c4:c0:
         2d:52:39:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:39 2024 by rpki-client on console-ams.rpki-client.org