Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sbKiOQ31dV-e5ujCeji_C7mteDI.roa
File:                     sbKiOQ31dV-e5ujCeji_C7mteDI.roa (raw, json)
Hash identifier:          a1oUMI6VXJ47hamrYhlODXvKk5q+HCtJyj9TbWHs33U=
Subject key identifier:   B1:B2:A2:39:0D:F5:75:5F:9E:E6:E8:C2:7A:38:BF:0B:B9:AD:78:32
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1B71
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sbKiOQ31dV-e5ujCeji_C7mteDI.roa
Signing time:             Wed 29 Sep 2021 02:46:37 +0000
ROA not before:           Wed 29 Sep 2021 02:46:37 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     38841
IP address blocks:        180.177.40.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7025 (0x1b71)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 29 02:46:37 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=B1B2A2390DF5755F9EE6E8C27A38BF0BB9AD7832
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:2a:51:d6:29:7c:d4:57:0d:4d:be:b6:16:31:
                    1f:ad:8f:9e:86:f9:ad:df:2d:c4:f0:ed:76:84:0f:
                    96:33:b6:7e:af:2b:71:a9:60:2b:eb:1f:47:74:a1:
                    f5:26:aa:4b:08:c1:9f:bd:11:74:96:e8:fb:71:8f:
                    35:29:bd:89:3b:5e:9a:7d:8b:df:54:0f:5b:0f:77:
                    0b:02:23:c3:05:d2:d1:46:d0:c1:58:86:c8:19:2b:
                    06:62:88:31:34:3f:2d:ff:08:33:62:9b:5f:a7:68:
                    5a:1d:0b:41:52:62:e2:83:2e:6f:70:ec:41:53:0d:
                    ed:aa:1c:88:5b:4f:94:22:42:7f:56:72:22:17:c8:
                    ff:d6:21:f8:77:9b:3a:b4:1f:a4:c7:a8:ae:f5:04:
                    83:b8:ba:f8:0d:97:be:c7:b1:14:ef:80:3c:97:7c:
                    cc:fa:37:b8:4e:f4:ed:2e:a3:b6:eb:3a:5e:ed:70:
                    81:f5:b2:51:a8:e0:53:cb:d8:cd:5b:14:ae:b2:05:
                    a7:01:1e:a7:bb:b9:39:71:39:af:b5:02:c3:64:58:
                    3f:06:14:0d:30:cc:ae:d6:45:cd:7d:2d:57:20:24:
                    8b:3b:88:ca:6f:42:3b:da:ae:3b:e1:3f:d2:29:4f:
                    a3:6d:b2:1d:ce:3b:14:38:56:90:23:9b:8c:19:0c:
                    9d:c7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B1:B2:A2:39:0D:F5:75:5F:9E:E6:E8:C2:7A:38:BF:0B:B9:AD:78:32
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sbKiOQ31dV-e5ujCeji_C7mteDI.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.177.40.0/21

    Signature Algorithm: sha256WithRSAEncryption
         38:1d:82:b6:74:80:9f:5f:47:d3:70:f8:a2:98:a9:f8:0d:67:
         3c:88:25:82:b0:bf:eb:e1:f4:6c:5b:93:90:c2:37:1f:13:1a:
         8d:49:52:da:42:e4:ad:e7:29:99:d5:df:fe:2b:e9:4e:9f:e3:
         bb:b9:8d:6f:b1:aa:88:9d:ae:5d:dc:5f:7f:ca:46:4f:ac:c9:
         03:3c:66:8d:32:96:fd:cc:6a:9d:78:d3:f5:48:85:e6:fc:60:
         52:9d:36:3f:d7:0e:f2:3b:85:6e:53:70:bb:9d:d3:f7:79:28:
         cf:e4:4c:2e:2d:48:eb:8f:37:b2:34:e2:52:98:b3:7d:9f:13:
         a3:f6:eb:f0:4e:2d:15:d1:96:21:9b:f1:26:a2:fd:ac:7d:90:
         4b:78:1c:0c:08:1e:ea:55:e8:11:9c:46:bb:5b:5a:5c:f0:2a:
         a8:cc:1c:61:96:06:17:cd:63:e5:16:e4:e4:8f:06:13:0e:0e:
         d2:e0:dd:cc:57:b2:cd:9c:59:7f:d8:c3:c0:cc:fb:65:31:b4:
         fe:57:65:5b:1f:c3:99:f0:45:19:fa:d7:2e:e6:e7:89:81:77:
         99:28:19:53:53:20:e2:af:05:7e:75:44:13:74:ab:97:ed:61:
         b1:36:76:2d:a4:4c:a2:04:4b:90:13:b1:04:23:e0:ee:a1:c7:
         b8:0a:cd:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:41 2024 by rpki-client on console-ams.rpki-client.org