Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEICmCHdLesAQE99Bq965k4Zn6c.roa
File:                     wEICmCHdLesAQE99Bq965k4Zn6c.roa (raw, json)
Hash identifier:          EKs1UzF2pZetFHuqRJJAXxvQPzcwIy/GgQwOWwpY6Os=
Subject key identifier:   C0:42:02:98:21:DD:2D:EB:00:40:4F:7D:06:AF:7A:E6:4E:19:9F:A7
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       159F
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEICmCHdLesAQE99Bq965k4Zn6c.roa
Signing time:             Sun 07 Feb 2021 12:05:37 +0000
ROA not before:           Sun 07 Feb 2021 12:05:37 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     38841
IP address blocks:        211.76.118.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5535 (0x159f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Feb  7 12:05:37 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=C042029821DD2DEB00404F7D06AF7AE64E199FA7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:15:01:8a:d0:c2:60:4b:fb:3b:12:27:09:db:
                    40:b1:d2:f9:ab:68:34:b7:41:db:4f:8b:00:69:18:
                    68:a9:22:88:3f:d2:7f:eb:70:55:74:f9:0e:d7:d9:
                    80:d6:dc:b3:b1:ec:61:69:a1:25:7d:0b:a7:ce:92:
                    18:cd:c9:e0:ef:56:f0:8f:29:0b:ab:4c:3d:74:20:
                    1b:66:76:4b:75:0e:77:7c:22:ac:57:db:23:5a:c1:
                    4c:34:f5:71:a9:a5:1d:26:ee:e1:f2:b0:4c:8f:fa:
                    9b:ff:52:56:35:c8:13:35:f4:6e:f0:ed:93:3a:13:
                    84:65:ff:f8:a0:64:64:53:fb:d6:11:50:a1:f0:f3:
                    57:53:d8:df:15:23:80:c6:6c:00:90:94:c1:31:67:
                    5c:f6:77:71:ab:2d:92:29:61:9d:6b:91:1c:ba:7a:
                    61:8d:8f:ab:b4:6d:42:1a:5c:87:6d:d9:8b:c9:8b:
                    48:cf:d1:8d:b8:35:1f:6b:28:14:ef:11:97:df:fc:
                    5c:db:e2:4b:6b:dd:02:2c:74:0d:26:d5:f3:5c:e5:
                    06:2b:03:4b:8d:7c:d6:a3:c2:3f:c2:d5:3d:ec:73:
                    24:a7:26:c0:b2:a4:85:f0:a4:a4:4a:f2:05:c0:59:
                    95:47:c3:48:7b:1a:71:ec:d4:7f:2a:5a:ff:2d:ab:
                    2e:43
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:42:02:98:21:DD:2D:EB:00:40:4F:7D:06:AF:7A:E6:4E:19:9F:A7
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/wEICmCHdLesAQE99Bq965k4Zn6c.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  211.76.118.0/24

    Signature Algorithm: sha256WithRSAEncryption
         11:4f:c5:8d:92:36:14:79:20:0b:46:50:f4:23:13:5b:7c:a6:
         75:50:25:9e:8d:0e:a2:96:da:59:8d:97:79:46:95:7d:bd:fb:
         13:cc:8d:0a:a2:61:b6:bd:b9:4f:2d:3d:bf:9d:b0:b7:bd:82:
         3d:28:44:3e:59:c6:d1:f2:f1:25:10:b3:59:2b:7a:86:00:4e:
         b9:fb:4a:08:16:fc:e4:d2:ea:2b:09:28:81:de:4b:b3:f0:d5:
         90:84:d4:94:38:7f:ec:bc:02:96:20:96:2b:f3:6f:85:ba:62:
         39:fc:5f:e4:71:c7:29:1f:45:df:e9:bd:b3:a2:96:cb:13:8a:
         f1:dc:5b:8f:09:c0:df:b8:4d:fc:55:6a:c7:58:01:70:26:b5:
         57:7b:7a:f5:93:47:1b:96:93:fc:0b:98:7c:12:60:b7:17:6d:
         4a:c7:7b:7f:ed:40:b4:c9:8d:b1:e6:67:bc:72:3e:bc:8f:0f:
         f8:80:55:4b:80:6f:05:9a:21:5e:55:d2:f4:73:63:e3:77:72:
         75:2e:bb:5d:ed:28:c7:0b:23:32:1f:4f:1f:a6:9b:18:9a:3d:
         5c:35:c6:8b:d0:30:5f:b5:eb:45:ab:ed:2a:35:f8:2e:d3:6e:
         3e:b0:54:d7:d8:f8:5e:58:b5:17:23:54:27:48:e3:5b:72:44:
         b2:7f:4f:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:00 2024 by rpki-client on console-fra.rpki-client.org