Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yC_mwNbrGp9Mma_a9lsFEYK6BSE.roa
File:                     yC_mwNbrGp9Mma_a9lsFEYK6BSE.roa (raw, json)
Hash identifier:          B4I8jSr3hvzpNM7LJA58+YD8QyS7/ViqB+VaIIEgbOs=
Subject key identifier:   C8:2F:E6:C0:D6:EB:1A:9F:4C:99:AF:DA:F6:5B:05:11:82:BA:05:21
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       18FB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yC_mwNbrGp9Mma_a9lsFEYK6BSE.roa
Signing time:             Sun 07 Feb 2021 12:55:49 +0000
ROA not before:           Sun 07 Feb 2021 12:55:49 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     9924
IP address blocks:        123.195.128.0/19 maxlen: 19

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6395 (0x18fb)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Feb  7 12:55:49 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=C82FE6C0D6EB1A9F4C99AFDAF65B051182BA0521
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a0:06:a4:a5:1a:0d:03:1c:93:b1:eb:5d:a5:53:
                    e7:1a:cc:d3:00:b6:b7:ed:3a:57:1e:aa:5c:9c:d2:
                    d6:ed:8d:bb:3b:51:dd:ae:2a:14:6b:0c:49:65:17:
                    0f:fe:a9:b3:0e:53:71:4c:68:97:d3:a7:56:fc:73:
                    a6:be:0e:3c:e6:0b:21:3f:d7:b2:8e:db:5a:3d:8c:
                    86:fb:ba:72:82:5a:6e:37:6c:74:a6:fd:9e:c8:35:
                    c4:5b:08:1c:11:16:3a:1a:e3:b8:8a:04:72:d3:35:
                    a8:08:85:0c:ed:20:17:1a:fe:36:37:5b:c8:d6:1d:
                    13:45:da:16:3f:10:44:dd:3e:ee:fd:6f:e8:89:09:
                    28:8a:68:9c:33:c9:35:44:cc:9d:4d:bd:3e:78:ad:
                    d4:2f:bc:d3:b9:5b:34:36:f8:a3:f7:bf:f5:91:5c:
                    f5:fa:6c:7e:d5:3f:f5:56:05:f5:42:7c:37:ec:57:
                    23:fe:55:1e:29:ca:bb:67:08:16:f3:9e:58:d6:af:
                    d0:48:a7:78:2c:28:44:a3:1f:b9:56:6e:10:f3:36:
                    d6:6f:08:0b:a5:fb:c6:1d:69:de:e9:45:c0:f5:60:
                    b8:99:8d:5d:24:52:fa:d3:0c:6c:6a:90:52:e5:8e:
                    8d:c4:37:53:74:19:30:aa:16:46:5c:3b:89:3f:83:
                    85:45
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C8:2F:E6:C0:D6:EB:1A:9F:4C:99:AF:DA:F6:5B:05:11:82:BA:05:21
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yC_mwNbrGp9Mma_a9lsFEYK6BSE.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.195.128.0/19

    Signature Algorithm: sha256WithRSAEncryption
         3f:66:c2:75:9c:ce:33:0f:db:3d:53:e8:66:18:d4:9f:0b:c5:
         24:10:1a:2c:63:04:42:11:71:d9:b2:63:e8:b3:ec:dd:e0:cd:
         42:26:0f:8d:b2:04:03:26:13:b9:1a:8c:56:20:7e:d9:c8:ff:
         7d:a1:e7:d3:25:be:2e:a8:20:b0:83:eb:a0:ad:40:b7:e9:6c:
         f8:3b:50:16:fe:ef:50:b2:b2:f9:6b:96:c5:39:f5:94:6e:80:
         c7:2a:27:b0:45:e1:f8:43:a8:b9:9f:31:4e:e3:e4:72:16:2a:
         08:c2:1a:63:0b:6a:bb:0f:14:b5:b8:17:6f:43:de:ce:ae:e2:
         fd:2b:a0:07:4a:ed:80:37:c3:2a:7e:bb:4c:52:ce:5d:b1:10:
         f6:dd:7c:bf:0a:f8:9c:73:b4:20:10:e9:8a:79:3f:a6:5e:41:
         55:59:2b:30:aa:4e:8c:ac:57:df:b2:34:b4:05:d2:a2:9c:fa:
         1b:b7:15:2a:25:31:90:a1:92:02:e7:f1:44:9d:52:e1:b8:95:
         9c:71:57:5a:a3:85:8b:c5:6a:78:a7:33:05:17:b8:af:df:c3:
         c0:9a:5b:2d:bb:e0:fc:73:89:f2:9e:0e:66:03:be:b0:17:56:
         0d:92:d2:01:c4:31:ee:0a:10:98:91:55:31:07:a9:c0:a8:e5:
         c7:40:c4:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:00 2024 by rpki-client on console-fra.rpki-client.org