Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/jw5vx5wPvyp3HXfc2Nu926twY6E.roa
File:                     jw5vx5wPvyp3HXfc2Nu926twY6E.roa (raw, json)
Hash identifier:          Vng2kdOKBASpbI9iefmD03Ticktp6XYx8SQk2VeBxEk=
Subject key identifier:   8F:0E:6F:C7:9C:0F:BF:2A:77:1D:77:DC:D8:DB:BD:DB:AB:70:63:A1
Certificate issuer:       /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
Certificate serial:       107A
Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/jw5vx5wPvyp3HXfc2Nu926twY6E.roa
Signing time:             Thu 13 Oct 2022 08:50:08 +0000
ROA not before:           Thu 13 Oct 2022 08:50:08 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     131621
IP address blocks:        101.101.101.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4218 (0x107a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965
        Validity
            Not Before: Oct 13 08:50:08 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=8F0E6FC79C0FBF2A771D77DCD8DBBDDBAB7063A1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:33:53:22:1b:6b:6d:94:9c:38:c1:d9:7c:57:
                    42:78:10:e6:6e:6c:ce:87:41:e2:ea:8c:41:fb:e6:
                    51:fe:ca:09:e2:8a:2b:d9:d5:df:cc:13:80:b6:dd:
                    05:ed:53:8e:6e:d2:a4:88:c8:d4:0d:c1:96:9f:6e:
                    92:9d:fd:80:c3:67:a8:20:b1:72:2c:49:59:a3:da:
                    b8:5e:c0:40:6b:92:0b:88:6b:e2:67:c4:04:09:b9:
                    8f:9d:32:20:c7:61:52:19:22:17:a6:17:ee:0d:5d:
                    3c:1e:52:31:98:dc:fb:02:26:09:5f:67:22:78:1e:
                    fa:9b:56:7f:4d:4c:f2:2e:30:a1:cc:c7:11:03:b8:
                    4d:f8:4a:0e:3b:e4:1b:24:d3:7e:6d:f6:99:4d:c0:
                    90:56:05:8d:7f:93:e6:33:bc:b4:22:d9:1f:7a:8a:
                    07:59:a4:10:67:6c:18:a1:5f:2d:70:e0:0f:2d:63:
                    79:04:77:f7:50:46:63:6d:ae:e1:74:6b:04:2b:bc:
                    cf:b9:7b:88:8a:1d:54:dc:a2:cf:28:c1:da:b1:92:
                    2b:87:8e:54:71:68:66:94:b0:f9:ac:89:bc:52:6e:
                    3c:a6:e9:5d:58:a0:77:c0:46:eb:d0:39:d1:45:0d:
                    e8:cb:25:64:38:64:91:9f:b5:18:79:77:1d:e4:60:
                    5e:99
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:0E:6F:C7:9C:0F:BF:2A:77:1D:77:DC:D8:DB:BD:DB:AB:70:63:A1
            X509v3 Authority Key Identifier:
                keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/jw5vx5wPvyp3HXfc2Nu926twY6E.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  101.101.101.0/24

    Signature Algorithm: sha256WithRSAEncryption
         08:69:12:1c:7c:41:b7:9e:f4:1b:3f:31:97:99:41:c9:70:21:
         3f:c5:78:da:ed:19:aa:43:c6:29:31:04:ac:f7:cb:47:d5:f7:
         b8:fc:8a:14:ba:b1:ec:1f:64:c0:b5:22:ca:6d:9f:a0:fc:14:
         41:8c:b9:2c:a0:c2:83:68:93:37:d5:c4:67:15:e1:c4:62:2a:
         67:9c:bf:12:19:72:5b:b8:70:c7:20:4e:c4:9c:bc:81:00:a8:
         ff:b1:05:5d:c1:19:6d:af:44:9c:ab:b8:1b:b1:7d:32:01:6e:
         fb:0d:21:ad:92:55:64:29:17:82:70:51:d6:d6:7e:db:04:52:
         4e:1d:6b:75:31:b6:3a:22:75:c8:0b:95:a8:c0:65:7f:1c:b9:
         58:80:83:6e:31:2a:66:be:99:35:75:61:a4:ff:cf:7d:04:11:
         67:5b:1f:82:1b:e2:51:cd:d6:2f:36:a2:5d:b1:22:d7:7c:f0:
         7b:fc:75:71:a4:21:bf:83:5d:6d:67:fc:9f:64:95:a8:65:dc:
         66:21:b2:32:28:1b:bf:d5:9e:f1:1a:d9:ee:2a:13:d0:fc:ad:
         b0:0d:8b:75:8a:6f:57:53:43:8f:28:ed:60:49:7c:2e:cd:e5:
         98:bb:07:af:ca:66:73:97:c3:fe:61:89:ce:f4:48:c6:7e:70:
         4e:53:39:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org