Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/LP4QTDqAKHch-tD1khWoUzgV6lU.roa
File:                     LP4QTDqAKHch-tD1khWoUzgV6lU.roa (raw, json)
Hash identifier:          V9FZO1xCSrnC9OqtgTj/sX0JFwb4wJ0qcohwrRsE0lA=
Subject key identifier:   2C:FE:10:4C:3A:80:28:77:21:FA:D0:F5:92:15:A8:53:38:15:EA:55
Certificate issuer:       /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial:       097B
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/LP4QTDqAKHch-tD1khWoUzgV6lU.roa
Signing time:             Wed 29 Sep 2021 02:53:07 +0000
ROA not before:           Wed 29 Sep 2021 02:53:07 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     18018
IP address blocks:        122.255.95.128/25 maxlen: 25

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2427 (0x97b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
        Validity
            Not Before: Sep 29 02:53:07 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=2CFE104C3A80287721FAD0F59215A8533815EA55
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:e4:81:48:6d:6e:06:51:f6:97:06:cb:55:28:
                    f8:b8:d6:47:9c:33:30:00:2c:9d:b2:eb:d0:1e:e0:
                    b7:86:25:b4:f9:ab:f3:30:fb:10:4c:72:8e:f8:00:
                    51:3c:3d:c7:7d:29:f4:c8:86:9d:66:6e:1e:b3:16:
                    ca:ce:a1:f5:ca:65:e1:19:c8:5b:7b:2b:9e:9d:f6:
                    46:ec:5b:b9:e3:36:9e:d2:0a:91:32:f3:67:8e:c9:
                    3c:f1:e8:01:f1:57:c8:a4:23:64:81:db:8e:91:b1:
                    23:e4:cd:ab:8d:8d:2c:be:d5:38:3b:8b:ec:7d:58:
                    f0:ee:66:6b:5e:3e:c2:24:f3:ec:96:b9:b9:6a:30:
                    2e:c1:c8:da:8a:94:05:d7:2a:23:19:e1:b6:10:18:
                    f9:d9:8c:9b:b7:fc:42:2d:a1:e7:58:c3:03:fd:f5:
                    69:82:48:d2:75:b8:25:b5:3c:a3:c8:5d:eb:be:1d:
                    45:ae:2d:7e:46:d4:0e:aa:68:da:6b:fc:87:c6:b4:
                    f0:a4:93:c9:cf:0e:ff:cb:b9:33:98:0c:73:a2:2a:
                    75:ac:90:dc:0b:78:f9:da:f0:24:da:fd:d5:ab:77:
                    e4:a9:8e:f8:b9:1c:96:80:eb:9f:b0:bf:b1:e8:42:
                    bb:26:c0:d6:25:93:49:71:9f:ee:58:66:da:d5:f7:
                    5d:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:FE:10:4C:3A:80:28:77:21:FA:D0:F5:92:15:A8:53:38:15:EA:55
            X509v3 Authority Key Identifier:
                keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/LP4QTDqAKHch-tD1khWoUzgV6lU.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  122.255.95.128/25

    Signature Algorithm: sha256WithRSAEncryption
         4a:00:74:b2:cc:23:61:86:b8:8b:69:75:58:31:c2:d4:14:8f:
         ab:21:4f:fd:df:ab:0d:85:80:d3:12:04:48:54:f9:61:da:94:
         ff:3f:35:f5:d7:c8:63:99:5a:fc:9f:b5:af:42:36:85:d7:90:
         13:bc:42:08:55:64:0b:3e:39:02:aa:71:73:bd:b7:4e:13:74:
         63:05:80:c7:37:51:95:e8:4e:84:c0:10:ac:f9:bf:d9:54:ec:
         0a:b3:37:76:6e:dc:7a:ad:47:0a:2c:c8:d2:ba:b6:5d:c7:ce:
         ea:78:56:6f:e0:68:d7:b3:72:d1:1c:ea:0b:81:52:69:f4:19:
         97:d9:ae:76:be:39:c4:7c:d4:ec:40:37:3a:db:e6:11:9f:c9:
         60:2d:80:64:e0:75:b2:df:8f:9b:eb:65:0d:e9:d8:76:49:f1:
         e9:13:c8:aa:06:97:bb:77:42:02:47:12:1c:aa:14:4c:be:b1:
         ce:d5:82:e2:6a:40:3b:64:f0:a6:3e:6f:fe:cf:a4:6c:05:3f:
         29:e9:d4:19:89:a8:c9:6f:d6:d5:aa:96:b3:1a:0c:ff:87:51:
         b0:f5:dd:30:42:37:3a:e4:73:0e:bb:25:16:22:6f:c0:08:0f:
         f5:db:b4:91:29:dd:19:53:63:f9:71:56:0e:8a:3a:07:c4:c7:
         2f:7c:37:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org