Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1M-UAf-lK2d3-Nsj7nhUb-Mgnc0.roa
File:                     1M-UAf-lK2d3-Nsj7nhUb-Mgnc0.roa (raw, json)
Hash identifier:          sqUzv+UDBjaM8jrwZB59mcoTYerVsIMqjTrGGKJpOko=
Subject key identifier:   D4:CF:94:01:FF:A5:2B:67:77:F8:DB:23:EE:78:54:6F:E3:20:9D:CD
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       192A
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1M-UAf-lK2d3-Nsj7nhUb-Mgnc0.roa
Signing time:             Sat 22 Oct 2022 06:06:10 +0000
ROA not before:           Sat 22 Oct 2022 06:06:10 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     4662
IP address blocks:        122.254.0.0/18 maxlen: 18

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6442 (0x192a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Oct 22 06:06:10 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=D4CF9401FFA52B6777F8DB23EE78546FE3209DCD
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:3b:92:0c:8e:d0:36:90:c5:19:d5:9a:e1:d2:
                    30:75:4d:9f:42:ea:fa:aa:62:f0:46:bf:36:8c:b6:
                    bb:d7:be:1a:65:09:13:4d:9c:fb:d6:32:c8:c4:02:
                    9b:28:c0:ed:da:3f:05:37:26:75:70:e4:70:b6:b9:
                    2b:51:b7:ec:ae:de:1f:7a:9d:86:b7:73:86:92:f0:
                    6e:de:97:89:41:53:29:7c:b8:a4:d6:db:98:92:33:
                    90:f2:42:c8:c0:e5:29:98:52:c0:39:0c:12:c5:11:
                    69:e7:24:80:ff:bd:f9:ae:50:df:e6:13:85:be:b8:
                    97:c5:2d:1f:9f:06:d6:d2:5e:e3:12:e9:9c:9f:f2:
                    ba:33:0f:5e:59:a1:00:d3:33:6e:c5:e9:95:ac:c1:
                    e9:05:82:06:9e:a3:ed:73:37:6b:bf:fb:6a:3d:69:
                    b0:51:32:d2:ec:34:5a:11:93:68:aa:14:c0:1b:e2:
                    2e:b8:5d:8d:0f:e2:3c:8d:51:95:45:6d:bc:7b:55:
                    48:14:8a:49:3f:5b:15:1d:ca:bb:d1:d0:62:60:77:
                    d6:2c:5e:d1:c1:60:bd:60:da:45:f0:0c:1a:b6:25:
                    11:9e:55:00:2c:34:d7:a5:c2:3b:19:81:c4:7c:80:
                    15:0a:0f:43:94:81:03:57:c7:5c:8c:8d:f5:b4:cd:
                    bf:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D4:CF:94:01:FF:A5:2B:67:77:F8:DB:23:EE:78:54:6F:E3:20:9D:CD
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1M-UAf-lK2d3-Nsj7nhUb-Mgnc0.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  122.254.0.0/18

    Signature Algorithm: sha256WithRSAEncryption
         10:f3:64:f5:08:98:33:0e:86:25:6e:b8:a6:cf:86:ce:ba:15:
         51:09:5c:b8:b8:7a:ef:4b:5b:83:b0:f1:87:3f:18:35:19:67:
         a2:ab:41:cb:52:5a:74:fb:6f:61:9a:0f:8a:d7:f7:be:e4:4c:
         6c:8a:0d:7a:28:8a:aa:56:5d:d8:e0:22:45:e4:89:b9:39:ab:
         35:f1:b6:96:b6:dd:3e:2b:29:f1:20:42:07:93:23:b1:e4:e0:
         ee:b6:65:43:17:1b:b1:ab:d2:67:ea:a5:2b:82:0a:8e:58:b3:
         30:d0:ff:6b:d1:21:ea:ad:3e:5a:59:99:2b:04:70:18:a1:2e:
         a8:7f:fa:4c:60:e9:ba:03:ba:30:7d:23:48:bf:0b:36:dc:0b:
         ed:b0:8f:e8:5d:4d:b4:e1:fe:18:14:c1:cc:f0:46:e1:98:66:
         33:5a:d4:5f:a5:74:d1:d5:03:6b:7c:38:a0:c6:76:75:6f:b9:
         fd:ae:2d:a8:08:db:03:7b:99:63:a6:23:8f:f5:88:19:ec:ea:
         7b:c3:00:b6:7e:5c:0d:61:0e:21:44:03:68:f6:43:ca:20:06:
         2d:49:d3:cd:1f:41:c4:5e:72:31:d3:33:35:ca:d3:dc:00:6d:
         56:62:99:bc:78:e8:5b:c6:85:d1:c7:5a:65:fa:d1:c0:e5:ae:
         55:af:08:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org