Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3r0AOYlT4ZNUgLbgmuh77eUYqBw.roa
File:                     3r0AOYlT4ZNUgLbgmuh77eUYqBw.roa (raw, json)
Hash identifier:          GxRh7/BDMjeHy2FbnWDrk+cEwPdbJk0a00hAuxDXgdM=
Subject key identifier:   DE:BD:00:39:89:53:E1:93:54:80:B6:E0:9A:E8:7B:ED:E5:18:A8:1C
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       157A
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3r0AOYlT4ZNUgLbgmuh77eUYqBw.roa
Signing time:             Fri 21 Oct 2022 13:12:19 +0000
ROA not before:           Fri 21 Oct 2022 13:12:19 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24165
IP address blocks:        61.64.8.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5498 (0x157a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Oct 21 13:12:19 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=DEBD00398953E1935480B6E09AE87BEDE518A81C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:12:fe:0c:d7:0f:a1:a1:bb:65:11:77:a7:c5:
                    88:6c:87:25:2e:b8:32:ec:52:7d:c9:45:c5:0c:0e:
                    48:11:af:80:d4:d9:65:54:a7:ce:4e:dd:f4:6a:e0:
                    61:eb:67:c4:af:95:73:c5:ab:65:76:83:c9:3e:90:
                    b2:ae:06:6f:6d:ed:38:74:6e:21:06:29:a9:01:0c:
                    b0:01:b9:9e:61:c9:72:24:15:33:e5:c3:d0:ae:28:
                    82:de:91:cc:c4:5e:71:40:b2:55:58:77:b2:cd:b9:
                    4d:b4:62:01:d2:38:21:85:88:36:0c:be:fc:18:83:
                    7b:c4:80:7c:01:0a:81:55:e6:34:e3:70:02:ff:56:
                    bb:23:f4:72:9b:70:e2:cf:89:db:a5:28:4b:8a:04:
                    72:5b:86:ea:ae:cb:d5:55:c6:5f:0b:1c:7f:a1:64:
                    35:c6:b5:b4:99:10:0d:ef:75:e6:c6:6d:d9:73:24:
                    8a:dc:e0:a1:70:11:75:54:4f:52:cf:6b:b8:c2:12:
                    89:9b:4b:46:5e:3a:ed:ec:35:5d:6a:09:94:a5:18:
                    2a:3c:23:b7:9b:6e:56:2c:90:00:77:07:de:52:f7:
                    85:9e:33:d3:66:e6:0c:2d:4c:1c:98:a2:80:0c:7d:
                    6e:2a:ea:1b:fd:79:52:e7:5f:4e:7a:c9:2e:94:3f:
                    83:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DE:BD:00:39:89:53:E1:93:54:80:B6:E0:9A:E8:7B:ED:E5:18:A8:1C
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3r0AOYlT4ZNUgLbgmuh77eUYqBw.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  61.64.8.0/22

    Signature Algorithm: sha256WithRSAEncryption
         77:cd:a8:bd:08:76:8b:00:56:ff:b0:71:03:05:02:79:d5:b6:
         b0:36:66:0b:1e:25:5b:21:f9:4b:74:41:99:79:4a:5d:c7:0f:
         48:8b:f8:a8:3e:2c:cb:57:32:c9:14:c4:9e:81:cd:52:9f:6e:
         9b:67:ea:f0:b1:d4:cf:9f:d5:3b:34:22:a9:d2:73:e4:f4:6c:
         c3:fa:81:34:c0:87:ed:11:43:77:de:88:b0:3d:fd:43:43:66:
         25:a2:1e:fa:ce:86:98:0d:c8:bb:f6:26:22:d5:02:0e:2a:0a:
         37:8d:3b:5e:60:4f:ca:a3:86:47:b2:9b:61:ec:cc:bd:a1:13:
         29:0f:52:58:94:eb:20:9a:a0:4c:39:66:8d:89:ca:bf:49:5c:
         f6:98:e3:a1:b3:e4:63:6b:da:97:99:e3:14:77:30:29:b7:7d:
         da:61:32:04:38:c6:6a:e2:24:aa:74:f5:94:7e:85:11:34:df:
         c3:f6:3a:23:fe:e9:56:4e:5f:6a:8d:7b:ef:41:6a:b8:18:9f:
         ad:33:f8:4e:79:5d:ca:56:d3:3b:85:5b:69:4a:77:bf:e7:32:
         07:cd:bf:9a:96:5f:d1:e4:7d:2c:42:b0:7b:0d:35:b1:8d:db:
         a1:97:1a:46:4d:a8:29:06:78:9a:fd:71:69:32:e6:71:f9:f4:
         1b:32:74:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org