Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AmkeYmfP4jsPa7BEochaF1gQC_Q.roa
File:                     AmkeYmfP4jsPa7BEochaF1gQC_Q.roa (raw, json)
Hash identifier:          dghQr35EsZbDFxzY7zlsz60GFby/zq4aXqDNo4IQ7cM=
Subject key identifier:   02:69:1E:62:67:CF:E2:3B:0F:6B:B0:44:A1:C8:5A:17:58:10:0B:F4
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       180C
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AmkeYmfP4jsPa7BEochaF1gQC_Q.roa
Signing time:             Sat 22 Oct 2022 05:48:55 +0000
ROA not before:           Sat 22 Oct 2022 05:48:55 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24163
IP address blocks:        211.76.44.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6156 (0x180c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Oct 22 05:48:55 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=02691E6267CFE23B0F6BB044A1C85A1758100BF4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:95:4b:f8:f5:52:4a:2b:77:0c:cb:a0:47:63:e6:
                    eb:64:1a:08:8e:f6:69:8b:80:90:d3:37:0f:7e:c7:
                    ce:99:2e:3a:93:0e:c1:af:5d:08:a4:02:47:72:3d:
                    eb:2a:64:3b:e8:66:3e:dd:ae:8e:f0:83:25:5e:2f:
                    d6:c1:b2:23:14:eb:d9:28:16:d1:59:0f:8f:75:e0:
                    b4:6d:b1:e2:60:96:a9:b3:f1:4f:83:2c:79:5a:b1:
                    b3:25:f5:e3:05:93:89:26:cb:33:6a:69:14:fc:64:
                    5b:bd:bc:6a:82:04:33:58:2a:a2:33:66:93:1b:21:
                    89:c1:74:34:59:65:e8:fc:24:95:88:ad:05:93:d0:
                    23:fe:21:df:a9:12:9f:d3:25:84:80:69:ef:36:29:
                    ed:07:dc:85:70:f9:2f:56:15:51:72:c6:4a:d5:f8:
                    81:18:b1:cf:f4:a5:da:ee:11:55:eb:29:b2:39:37:
                    a0:34:40:0d:6b:a3:1c:4b:a1:8d:e4:d1:6e:e7:c8:
                    c6:a2:b1:80:78:94:3b:83:08:9d:c7:51:a6:d7:ba:
                    d7:5f:96:13:57:1d:14:c4:3c:84:07:da:62:42:e3:
                    20:6b:30:fc:1a:0f:01:aa:c3:ee:ce:f1:4f:3f:bc:
                    98:6e:0c:a8:6c:07:d1:41:a4:1f:e1:a8:59:6a:b8:
                    31:21
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                02:69:1E:62:67:CF:E2:3B:0F:6B:B0:44:A1:C8:5A:17:58:10:0B:F4
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AmkeYmfP4jsPa7BEochaF1gQC_Q.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  211.76.44.0/23

    Signature Algorithm: sha256WithRSAEncryption
         68:14:32:82:69:ac:3a:aa:4b:43:8f:da:ec:7b:61:7f:3f:86:
         ec:e6:08:d9:f9:28:16:0b:ea:f9:5d:7d:7d:f3:3c:69:18:62:
         94:4e:af:32:03:72:75:be:39:ee:f8:62:2b:dd:54:8a:b4:b5:
         63:0c:4d:c3:d4:14:52:ed:b3:c4:0a:bb:ba:31:4c:e7:53:f7:
         1f:2f:23:6c:b1:49:57:88:b7:b2:cb:9c:a5:3f:93:4b:93:09:
         ad:15:d0:c4:39:7e:2a:4b:29:5c:ca:44:76:f0:44:d6:64:0a:
         0d:c3:b3:eb:88:2d:f1:05:45:6e:24:8e:e5:76:cd:26:00:cf:
         81:16:ca:87:c1:80:dc:e3:97:2e:89:32:5c:5a:07:7c:10:51:
         4b:83:a7:9c:6d:db:65:ec:e7:3b:68:f1:a7:92:90:d4:2c:30:
         6e:d3:9f:09:dc:ae:bf:94:23:76:b4:c9:e6:73:0c:42:c8:4d:
         f9:8c:9c:b2:a2:17:de:62:df:fe:ce:ab:ef:f2:d0:dd:34:58:
         ff:cc:6a:5c:49:9b:5d:2e:f7:06:dc:63:3f:6b:e7:16:3e:ad:
         44:11:bd:e4:c9:2b:8b:3d:e0:eb:6c:68:4c:4e:51:ee:bb:13:
         42:a9:31:9d:11:3b:2a:7d:71:d0:7d:3b:7c:4d:9a:46:97:53:
         6e:1a:27:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org