Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/EGVGnGYNy2QPfYF6mEaQlX7wnjo.roa
File:                     EGVGnGYNy2QPfYF6mEaQlX7wnjo.roa (raw, json)
Hash identifier:          ni52E84IEGu/izX6hG5U/LkCqnKcIZm22BHbhSqmDAA=
Subject key identifier:   10:65:46:9C:66:0D:CB:64:0F:7D:81:7A:98:46:90:95:7E:F0:9E:3A
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       0AD8
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/EGVGnGYNy2QPfYF6mEaQlX7wnjo.roa
Signing time:             Tue 29 Sep 2020 10:07:41 +0000
ROA not before:           Tue 29 Sep 2020 10:07:41 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     24164
IP address blocks:        49.159.152.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2776 (0xad8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 29 10:07:41 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=1065469C660DCB640F7D817A984690957EF09E3A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:a0:e2:4b:78:61:fe:06:a9:9c:b7:0a:19:03:
                    a3:a8:44:8c:05:8d:4f:93:4f:34:37:25:49:25:df:
                    21:82:25:06:a0:0d:cc:6f:16:01:e4:ab:3c:b1:fe:
                    1e:a2:66:91:45:45:6c:ed:1e:44:29:f4:71:9c:05:
                    af:79:14:9b:ba:d8:eb:82:73:84:bb:53:59:5a:f2:
                    1d:e9:09:fe:53:a7:ce:ff:45:8c:dd:1d:a1:45:b3:
                    6d:a3:84:a3:ff:7c:31:5e:d0:b3:d1:72:b2:36:40:
                    93:1c:ec:33:85:32:7e:66:7d:b1:46:2f:fc:fb:ce:
                    44:fa:82:fc:76:5d:95:6b:45:43:eb:95:a6:f2:da:
                    68:e8:71:53:82:c4:a9:31:b8:65:56:4f:fa:3c:cc:
                    25:4d:21:bf:ae:95:9d:08:a6:9a:9e:6d:3e:a4:27:
                    8b:fe:7c:b5:37:05:8b:ff:5b:be:00:65:22:9f:6a:
                    02:fa:e5:ec:30:6f:34:5e:da:a5:46:b7:5d:56:7f:
                    e9:85:12:98:71:2f:a2:a8:83:01:6f:ce:0c:a6:88:
                    56:d7:b5:6d:77:b1:6b:ff:00:26:a3:c4:c1:1b:2c:
                    61:8c:08:49:06:d0:c3:b2:79:d1:e5:d9:92:d4:11:
                    ff:09:1f:12:73:9e:35:47:75:8d:af:73:4d:4e:55:
                    27:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                10:65:46:9C:66:0D:CB:64:0F:7D:81:7A:98:46:90:95:7E:F0:9E:3A
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/EGVGnGYNy2QPfYF6mEaQlX7wnjo.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  49.159.152.0/21

    Signature Algorithm: sha256WithRSAEncryption
         38:aa:56:9c:da:9c:c5:6a:36:a8:57:9e:5f:3e:23:78:a9:f3:
         80:0e:ff:72:e9:3f:ac:67:b1:e5:ac:31:2c:d1:f3:1b:d2:f2:
         79:fd:29:91:1a:e8:30:36:d0:19:7d:30:24:b8:bc:59:22:62:
         39:01:fa:79:66:e8:fe:b5:91:42:d9:57:af:fe:15:15:c9:fa:
         fa:da:32:81:b0:07:37:e7:ca:12:6c:d2:1c:fd:f0:34:b4:de:
         0e:bd:f0:9f:a3:e7:aa:1f:e9:2d:0f:02:e7:fa:ea:e8:49:90:
         08:dc:fb:97:75:a3:dd:ca:02:48:df:52:96:b9:e2:b4:81:19:
         d9:ba:8d:5c:ae:72:7d:30:3a:22:e1:5e:51:98:66:b7:08:c8:
         8f:3b:47:62:e0:37:3f:3c:d7:a4:5a:98:59:80:67:89:ae:a5:
         3f:a3:1a:5e:6f:57:98:44:73:05:ff:c8:73:2a:73:fd:23:85:
         8e:26:46:b3:20:cb:66:c3:6d:eb:c6:39:c1:98:98:18:d9:6e:
         d0:95:88:64:bf:98:c6:3b:e9:8b:3a:fb:30:a6:d0:c6:b0:c6:
         be:ee:81:c9:01:3b:ef:7d:3d:1b:3f:74:2d:84:c9:7e:a9:97:
         a7:45:ac:52:f1:79:81:fc:2b:07:97:ee:e4:6f:40:28:1c:6b:
         93:57:fb:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org