Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HsXD8gdqfATt6Ypz1OR0LxqihQk.roa
File:                     HsXD8gdqfATt6Ypz1OR0LxqihQk.roa (raw, json)
Hash identifier:          Dnn5emVoCbVWuOaATa2QOrvTHN/+s0Lfxn02CP9DXfw=
Subject key identifier:   1E:C5:C3:F2:07:6A:7C:04:ED:E9:8A:73:D4:E4:74:2F:1A:A2:85:09
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HsXD8gdqfATt6Ypz1OR0LxqihQk.roa
Signing time:             Thu 15 Sep 2022 02:35:56 +0000
ROA not before:           Thu 15 Sep 2022 02:35:56 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24164
IP address blocks:        180.218.128.0/20 maxlen: 20

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5374 (0x14fe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 15 02:35:56 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=1EC5C3F2076A7C04EDE98A73D4E4742F1AA28509
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:4a:e5:80:2d:54:f4:d7:b9:31:fe:8c:47:a4:
                    87:26:41:c0:25:e5:6a:49:1e:8a:69:ba:0d:7d:7f:
                    24:94:e9:3f:87:0b:77:24:a1:58:30:15:c3:49:db:
                    37:d5:4e:46:d9:f6:3c:64:a7:84:0a:7e:7b:02:43:
                    53:75:45:fc:23:d2:5f:ed:6c:5a:22:ae:a5:27:aa:
                    4f:6d:48:6a:af:73:f6:17:2f:72:25:14:8b:21:7d:
                    b5:51:e8:60:d5:97:0f:02:2d:0d:06:c6:68:2f:75:
                    0c:fc:7d:b3:1b:c7:f6:79:24:4e:66:d3:88:2f:bd:
                    84:b9:68:b1:c1:4b:7e:a8:5f:67:b3:24:ce:b8:0e:
                    19:12:44:8a:84:5c:0c:9a:9b:28:c4:17:be:74:62:
                    f5:07:78:20:35:ae:fe:6a:a1:ee:d3:80:5e:a7:bd:
                    39:98:a6:b8:58:fc:32:3a:b3:b3:b3:e2:d3:6d:d7:
                    2c:d1:8b:6b:4a:68:4d:75:0a:ee:fb:4b:6c:d5:83:
                    7a:a5:ea:b1:cd:56:c5:20:77:19:72:f2:0a:ca:ca:
                    a8:cb:4c:5f:bf:0b:ad:e7:63:19:e7:2b:75:9d:33:
                    19:47:29:54:65:79:4d:e7:b5:00:56:1c:cf:c5:d3:
                    79:37:e7:79:4d:14:1c:09:69:5a:1d:3c:50:6e:c8:
                    59:05
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1E:C5:C3:F2:07:6A:7C:04:ED:E9:8A:73:D4:E4:74:2F:1A:A2:85:09
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HsXD8gdqfATt6Ypz1OR0LxqihQk.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.128.0/20

    Signature Algorithm: sha256WithRSAEncryption
         8c:36:19:ec:e7:03:c4:6b:85:71:c1:91:58:f5:e8:51:32:f9:
         e5:92:97:ee:cf:7d:e1:94:7d:19:d7:ee:a4:5f:45:f4:f3:46:
         8e:f2:a5:d3:0a:db:91:df:94:77:df:d8:04:c3:26:ff:3f:b4:
         5e:1f:93:e7:24:44:74:c8:99:27:6f:af:d2:ee:ec:3e:fe:7a:
         87:ab:00:67:d4:aa:bf:ae:79:40:f0:c7:6b:a4:5a:3f:33:03:
         6b:b8:58:3f:52:e0:a7:cc:7c:9a:c4:36:5e:56:18:7f:79:8a:
         f0:13:df:fe:d2:48:d5:1b:91:80:54:44:66:96:07:f0:79:ef:
         7f:b1:3a:d4:67:bd:fa:7c:19:e4:4b:db:53:04:cf:a9:52:24:
         4d:14:1e:73:84:51:d4:bd:12:6d:50:68:a8:80:0f:04:db:cb:
         76:5c:ef:4c:01:69:ac:2f:d7:16:3b:f4:05:ad:66:10:0a:d7:
         58:5d:f7:48:c4:b8:f9:39:b5:da:cd:fb:e7:d4:ed:a4:b6:a9:
         fa:a5:56:bd:02:cd:18:f9:6a:3a:45:d6:ee:fb:af:5c:c5:bf:
         4c:47:65:db:21:39:c7:01:36:63:5f:df:ce:64:19:ef:40:67:
         6a:2b:cd:10:b7:1d:ca:f1:39:e8:e7:5f:d9:4d:d8:67:9f:a2:
         e3:4e:26:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org