Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MVjyRKbh62d-8ht8vSLoA2bRxpU.roa
File:                     MVjyRKbh62d-8ht8vSLoA2bRxpU.roa (raw, json)
Hash identifier:          v9QpZLF3NJnEfWglZK7+V2SGrZdGglG1SmnuB9EHwb8=
Subject key identifier:   31:58:F2:44:A6:E1:EB:67:7E:F2:1B:7C:BD:22:E8:03:66:D1:C6:95
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1A2A
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MVjyRKbh62d-8ht8vSLoA2bRxpU.roa
Signing time:             Sat 22 Oct 2022 13:11:42 +0000
ROA not before:           Sat 22 Oct 2022 13:11:42 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24163
IP address blocks:        211.76.44.0/22 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6698 (0x1a2a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Oct 22 13:11:42 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=3158F244A6E1EB677EF21B7CBD22E80366D1C695
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f6:d1:a6:dd:6d:c4:73:d8:cd:e0:07:a9:6d:0d:
                    87:ee:54:4d:de:ab:ad:c7:f5:b4:32:a5:8e:47:46:
                    03:82:6b:5b:8f:b3:f0:64:e6:95:4a:ef:c7:97:0d:
                    c4:4a:f5:44:bc:2e:f2:96:0d:a8:7d:bf:49:98:ae:
                    08:0f:b2:99:24:cb:98:73:0d:f5:65:49:01:e6:6b:
                    43:31:39:f3:bf:e2:09:04:7b:28:d2:80:b4:58:ce:
                    8e:f4:ea:2c:3a:f7:6c:8a:ce:2a:08:23:ed:22:fa:
                    51:81:0b:18:43:6e:b1:f2:98:55:eb:e6:c6:18:b5:
                    bd:59:8c:35:1f:a6:a8:c7:f5:d9:ea:a4:4f:2c:71:
                    36:cf:45:07:4d:85:5c:be:cb:da:e2:07:03:ee:a3:
                    7a:51:59:b8:09:7f:27:73:71:1b:3c:1d:ed:76:46:
                    b3:32:c9:d6:5f:bf:5d:3d:ef:b8:87:14:86:cb:9f:
                    73:af:5f:00:1c:4f:a0:fa:82:f4:e0:23:3f:46:b1:
                    9c:43:03:13:40:12:06:ce:60:88:37:46:cc:d5:c1:
                    70:6a:7f:6e:a4:d6:ca:13:47:2b:95:d0:e4:12:55:
                    8a:4c:e4:11:17:df:ef:d0:44:e3:cf:7a:b4:d8:9b:
                    04:76:4b:ef:58:c4:d9:46:1c:ad:f6:52:3b:7c:37:
                    1c:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                31:58:F2:44:A6:E1:EB:67:7E:F2:1B:7C:BD:22:E8:03:66:D1:C6:95
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MVjyRKbh62d-8ht8vSLoA2bRxpU.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  211.76.44.0/22

    Signature Algorithm: sha256WithRSAEncryption
         8e:f2:60:9f:7d:e3:f6:04:db:6b:96:25:b4:78:42:35:96:e9:
         25:67:f8:45:fd:be:aa:73:87:b3:6d:72:f4:fa:98:66:eb:dc:
         86:b8:68:07:6d:b6:88:fa:c6:a4:71:63:e3:1e:c1:51:40:e1:
         ff:92:2c:fd:f9:3e:5a:ab:c5:d9:4a:44:c4:eb:93:e9:66:cf:
         f5:12:a5:fd:67:90:2c:04:f0:df:21:b5:8c:7a:c3:79:65:3a:
         ea:0c:e6:94:7c:71:0f:9e:f9:11:be:3d:b1:ab:49:01:c7:7a:
         d8:ef:fd:52:bf:8b:ed:bc:6a:07:cf:43:bc:dc:c7:3e:a1:e4:
         1f:8c:0a:a7:63:bc:be:24:26:77:56:ca:c2:7b:b4:8b:b7:a3:
         9b:c2:e5:b7:42:f9:2e:52:ed:33:5c:2d:23:4a:e8:bd:3e:a1:
         af:31:b8:7e:b0:65:0d:99:48:b6:a8:7d:43:68:dd:78:e0:be:
         28:88:eb:04:5d:9e:15:37:9b:ef:ce:c4:4c:23:49:75:bc:92:
         6a:3f:d2:38:bc:90:9d:48:2c:ee:68:33:19:f3:aa:a9:96:07:
         77:21:30:04:1c:56:b6:02:f7:bc:3f:ba:41:a6:e2:9c:64:a9:
         10:88:6e:9c:ad:3f:95:4c:fe:a9:7e:bf:d3:67:8e:d8:c9:98:
         44:a7:4f:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org