Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MhqIr9dQhdU7zVEQXiSg1I6Fspc.roa
File:                     MhqIr9dQhdU7zVEQXiSg1I6Fspc.roa (raw, json)
Hash identifier:          W51IbEU3meD6kjQJMlBOZi572T2/B9CjfBnFgrJapDY=
Subject key identifier:   32:1A:88:AF:D7:50:85:D5:3B:CD:51:10:5E:24:A0:D4:8E:85:B2:97
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       12E6
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MhqIr9dQhdU7zVEQXiSg1I6Fspc.roa
Signing time:             Wed 29 Sep 2021 02:55:07 +0000
ROA not before:           Wed 29 Sep 2021 02:55:07 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     24164
IP address blocks:        180.218.137.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4838 (0x12e6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 29 02:55:07 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=321A88AFD75085D53BCD51105E24A0D48E85B297
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:b8:63:3d:5f:11:ae:0b:7f:6c:56:6b:a7:13:
                    c5:ed:ea:f1:cb:39:73:fb:93:7f:33:c2:60:16:64:
                    cb:39:2c:01:d3:26:4a:aa:9a:26:3b:1e:8c:4f:a9:
                    cd:f9:85:8d:3c:43:a2:02:14:64:ac:6d:07:af:6e:
                    b3:c2:5b:d8:6d:f9:07:7d:53:26:18:f9:c4:e1:99:
                    45:7b:35:2c:e9:8f:60:dd:bc:43:d5:36:40:91:79:
                    00:a9:5f:c6:5c:bd:d1:17:49:ca:f3:84:d4:a8:c7:
                    9e:88:ef:be:26:fd:6b:38:2d:1e:db:58:f6:e9:81:
                    5d:a1:ef:41:2e:3f:15:83:bc:e6:9c:eb:bf:d5:05:
                    9c:1a:83:7d:49:da:ce:92:6b:e4:db:96:fd:9c:6e:
                    d1:76:95:23:62:71:6a:5f:2b:97:7d:2f:6e:94:07:
                    cd:f3:ee:a2:d7:80:78:09:c1:2f:52:ee:f8:cb:7b:
                    51:21:e9:d9:ab:7f:24:83:cd:90:e8:0a:6c:25:f6:
                    ef:f7:48:65:85:6a:71:9c:20:34:4f:01:c9:c3:7d:
                    86:05:b8:4a:33:df:5f:e5:68:61:a9:c8:b2:30:3a:
                    ca:bf:de:eb:8f:09:42:ba:51:d5:72:03:41:bf:4e:
                    d0:e9:1a:39:8b:d8:f1:34:f7:d5:e7:c2:2e:a1:c9:
                    83:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                32:1A:88:AF:D7:50:85:D5:3B:CD:51:10:5E:24:A0:D4:8E:85:B2:97
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/MhqIr9dQhdU7zVEQXiSg1I6Fspc.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.137.0/24

    Signature Algorithm: sha256WithRSAEncryption
         79:1b:94:1e:c8:c7:76:30:67:7c:fa:37:b8:7b:d5:34:97:e8:
         a4:41:91:57:c6:eb:4c:f8:47:5d:db:bd:7a:9c:c3:fd:2f:d0:
         d0:ae:30:f6:9e:cc:2c:f8:e0:34:29:2a:33:48:3f:b8:86:b9:
         f2:aa:23:8b:50:e1:3c:9c:cb:a6:b1:bf:db:bb:7c:d2:66:0b:
         8a:0c:25:bd:4c:0c:ec:51:26:23:8d:c1:9d:46:2a:46:91:f8:
         d5:08:96:4d:c7:9d:f5:84:b6:9e:c8:ad:99:c4:ca:51:93:7f:
         75:69:51:81:71:fc:72:bd:e6:20:d8:38:29:45:12:76:74:53:
         b6:12:d0:54:4c:c8:6e:0d:82:c0:60:15:e6:56:ff:49:4b:a7:
         e5:3c:ff:1d:a2:71:e1:e9:ad:f3:fe:4f:b5:56:32:72:20:a7:
         52:eb:de:98:ba:69:32:ef:b1:05:00:da:71:38:08:60:0e:9c:
         f8:61:77:03:c5:c6:ca:58:7a:da:0c:1a:87:c0:81:9e:c0:7d:
         d0:cd:32:95:9c:8d:3d:be:cd:dd:a8:6a:9f:32:6d:aa:e2:fd:
         3a:d1:67:50:e5:bb:20:5c:e7:0d:9d:33:07:96:6d:59:6f:70:
         a2:3a:af:ee:05:dc:1b:7d:1a:b9:a5:15:dd:65:74:15:ae:da:
         fe:7c:ba:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org