Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PDccnNMtAE7mUb-jHheSrra_740.roa
File:                     PDccnNMtAE7mUb-jHheSrra_740.roa (raw, json)
Hash identifier:          9gDkJgnPglScpKEavlan8MxJRskaygRW9qUq6HP7Dek=
Subject key identifier:   3C:37:1C:9C:D3:2D:00:4E:E6:51:BF:A3:1E:17:92:AE:B6:BF:EF:8D
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1315
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PDccnNMtAE7mUb-jHheSrra_740.roa
Signing time:             Wed 29 Sep 2021 02:55:21 +0000
ROA not before:           Wed 29 Sep 2021 02:55:21 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     24164
IP address blocks:        180.218.133.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4885 (0x1315)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 29 02:55:21 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=3C371C9CD32D004EE651BFA31E1792AEB6BFEF8D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ec:17:ee:4b:39:c2:d2:b4:4e:9d:c7:de:33:ae:
                    3b:54:ad:10:37:b2:86:aa:b9:fd:0c:07:29:a6:09:
                    52:f4:05:6a:45:cd:c4:53:8e:35:a6:d7:a8:62:86:
                    18:d1:54:d9:37:82:01:e0:24:db:5f:47:4c:c6:76:
                    56:67:7a:4e:25:18:93:02:f5:77:24:5c:21:b2:59:
                    d7:14:b6:a1:02:86:d4:11:2a:e4:10:f5:5b:e0:8f:
                    a3:50:64:66:7c:eb:3a:55:10:56:ad:77:99:52:a2:
                    22:8d:7f:b6:63:c0:3b:88:a9:85:a9:c9:d1:89:c1:
                    fb:c7:c0:3c:54:23:4a:f9:4e:02:f2:33:be:c5:f4:
                    22:73:5c:67:eb:50:89:b0:0e:da:c0:7c:31:8e:3d:
                    a8:d1:85:5b:7d:2a:43:82:21:98:1d:d1:9d:d5:8d:
                    3d:27:cf:1d:9a:1f:42:0f:50:72:f9:3a:de:b9:8c:
                    fe:25:63:5f:f8:9e:de:ba:59:4f:fe:c7:0d:fb:63:
                    7a:7d:e8:4a:62:35:32:1d:f5:13:61:6a:5c:97:c9:
                    c9:eb:18:17:53:b6:a0:ca:53:6f:c8:33:36:ac:8a:
                    a2:2a:1f:dd:33:02:2a:6e:e2:13:fa:9c:30:7b:c2:
                    cf:32:f1:68:8d:b5:d6:3b:0e:86:6b:16:ef:b2:43:
                    62:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:37:1C:9C:D3:2D:00:4E:E6:51:BF:A3:1E:17:92:AE:B6:BF:EF:8D
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PDccnNMtAE7mUb-jHheSrra_740.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.133.0/24

    Signature Algorithm: sha256WithRSAEncryption
         67:71:15:3b:19:c2:7a:48:fd:ce:5e:42:39:b8:b9:25:24:77:
         53:53:1c:14:bd:83:fb:1b:e1:6f:9f:2d:74:e1:c3:e6:87:cb:
         dd:a1:32:07:78:0d:ec:f1:a8:c1:fe:c2:e9:83:34:58:b4:6b:
         10:4a:7a:f2:2f:72:18:b2:be:10:05:19:32:9e:7b:00:f1:ac:
         9b:08:f7:dc:bc:bc:cf:f4:04:cf:aa:4e:68:2d:70:45:ff:51:
         ec:f0:9d:11:6d:f7:89:2c:28:44:3c:9e:c5:05:05:a8:9e:8e:
         da:4a:c7:06:72:d4:9d:48:d7:bc:e0:31:fc:2a:27:e3:a8:a4:
         63:d8:fe:19:9b:87:0c:4c:27:bc:57:fb:83:0c:fd:1b:69:37:
         b8:1b:79:9f:a0:3b:29:fe:ca:e7:17:1b:a1:f9:11:ed:4d:c6:
         d1:31:5e:4d:e6:1a:ef:8f:07:4b:40:4e:12:a2:a2:8f:7b:54:
         16:ca:b6:ab:39:37:7b:89:a2:4f:d1:74:be:28:3b:66:7c:c1:
         8d:96:1d:f8:df:04:83:21:60:b1:5f:d3:cd:57:18:2c:52:0a:
         f9:c6:79:de:93:6a:06:5b:a0:75:27:5b:bf:7e:54:ca:08:6f:
         99:27:30:90:aa:a6:30:46:b5:08:e7:86:a3:a5:e2:7d:39:08:
         f7:bb:a3:80
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICExUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU1MjFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDNDMzcxQzlDRDMyRDAw
NEVFNjUxQkZBMzFFMTc5MkFFQjZCRkVGOEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDsF+5LOcLStE6dx94zrjtUrRA3soaquf0MBymmCVL0BWpFzcRT
jjWm16hihhjRVNk3ggHgJNtfR0zGdlZnek4lGJMC9XckXCGyWdcUtqEChtQRKuQQ
9Vvgj6NQZGZ86zpVEFatd5lSoiKNf7ZjwDuIqYWpydGJwfvHwDxUI0r5TgLyM77F
9CJzXGfrUImwDtrAfDGOPajRhVt9KkOCIZgd0Z3VjT0nzx2aH0IPUHL5Ot65jP4l
Y1/4nt66WU/+xw37Y3p96EpiNTId9RNhalyXycnrGBdTtqDKU2/IMzasiqIqH90z
Aipu4hP6nDB7ws8y8WiNtdY7DoZrFu+yQ2LzAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUPDccnNMtAE7mUb+jHheSrra/740wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1BEY2NuTk10QUU3bVViLWpI
aGVTcnJhXzc0MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0
2oUwDQYJKoZIhvcNAQELBQADggEBAGdxFTsZwnpI/c5eQjm4uSUkd1NTHBS9g/sb
4W+fLXThw+aHy92hMgd4DezxqMH+wumDNFi0axBKevIvchiyvhAFGTKeewDxrJsI
99y8vM/0BM+qTmgtcEX/UezwnRFt94ksKEQ8nsUFBaiejtpKxwZy1J1I17zgMfwq
J+OopGPY/hmbhwxMJ7xX+4MM/RtpN7gbeZ+gOyn+yucXG6H5Ee1NxtExXk3mGu+P
B0tAThKioo97VBbKtqs5N3uJok/RdL4oO2Z8wY2WHfjfBIMhYLFf081XGCxSCvnG
ed6TagZboHUnW79+VMoIb5knMJCqpjBGtQjnhqOl4n05CPe7o4A=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:03 2024 by rpki-client on console-fra.rpki-client.org