Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RQwdaDHHv-YYWuyZ98vtzBKZxSo.roa
File:                     RQwdaDHHv-YYWuyZ98vtzBKZxSo.roa (raw, json)
Hash identifier:          f5RTdsGeZlsnaB5JMBqh0SzLbaHadiaPKpE1rP7MuoA=
Subject key identifier:   45:0C:1D:68:31:C7:BF:E6:18:5A:EC:99:F7:CB:ED:CC:12:99:C5:2A
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       101D
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RQwdaDHHv-YYWuyZ98vtzBKZxSo.roa
Signing time:             Sun 07 Feb 2021 12:37:41 +0000
ROA not before:           Sun 07 Feb 2021 12:37:41 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     24163
IP address blocks:        61.58.96.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4125 (0x101d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Feb  7 12:37:41 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=450C1D6831C7BFE6185AEC99F7CBEDCC1299C52A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:bc:55:7d:c1:ef:7a:02:c7:92:11:03:6d:7b:
                    05:15:8d:4d:0b:fa:6e:46:cf:1f:13:e6:b2:90:2f:
                    39:6e:1c:a2:db:d2:48:be:1e:2a:0f:ea:e2:bc:50:
                    ef:2e:df:2e:ca:71:3e:36:48:5d:26:cb:be:78:ba:
                    5e:5e:72:48:bb:59:fb:97:0b:27:ee:ac:98:2e:24:
                    ff:5f:5c:a0:ae:05:e2:27:0d:f2:cc:28:dc:7b:a1:
                    ad:27:69:c3:ec:11:9c:02:dd:82:5b:a8:97:3b:14:
                    da:12:7b:c3:00:d0:38:cd:8d:cf:90:e5:72:c7:18:
                    d3:63:9a:b5:59:20:68:2f:70:27:96:25:b1:87:2f:
                    5b:f6:e9:e1:ae:2a:30:01:5e:19:a0:cc:43:8b:4c:
                    b4:71:7c:17:37:6f:77:64:7c:3f:9d:18:0a:d3:f4:
                    34:c3:8e:c1:4e:2a:af:d5:6d:62:94:59:45:5c:b5:
                    17:12:9b:92:b1:6e:e6:bd:a2:29:d9:c4:dd:ce:93:
                    a0:fc:45:9c:3f:5a:dc:06:1d:87:9c:a7:a7:b0:0e:
                    39:8f:4d:2b:01:69:15:0a:d2:80:11:b1:69:ab:b3:
                    f7:a6:61:06:40:3c:8a:d2:11:c4:90:15:71:ef:27:
                    22:7a:15:2d:3d:72:e0:21:87:5d:2a:74:f6:37:61:
                    8a:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                45:0C:1D:68:31:C7:BF:E6:18:5A:EC:99:F7:CB:ED:CC:12:99:C5:2A
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RQwdaDHHv-YYWuyZ98vtzBKZxSo.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  61.58.96.0/21

    Signature Algorithm: sha256WithRSAEncryption
         96:b7:53:93:9b:b6:48:fb:91:0b:f5:64:e8:cb:12:46:b5:a1:
         e5:f2:ca:20:73:6d:12:a4:7a:35:7b:65:28:8b:e6:df:e1:06:
         bb:97:28:4f:50:9b:ca:dd:e9:b2:63:5c:47:83:60:fa:84:54:
         53:51:ab:97:82:a1:c6:28:74:9b:e2:8a:88:31:40:4b:67:eb:
         70:b7:7b:ba:82:5a:69:dc:6c:6e:8c:bf:3e:07:b5:2d:ed:16:
         b0:b1:11:78:b8:0d:0d:69:3c:a0:fe:22:44:67:b5:66:88:6a:
         27:89:a0:6b:6f:21:9a:be:7b:bf:6d:df:30:db:e9:70:76:bc:
         64:58:a7:92:e2:a0:c7:17:5a:e6:f1:c6:f4:a8:1d:f8:3e:2d:
         2b:53:b4:88:00:9e:72:06:ad:1b:b9:bb:22:20:4d:5b:b1:47:
         f2:3d:fe:e8:f3:ab:0a:99:85:35:c1:9a:70:bb:19:81:00:3c:
         71:fd:83:44:e0:ab:6d:1b:2f:ef:ab:06:61:41:65:f4:26:c5:
         9a:df:92:3d:e1:8d:fd:30:71:5b:a4:c5:6f:ed:93:30:23:fb:
         25:5d:68:66:dc:7d:40:93:74:27:e0:25:d0:8e:f8:82:c6:3c:
         10:bf:b0:c6:ee:78:c2:8d:7f:4a:c6:ea:84:20:e2:51:91:44:
         b3:7a:01:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org