Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Tmm0dAxHgLuHtY-L01Il4ZjxdDs.roa
File:                     Tmm0dAxHgLuHtY-L01Il4ZjxdDs.roa (raw, json)
Hash identifier:          peYSMWGc++MRCr6385ylaEqCRxuOuN4Jsz5/zSI3CAQ=
Subject key identifier:   4E:69:B4:74:0C:47:80:BB:87:B5:8F:8B:D3:52:25:E1:98:F1:74:3B
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Tmm0dAxHgLuHtY-L01Il4ZjxdDs.roa
Signing time:             Thu 15 Sep 2022 02:36:29 +0000
ROA not before:           Thu 15 Sep 2022 02:36:29 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24164
IP address blocks:        180.218.168.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5374 (0x14fe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 15 02:36:29 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=4E69B4740C4780BB87B58F8BD35225E198F1743B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b9:4a:a2:97:91:b9:c7:c6:84:05:f8:85:e3:26:
                    59:2e:59:98:c0:f8:b0:28:7a:7b:0b:3f:92:bf:7e:
                    f0:8c:19:7b:91:36:6b:d8:31:1d:8e:c6:f4:95:3d:
                    2b:b8:43:02:9b:fa:be:70:d6:c1:bd:59:2b:3e:74:
                    66:3e:e4:e2:92:db:4b:e0:77:c2:93:02:48:65:5e:
                    d1:47:c6:0c:a9:6d:09:8b:e5:29:56:31:f6:bd:d9:
                    6f:be:0a:c7:c0:dd:b7:85:7d:60:4a:a1:b2:c4:21:
                    f0:59:e7:49:01:4a:a4:3d:31:d9:a2:e6:8f:1b:b3:
                    27:b9:7e:00:be:c3:a9:3c:8f:b5:b4:8c:0b:50:00:
                    b3:ae:11:f6:a7:f0:3f:41:9b:7d:f2:a6:3b:81:ed:
                    e7:e8:c9:5a:0a:ac:38:96:bc:ad:d7:62:f0:0b:cd:
                    66:8e:2e:79:54:01:fb:af:f7:e4:27:ba:a3:d8:97:
                    d0:a4:63:e2:ac:8a:dc:0d:a8:0a:af:9a:91:6e:a4:
                    fd:ff:14:58:77:9e:06:ea:a0:36:c6:68:d9:4f:74:
                    e4:6c:75:19:c9:fe:9f:ae:ec:32:6d:ab:e8:2b:83:
                    67:55:ab:14:d6:2e:2e:a3:b0:95:df:94:fd:8a:29:
                    50:fb:27:e5:2b:1a:7e:40:99:71:e8:7a:6f:de:79:
                    46:95
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:69:B4:74:0C:47:80:BB:87:B5:8F:8B:D3:52:25:E1:98:F1:74:3B
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Tmm0dAxHgLuHtY-L01Il4ZjxdDs.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.168.0/22

    Signature Algorithm: sha256WithRSAEncryption
         69:2f:78:14:a6:88:78:8a:02:94:9e:52:87:c2:cb:0d:9c:4c:
         b1:5c:ff:c2:c3:d6:d7:a1:09:42:d7:42:2a:a7:d5:2c:c6:76:
         67:d0:8c:b7:1b:08:a8:fe:9c:75:fd:bb:35:00:b0:0a:fd:24:
         1e:e1:bc:47:12:c8:f2:d2:4d:05:2b:6d:fd:f1:2c:a5:40:40:
         5e:63:c2:bd:50:41:ac:f0:22:0a:61:6a:2a:bc:3e:6c:62:2e:
         90:cf:2a:34:58:33:61:3a:61:d5:63:ba:32:cd:8c:58:39:cd:
         9d:0d:5d:f9:7e:ad:e9:bd:68:ed:4f:01:14:c1:ff:e1:58:61:
         dd:67:a5:1b:79:62:74:db:a7:bc:1f:16:be:70:68:e0:1a:08:
         0f:d3:ef:1d:d8:a4:1c:7b:07:25:b9:97:89:e6:ce:9d:f7:08:
         6b:3b:70:5f:66:a1:29:50:31:cf:d9:5e:61:35:04:45:33:9b:
         cf:b3:32:b9:bd:a2:7a:f7:e5:d7:b1:02:f7:e5:5f:dd:ed:a0:
         62:30:42:28:e3:ff:f9:0c:53:5f:7d:64:b0:07:4a:98:65:b4:
         54:a5:fc:c5:be:d9:63:be:d2:4e:15:3f:65:2a:f1:e2:fe:57:
         9a:ba:74:b7:a5:fe:31:ab:3e:2f:f4:5e:85:d8:0e:39:8c:08:
         84:92:aa:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org