Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XR1YGNgqsB7KtwXA-c4niUXvOl8.roa
File:                     XR1YGNgqsB7KtwXA-c4niUXvOl8.roa (raw, json)
Hash identifier:          2S3XFdGNchpW7iF8Q1jUrykmeryevgXMXbvbAcD3yo8=
Subject key identifier:   5D:1D:58:18:D8:2A:B0:1E:CA:B7:05:C0:F9:CE:27:89:45:EF:3A:5F
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       19B2
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XR1YGNgqsB7KtwXA-c4niUXvOl8.roa
Signing time:             Sat 22 Oct 2022 06:08:05 +0000
ROA not before:           Sat 22 Oct 2022 06:08:05 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24164
IP address blocks:        49.159.216.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6578 (0x19b2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Oct 22 06:08:05 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=5D1D5818D82AB01ECAB705C0F9CE278945EF3A5F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d9:b5:9b:de:17:1a:e0:62:1b:9e:90:8f:47:e2:
                    31:17:a8:81:53:3b:f4:61:5e:c9:23:09:1e:70:98:
                    80:62:ae:db:40:56:3f:ee:66:f4:c5:8f:e5:ef:90:
                    db:29:3a:ad:ba:89:0b:ad:69:31:c2:71:90:a5:79:
                    53:07:1c:88:d1:fb:74:f7:3b:9c:0a:a2:54:27:c9:
                    5a:4b:41:ce:eb:18:bb:21:f6:c8:f1:49:42:ca:4b:
                    08:e4:6d:12:f8:de:4a:ec:8d:c5:50:26:5e:ba:dc:
                    fe:86:aa:db:91:e8:06:48:95:8d:36:66:c4:2d:9a:
                    56:dc:19:ab:13:a3:1a:56:d8:94:57:1b:22:d7:08:
                    22:52:3c:b2:c4:8c:fc:22:63:db:37:c4:f8:e0:5b:
                    44:f2:e8:99:49:55:5f:d1:2d:bc:d5:69:c3:d5:f7:
                    c1:d3:e4:78:92:d8:4c:d7:1b:26:60:cc:37:1c:0f:
                    d4:36:ae:a0:38:cc:48:70:b7:62:e9:3f:81:1d:98:
                    9e:69:e3:e5:9d:4e:5c:4d:bb:b1:44:ff:e7:f0:0e:
                    d9:77:39:42:a9:98:c1:b2:71:d8:a2:76:2b:ad:03:
                    4b:96:7a:49:87:d2:18:30:df:28:79:6f:5e:50:dd:
                    f1:ec:b3:ac:26:9b:72:01:c7:09:17:bb:f5:f9:d8:
                    f4:8b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5D:1D:58:18:D8:2A:B0:1E:CA:B7:05:C0:F9:CE:27:89:45:EF:3A:5F
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XR1YGNgqsB7KtwXA-c4niUXvOl8.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  49.159.216.0/21

    Signature Algorithm: sha256WithRSAEncryption
         4b:12:68:5c:d8:21:e8:b6:3f:76:bd:d6:85:71:7a:26:e3:69:
         28:76:66:a8:fe:c2:35:55:a2:bc:4a:73:dd:94:41:01:d9:8f:
         8f:84:ac:75:47:67:05:58:3f:30:3d:97:34:83:76:5d:06:e5:
         22:7a:e0:d1:da:f1:48:f8:1a:41:bc:51:9c:59:d5:94:88:02:
         0d:6c:cb:90:13:85:dc:bb:d2:f2:bd:de:d9:d0:d3:8c:f4:6c:
         51:81:e3:da:b8:a7:3a:2a:82:ce:23:bd:c6:38:a7:6f:9f:f4:
         f5:a9:bc:ff:1c:c6:a1:81:61:a7:4c:eb:38:5f:c5:34:8c:04:
         7e:cc:d4:20:37:fa:19:48:ff:3e:a9:7b:a3:49:89:c5:e4:52:
         bc:bb:d1:21:0d:81:48:f7:40:0e:6a:72:f3:ca:82:cd:b0:47:
         95:93:d2:ea:e6:cf:d0:aa:00:50:f8:6d:d0:fb:0a:91:3a:f6:
         ab:61:3c:6c:ce:6f:35:bd:57:e4:ce:f8:d9:c2:60:38:0d:07:
         4c:08:28:53:24:e8:95:78:11:0f:4a:c2:aa:b8:b2:7e:c2:3b:
         ad:dc:7f:94:35:ab:2b:ae:b8:1e:90:95:a6:53:67:40:23:ee:
         03:7e:58:2d:53:9e:05:65:0c:7f:81:91:cc:d6:f0:57:f4:a9:
         17:91:e2:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org