Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Yw9KW6PvNaihYbqabHADSIaTRHM.roa
File:                     Yw9KW6PvNaihYbqabHADSIaTRHM.roa (raw, json)
Hash identifier:          HcZtTTr6DAvoc00b74Kn7pJXw7s3PyaFXhirN7w6n1U=
Subject key identifier:   63:0F:4A:5B:A3:EF:35:A8:A1:61:BA:9A:6C:70:03:48:86:93:44:73
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1216
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Yw9KW6PvNaihYbqabHADSIaTRHM.roa
Signing time:             Wed 29 Sep 2021 02:54:11 +0000
ROA not before:           Wed 29 Sep 2021 02:54:11 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     24164
IP address blocks:        119.77.192.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4630 (0x1216)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 29 02:54:11 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=630F4A5BA3EF35A8A161BA9A6C70034886934473
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:c9:d6:a9:e7:10:e9:1e:4f:22:16:91:92:a3:
                    0e:a0:2d:6e:6a:0a:3d:e3:03:08:c3:f5:6e:1d:1f:
                    44:4d:07:2d:b9:74:c1:c5:f4:ae:39:5b:a1:d6:37:
                    41:cd:e6:65:46:49:3f:6d:fc:06:49:64:09:5a:2c:
                    c4:4a:45:25:19:4e:0e:ff:4d:94:8e:a3:de:6a:08:
                    7e:46:cd:8b:c2:de:c8:c7:75:da:e0:4a:5d:36:d9:
                    8a:85:a2:8c:16:b2:96:5d:b9:22:2a:8d:e7:0b:97:
                    29:db:5a:07:8f:9a:b7:56:2f:2d:0b:7a:b1:4a:26:
                    8c:00:5d:22:d2:8e:c1:2b:c4:8c:fa:4e:49:5b:5c:
                    1b:e2:72:1e:5a:c1:64:72:b5:79:bf:6d:a6:fd:16:
                    d3:9c:b7:5e:aa:2b:7c:61:d8:6f:73:af:ed:40:ff:
                    3c:6f:63:e6:fd:be:69:31:ca:e0:ea:f3:3e:2a:77:
                    33:aa:cf:df:ed:4a:ba:85:17:30:d1:ad:e3:a6:b9:
                    85:c8:79:38:c7:9d:ef:58:24:c2:5d:4b:e7:e0:d9:
                    16:df:97:03:cc:6f:7a:31:2b:4f:12:f6:ad:85:8e:
                    bf:74:4d:29:1e:52:01:2f:dc:a8:a8:ac:1f:10:9a:
                    1f:c6:dc:71:dc:5b:b4:c0:c4:83:3c:7c:64:24:95:
                    0c:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                63:0F:4A:5B:A3:EF:35:A8:A1:61:BA:9A:6C:70:03:48:86:93:44:73
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Yw9KW6PvNaihYbqabHADSIaTRHM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  119.77.192.0/24

    Signature Algorithm: sha256WithRSAEncryption
         3a:1f:30:ec:ae:2b:9b:5c:c9:0e:e8:dc:2e:3d:6c:06:d0:99:
         c3:59:04:02:d8:cc:1a:59:2c:e7:c8:50:03:d3:75:a8:4d:d6:
         7a:58:21:75:58:2a:f4:84:da:5c:4f:02:b5:78:b8:94:2c:2c:
         27:67:5b:8e:da:b1:2f:97:7d:6b:fd:95:b2:ba:9e:70:a7:3e:
         17:06:7d:90:58:b3:38:11:f4:40:ff:e9:61:07:19:95:5d:17:
         58:cf:a2:cb:2b:5d:dc:9c:62:1f:cb:93:c1:67:9a:5d:51:7c:
         fc:c1:9f:26:2f:01:22:4a:8c:3f:5e:1e:01:3a:1f:57:e4:81:
         0c:6a:b1:37:17:16:c9:e5:a7:fd:84:92:32:ad:12:41:ba:03:
         d4:3f:73:67:b3:1d:d2:0c:ba:20:40:1c:a8:62:6d:bc:bb:5d:
         cd:87:12:f0:c6:3c:cd:20:19:62:34:ff:3d:25:42:77:9a:f0:
         f0:9b:e2:3e:b5:bc:de:c3:b0:14:af:f5:7b:66:d4:0c:f0:8d:
         44:b2:65:70:4b:b5:23:1f:d8:3b:95:c2:14:b1:96:05:5a:a0:
         30:dd:6c:56:ec:b5:01:f5:c3:8c:ed:2d:2a:53:c8:d4:d2:35:
         6a:df:a9:46:54:f7:9d:2b:54:d1:0c:7d:66:8c:80:6c:ef:7a:
         66:8b:1e:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org