Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_XSrfn8no3jG79Y-vqr7Ul0a-2Y.roa
File:                     _XSrfn8no3jG79Y-vqr7Ul0a-2Y.roa (raw, json)
Hash identifier:          z86v1fHPUEEWq8V+ie+F51BqYeTNpEIpg0rmE6tiOP0=
Subject key identifier:   FD:74:AB:7E:7F:27:A3:78:C6:EF:D6:3E:BE:AA:FB:52:5D:1A:FB:66
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_XSrfn8no3jG79Y-vqr7Ul0a-2Y.roa
Signing time:             Thu 15 Sep 2022 02:35:56 +0000
ROA not before:           Thu 15 Sep 2022 02:35:56 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24164
IP address blocks:        123.0.43.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5374 (0x14fe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 15 02:35:56 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=FD74AB7E7F27A378C6EFD63EBEAAFB525D1AFB66
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:c3:22:cf:f3:15:95:56:7d:68:4c:28:1a:34:
                    02:8e:a1:6a:e3:79:73:ac:de:7e:ac:00:db:af:cb:
                    a1:bd:6c:71:c5:51:cd:b2:7f:17:f0:2f:e8:76:8f:
                    39:ab:94:13:6b:6c:9a:fc:3f:d0:70:65:b1:ab:47:
                    f7:c4:5d:64:89:94:db:f2:16:19:f1:9d:89:b6:c7:
                    58:79:c6:77:24:79:aa:cc:55:0b:69:d4:44:fa:a1:
                    a2:a1:3a:91:4a:13:59:3b:8a:a0:eb:9c:f6:1a:2b:
                    bc:92:87:60:11:63:e2:78:e8:22:53:08:19:02:8a:
                    5e:30:5d:b8:ed:61:b0:2e:0f:a2:cc:d7:63:79:2d:
                    64:b5:58:7b:c4:b8:76:a5:fc:42:5f:bb:74:41:73:
                    81:71:fa:db:76:60:70:3a:83:c3:d2:4d:5e:49:6f:
                    3b:ad:75:79:8a:f4:c0:48:99:03:4d:ce:0f:2a:7c:
                    e8:f9:e2:4a:78:f0:7a:bf:5c:f3:a5:72:8a:22:55:
                    49:a4:b9:92:8e:35:45:0e:0a:61:9c:3c:41:d7:f3:
                    2b:df:18:9b:c2:61:02:d7:c2:e5:f9:97:c9:28:83:
                    1d:68:45:71:96:bb:0a:90:15:09:d2:37:31:37:a2:
                    47:a2:81:34:9b:4b:ed:be:9e:4c:fd:35:fe:3b:92:
                    64:57
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FD:74:AB:7E:7F:27:A3:78:C6:EF:D6:3E:BE:AA:FB:52:5D:1A:FB:66
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/_XSrfn8no3jG79Y-vqr7Ul0a-2Y.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.0.43.0/24

    Signature Algorithm: sha256WithRSAEncryption
         0f:c3:25:39:0d:8a:12:ce:f8:f5:7e:97:ac:f1:f6:f5:36:9d:
         df:6a:00:11:a4:ee:75:17:05:0d:5f:b4:87:ac:28:48:6f:ed:
         de:e8:57:c8:7a:b7:21:86:a3:54:9f:1f:c0:d5:9d:64:e5:69:
         32:16:58:9f:10:73:ee:a2:fa:be:39:37:8b:ec:cc:08:ca:ff:
         35:9a:6c:dd:06:78:74:4c:c0:b0:0c:8b:b9:57:8b:df:72:c2:
         07:6d:2f:a7:8a:a8:65:5f:26:46:18:45:2e:79:09:f1:e5:17:
         1a:61:83:a7:2e:30:be:9a:54:fa:65:33:bf:8e:b1:a1:18:dd:
         00:61:35:ed:dd:3f:e7:a2:27:95:bb:3a:c9:43:09:87:df:ce:
         4a:43:c9:27:14:84:b3:ad:00:53:d7:27:61:de:7a:2a:de:7b:
         6e:89:c9:5f:7c:dc:6f:d6:bb:2f:1a:ed:7b:ee:f5:b2:7c:88:
         4b:c9:23:38:bb:ca:8d:d7:2c:b2:18:d4:53:0d:b1:f3:59:9e:
         d7:3d:50:f7:1a:dc:7c:d4:2a:e9:09:78:19:c4:47:98:1d:26:
         35:1c:32:18:18:17:90:2b:c7:27:e5:a9:ba:d0:f1:2e:71:7d:
         bd:c7:94:ba:a8:7b:83:60:f5:2c:c5:d8:c3:98:7b:14:ac:02:
         cb:0f:df:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:04 2024 by rpki-client on console-fra.rpki-client.org