Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/d58E5KzY2x800jFe_pylpPeNPh0.roa
File:                     d58E5KzY2x800jFe_pylpPeNPh0.roa (raw, json)
Hash identifier:          5ZzSBXskY2efMVcTFt0tyuI/e/tvPx1nI4SlwRu0ODc=
Subject key identifier:   77:9F:04:E4:AC:D8:DB:1F:34:D2:31:5E:FE:9C:A5:A4:F7:8D:3E:1D
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/d58E5KzY2x800jFe_pylpPeNPh0.roa
Signing time:             Thu 15 Sep 2022 02:36:07 +0000
ROA not before:           Thu 15 Sep 2022 02:36:07 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24164
IP address blocks:        49.159.104.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5374 (0x14fe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 15 02:36:07 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=779F04E4ACD8DB1F34D2315EFE9CA5A4F78D3E1D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:dd:2c:21:c9:1d:2e:8a:91:d0:c4:a5:46:d2:0e:
                    1b:f8:c1:60:89:7c:0d:f2:64:3b:5b:75:28:99:78:
                    38:cc:db:72:5a:a1:c4:6a:eb:64:0e:72:7d:24:43:
                    73:cf:38:b3:f2:4b:8a:21:99:7d:32:23:f7:02:87:
                    a6:8f:9d:25:e9:f3:db:d3:36:aa:f3:05:44:0c:7c:
                    f0:ab:b8:f3:2f:47:fc:27:9e:7a:d5:eb:01:fc:52:
                    9b:c9:f1:da:1f:4c:08:b1:8b:4a:7d:66:ce:7e:bf:
                    54:3e:2e:63:f1:55:6f:55:12:0d:9a:f6:33:8e:75:
                    61:cb:2d:6e:9e:fd:a8:3b:c2:25:f0:75:dd:d0:3c:
                    13:21:c2:48:9c:1a:d1:f4:75:0c:04:d6:f6:f2:b6:
                    0c:6a:fe:b9:a3:cd:ee:0b:c3:b7:54:37:e5:14:0b:
                    57:02:f7:31:2b:b6:06:36:54:0c:2c:40:23:de:02:
                    60:98:71:a6:41:bb:1b:ed:df:05:35:eb:34:4c:e0:
                    f7:33:66:d0:e5:98:37:1c:c4:a5:f8:89:44:35:a6:
                    5c:bf:b3:19:a8:93:cd:ea:cf:78:3c:3c:66:2d:94:
                    8b:31:db:ba:8a:9b:52:03:df:4a:09:43:34:b2:80:
                    12:6b:94:b5:39:4d:e4:a7:1b:67:f8:2f:a8:c5:b9:
                    12:63
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:9F:04:E4:AC:D8:DB:1F:34:D2:31:5E:FE:9C:A5:A4:F7:8D:3E:1D
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/d58E5KzY2x800jFe_pylpPeNPh0.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  49.159.104.0/21

    Signature Algorithm: sha256WithRSAEncryption
         7c:c5:f1:8d:bb:39:2f:c6:6a:7d:06:9f:11:60:33:09:09:f9:
         31:27:79:9b:c5:87:73:50:cf:7f:bd:b3:4b:8c:60:05:78:e3:
         49:31:2c:fd:b6:08:39:e0:51:3d:ff:03:ef:f4:2f:1f:3a:83:
         ed:10:0c:aa:ab:f6:bc:f7:2f:32:43:ed:4c:a8:af:d1:5c:64:
         47:f6:1c:8f:98:04:5d:2b:ca:92:2e:41:79:f0:f2:37:6c:8f:
         89:35:5f:96:4f:10:c5:4a:e7:b4:76:2a:4b:de:8e:70:3d:c2:
         a0:c5:3e:d6:a2:06:9e:49:24:60:92:b9:7c:51:44:2f:e3:86:
         9f:b1:e6:37:69:f7:34:37:ff:25:c2:e5:83:1e:0a:99:ee:9a:
         7d:81:f0:9f:91:e6:8c:e6:a8:95:26:d4:a4:c4:d7:02:5b:75:
         94:92:1f:05:54:cd:fa:ea:f2:49:70:e3:b5:77:de:37:84:42:
         83:f0:72:57:cb:32:dd:d7:d5:99:77:c6:e1:00:06:02:90:20:
         40:4e:ab:cf:60:df:40:78:34:08:47:da:c7:f0:ae:f1:86:59:
         9d:9b:35:dd:a5:9d:4e:90:18:99:b9:f9:08:a1:90:47:5a:39:
         92:35:ec:dd:22:72:1e:0b:51:23:79:76:78:ac:1b:a9:ea:d1:
         bf:23:a8:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org