Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dP9mM40sfq9KOP6qT1SHE95roEk.roa
File:                     dP9mM40sfq9KOP6qT1SHE95roEk.roa (raw, json)
Hash identifier:          7F320Dp9eMLRQBFveVYI/QOC20yb2DLZPxHruvb/OfY=
Subject key identifier:   74:FF:66:33:8D:2C:7E:AF:4A:38:FE:AA:4F:54:87:13:DE:6B:A0:49
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dP9mM40sfq9KOP6qT1SHE95roEk.roa
Signing time:             Thu 15 Sep 2022 02:35:49 +0000
ROA not before:           Thu 15 Sep 2022 02:35:49 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24164
IP address blocks:        180.218.72.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5374 (0x14fe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 15 02:35:49 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=74FF66338D2C7EAF4A38FEAA4F548713DE6BA049
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:b6:0b:cb:ee:86:56:ed:e7:a4:c9:45:c1:0d:
                    54:09:f1:6a:69:4a:57:c3:58:d7:bf:53:c1:f4:2f:
                    c6:d0:82:2e:2a:f5:e7:7d:d7:c0:fd:89:b6:c1:6f:
                    bb:93:0e:34:a4:77:31:59:2d:08:d3:29:70:8f:29:
                    bb:e9:69:b3:a1:fc:a1:91:db:cb:ae:c0:3b:90:20:
                    43:47:20:73:5c:8f:49:2e:a0:6d:ee:84:a3:5e:e6:
                    28:54:ed:3a:04:8e:ff:07:41:e8:44:bc:39:c8:05:
                    74:2f:e2:a1:cf:4e:a8:9d:2c:ec:32:a5:fa:cc:d5:
                    b4:8f:df:e5:cf:18:2d:8a:b6:1f:da:6b:ab:46:96:
                    81:ac:43:93:79:ac:41:93:f4:8c:bb:61:35:af:45:
                    27:29:6b:26:26:1c:9b:1d:6e:b1:a8:54:22:de:25:
                    b1:f1:63:fa:63:d5:de:72:6f:5c:7f:f5:a0:56:5a:
                    7f:f1:50:b1:fa:04:85:26:30:6a:4c:dd:cc:18:1d:
                    61:81:96:9e:d9:5f:0d:71:6a:4c:cc:7b:67:ff:24:
                    79:1f:6f:e3:cd:dc:69:12:0a:78:da:c1:4f:10:68:
                    38:6d:99:54:6d:36:b4:1c:73:86:01:7c:e4:6f:15:
                    c9:9a:aa:87:e6:d9:66:d1:f3:6a:8a:f5:67:69:88:
                    2c:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                74:FF:66:33:8D:2C:7E:AF:4A:38:FE:AA:4F:54:87:13:DE:6B:A0:49
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dP9mM40sfq9KOP6qT1SHE95roEk.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.72.0/21

    Signature Algorithm: sha256WithRSAEncryption
         73:a1:af:1a:ec:db:5f:ca:87:80:0e:28:f9:dc:20:5a:e4:21:
         d5:00:76:2b:6a:5e:1a:a0:70:bc:a5:e6:cc:68:95:c2:ef:0f:
         b7:8e:6e:07:03:63:0a:1f:70:84:7e:c6:30:8a:90:91:5c:b9:
         ed:47:0f:df:c7:d0:af:1d:13:90:4b:fa:f2:31:4b:cf:39:12:
         59:24:11:a3:db:11:32:33:b8:77:e0:c7:b8:5e:76:ad:8d:63:
         2c:54:20:e6:86:e3:8b:2a:15:e4:7b:ec:d1:a9:f0:68:bb:f6:
         5b:21:63:8f:bb:bd:57:51:0a:f7:db:3e:dc:65:51:6a:9d:0a:
         14:84:b7:51:1c:8e:39:f7:1c:88:a8:c8:32:8b:cb:e6:d1:49:
         2a:c9:5b:c7:34:fe:10:b8:95:4f:0f:db:97:07:bb:ff:98:7b:
         46:bc:c0:69:c6:4d:40:c6:9f:a3:3e:f9:dc:71:f5:d0:a1:66:
         c5:2c:f0:fd:3e:55:7b:fe:04:0e:f1:e5:d1:d0:a5:b6:5f:e5:
         c7:84:f5:1c:4c:e0:2f:ed:25:15:ee:7c:da:ee:25:b7:0c:8f:
         40:3f:7a:7f:6d:52:67:82:ad:c9:38:69:bd:78:e7:1f:24:58:
         50:37:84:4a:fd:2d:32:e5:78:e4:43:fe:e9:ca:17:87:49:89:
         ce:bb:1c:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org