Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dQVgUJZv2zAJ0DuN-QhB0pksZnM.roa
File:                     dQVgUJZv2zAJ0DuN-QhB0pksZnM.roa (raw, json)
Hash identifier:          7FhE385+cFlDBywfx4jPzqf/V+fEpcRC1jqy1EngBXg=
Subject key identifier:   75:05:60:50:96:6F:DB:30:09:D0:3B:8D:F9:08:41:D2:99:2C:66:73
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       19D6
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dQVgUJZv2zAJ0DuN-QhB0pksZnM.roa
Signing time:             Sat 22 Oct 2022 06:11:45 +0000
ROA not before:           Sat 22 Oct 2022 06:11:45 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24165
IP address blocks:        49.159.68.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6614 (0x19d6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Oct 22 06:11:45 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=75056050966FDB3009D03B8DF90841D2992C6673
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:a9:09:a2:28:b5:95:3c:59:ee:00:81:8b:69:
                    09:3a:db:ff:0e:ee:52:42:ea:48:8a:64:cf:7e:87:
                    56:c4:b4:5d:cf:7c:88:57:a5:3d:8b:e5:b4:79:8c:
                    fc:2a:e6:e1:b2:d9:3e:04:b1:0b:c4:fd:66:50:84:
                    85:10:c9:a3:ec:73:0d:19:71:1f:98:c9:ea:68:bd:
                    7c:91:95:82:67:e8:fa:32:96:29:c4:cf:4e:5d:16:
                    ef:7b:0c:89:d5:f4:54:c9:fd:2f:72:fe:cc:03:cd:
                    dd:28:5c:75:40:a8:cf:07:52:68:6e:49:d1:09:54:
                    3e:cd:31:a1:ab:bc:c4:9d:72:47:5c:66:5e:97:44:
                    15:ea:c5:5e:06:56:a5:e1:e9:e1:36:d0:3a:8d:1b:
                    8d:ab:11:0e:b5:c8:f2:6a:05:2b:39:2f:07:83:33:
                    12:ac:37:d8:c0:a7:77:de:94:5a:21:c6:e5:0b:d7:
                    6c:c6:19:55:c6:4f:9d:13:39:e1:ae:3b:82:71:c4:
                    8c:d5:7d:8c:f1:59:a2:5a:e0:f6:eb:28:60:9a:d6:
                    a5:51:34:0b:08:2e:70:a5:c7:1a:5a:4e:e9:9f:03:
                    f3:2a:51:b4:22:4c:3d:d8:09:36:58:19:7e:e7:ec:
                    3a:3d:55:e9:b0:ad:62:f0:b9:c4:c0:64:03:1f:05:
                    15:4b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:05:60:50:96:6F:DB:30:09:D0:3B:8D:F9:08:41:D2:99:2C:66:73
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dQVgUJZv2zAJ0DuN-QhB0pksZnM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  49.159.68.0/22

    Signature Algorithm: sha256WithRSAEncryption
         5c:2e:6d:95:54:09:d4:cd:dd:43:79:71:f0:34:ee:98:85:4c:
         d9:b4:f4:bf:34:7d:ca:09:2f:18:2e:48:ea:44:94:62:0d:5e:
         ef:95:cb:39:36:8c:f1:b3:64:ab:bb:bd:d5:a8:a7:3b:6c:57:
         df:fd:49:d9:f8:34:b0:9d:5b:3d:3d:12:56:b8:0e:c7:8d:69:
         a6:87:a7:ee:8b:5b:cf:68:f0:16:2d:da:5c:7b:b0:40:2d:ba:
         f9:f5:55:a1:c2:01:54:ea:34:6d:a4:a1:5f:9a:76:01:d1:2f:
         a3:b9:97:c9:5e:6c:27:25:95:19:df:19:ba:27:b2:f4:1f:32:
         cf:04:12:d6:d2:6f:6d:0a:e7:01:cc:4f:34:2d:fa:f4:67:3c:
         f4:26:9c:06:b6:e7:e1:b6:c8:e1:5d:8e:3b:06:fe:a2:73:73:
         bf:26:17:f0:2b:d4:de:54:b1:e6:95:f5:ed:94:55:1f:85:f2:
         cd:79:c0:8d:e0:6f:22:e5:b2:4f:1a:e6:36:fc:5f:59:91:7a:
         40:50:72:b3:01:6d:02:59:0c:37:96:a6:71:16:ff:43:4a:d8:
         bf:9c:a9:11:ea:0e:19:c3:f9:83:e4:6b:49:4c:a3:63:f7:fc:
         c8:02:a6:b3:39:4c:05:f3:45:3b:89:a4:45:85:82:98:fd:ce:
         e5:18:42:24
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:48 2024 by rpki-client on console-ams.rpki-client.org