Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hYYLZ4ztrGMEHHGMvPP-ytAeKbQ.roa
File:                     hYYLZ4ztrGMEHHGMvPP-ytAeKbQ.roa (raw, json)
Hash identifier:          7WTcioRsQWrl6kOh4E3IV+g0Jqgtfy1ZypL5cE6ehyc=
Subject key identifier:   85:86:0B:67:8C:ED:AC:63:04:1C:71:8C:BC:F3:FE:CA:D0:1E:29:B4
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       130E
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hYYLZ4ztrGMEHHGMvPP-ytAeKbQ.roa
Signing time:             Wed 29 Sep 2021 02:55:19 +0000
ROA not before:           Wed 29 Sep 2021 02:55:19 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     24164
IP address blocks:        180.218.222.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4878 (0x130e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 29 02:55:19 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=85860B678CEDAC63041C718CBCF3FECAD01E29B4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:1e:a4:d0:e9:4f:3e:af:a5:f2:17:78:b7:4c:
                    6d:c8:c0:cf:ca:4c:5c:07:5b:df:2b:f0:58:bd:a8:
                    b0:37:9f:42:1d:0a:60:ec:30:3a:c0:83:91:aa:a7:
                    9f:97:5c:bb:cc:c7:b0:e9:15:44:b9:62:5c:c0:c4:
                    fc:a4:8a:76:53:6a:79:a3:5d:e2:ba:e8:4c:1f:6f:
                    f4:f6:54:03:30:58:40:9b:2c:8c:93:ec:cb:89:d4:
                    69:10:d6:28:d8:80:53:87:2c:24:81:5f:0b:e8:fb:
                    52:e0:8b:80:d4:37:d9:2f:a7:3a:d5:2e:54:18:3b:
                    ce:c1:1e:67:17:4e:4e:b6:d9:30:f5:42:a4:a6:b4:
                    06:47:eb:86:fe:b5:32:8d:72:1e:12:3f:d9:29:59:
                    17:7b:c1:81:d6:b1:bb:27:20:76:93:8f:50:07:8f:
                    c4:b1:12:8c:7b:be:f3:19:7e:0a:6d:18:9d:7b:9c:
                    a7:de:d3:eb:29:e6:0d:43:5a:66:33:50:68:d6:92:
                    93:a6:e8:42:cc:56:cf:ff:3d:99:fc:35:22:7e:da:
                    79:f6:2d:01:32:c1:ba:a2:59:48:ad:cb:2b:4b:c2:
                    6d:5b:e1:2d:0a:78:94:fb:d3:08:33:7c:6d:50:5f:
                    41:fd:c7:36:1f:77:d3:b5:bb:cc:ae:ff:73:f2:bb:
                    ef:71
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:86:0B:67:8C:ED:AC:63:04:1C:71:8C:BC:F3:FE:CA:D0:1E:29:B4
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hYYLZ4ztrGMEHHGMvPP-ytAeKbQ.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.222.0/23

    Signature Algorithm: sha256WithRSAEncryption
         78:79:71:5e:c7:cf:ee:b6:1a:34:b1:c7:49:0b:b6:61:d9:63:
         de:6e:e2:a5:6e:89:0b:55:4f:0d:2d:39:d8:90:58:3b:e9:be:
         ad:61:99:7a:f2:f7:5d:6b:58:96:9d:4e:96:45:71:66:68:b2:
         e0:08:ac:3f:ef:75:76:f6:3a:2d:c6:38:7a:79:e0:bd:57:cf:
         39:f2:a3:f8:d1:ac:98:5c:9a:e4:98:2c:58:02:e4:37:b0:30:
         13:be:66:25:6d:c1:ba:0e:17:b8:7b:a1:f9:03:32:d1:41:a0:
         30:62:92:04:bc:9b:7b:b2:32:bd:d3:d2:ac:7f:3a:33:d7:3a:
         4a:05:1e:e4:56:de:c1:ff:65:f9:de:41:1b:ff:5a:b4:de:29:
         92:5d:55:89:6e:85:83:5d:ea:19:4b:58:68:ef:66:bf:db:28:
         41:ff:10:c0:90:49:d6:57:2c:4c:71:68:e5:e2:43:a1:ab:79:
         b7:f8:3d:1d:3a:2e:aa:f3:42:b7:18:e4:4e:02:1c:88:dd:9e:
         82:ae:58:ed:83:9e:7a:d7:b7:8b:31:7f:a4:21:65:ba:2c:6d:
         32:bb:1f:99:27:a3:82:a0:57:23:89:da:ae:9f:d2:ed:9c:66:
         83:56:0d:cc:0a:52:3e:30:40:99:95:9b:34:9d:79:0d:5f:dc:
         2d:b4:cf:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org