Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jdCZOpktihfdjRDJjaDaX91qxEo.roa
File:                     jdCZOpktihfdjRDJjaDaX91qxEo.roa (raw, json)
Hash identifier:          N9C/fCRKB42By3LHybcqp9+9YOvQx8KFrI4j5ubr5WQ=
Subject key identifier:   8D:D0:99:3A:99:2D:8A:17:DD:8D:10:C9:8D:A0:DA:5F:DD:6A:C4:4A
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       12A6
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jdCZOpktihfdjRDJjaDaX91qxEo.roa
Signing time:             Wed 29 Sep 2021 02:54:49 +0000
ROA not before:           Wed 29 Sep 2021 02:54:49 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     24163
IP address blocks:        49.158.216.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4774 (0x12a6)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 29 02:54:49 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=8DD0993A992D8A17DD8D10C98DA0DA5FDD6AC44A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d7:7d:55:a7:23:49:5b:8d:d7:74:fa:7a:97:7d:
                    7a:e8:69:cc:2a:f5:34:21:66:6b:f2:48:2c:ed:57:
                    4b:35:ef:94:18:e2:b6:0e:79:99:4a:d6:c5:8b:e7:
                    6c:e5:83:08:f0:f9:f6:fb:3d:8d:d4:ec:c3:36:c8:
                    00:37:38:d5:6a:0c:f7:c0:22:80:19:d8:e1:8e:09:
                    6d:3d:8f:17:b7:45:ac:b7:72:ef:de:65:fb:97:e4:
                    a7:af:a0:da:3a:64:bb:c2:f4:1d:0d:2c:b7:1e:b0:
                    31:74:cd:ce:e6:79:b8:37:73:dd:57:22:e1:d5:56:
                    2c:86:48:2a:55:ab:73:dc:cc:2e:9b:29:81:04:01:
                    d9:be:81:5d:97:7f:5f:fa:e6:ec:d5:6e:a6:1b:d9:
                    00:34:fe:67:bb:3b:7c:64:2d:cb:1f:d1:bb:b5:06:
                    9e:f8:26:f1:72:05:eb:90:aa:36:3b:f3:b0:80:f6:
                    7f:d2:a0:2b:b6:4e:b3:91:90:d1:ec:d6:94:ff:18:
                    e3:4e:dd:05:a2:f5:35:87:b7:01:a6:e4:04:cf:c1:
                    81:15:ad:52:b7:f8:4a:4d:e6:96:51:07:5d:da:8b:
                    79:2a:3e:3d:55:83:96:81:77:5a:41:e9:6c:0f:21:
                    b9:83:96:e3:30:f3:83:7d:b4:6f:ac:2f:97:13:bd:
                    9c:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8D:D0:99:3A:99:2D:8A:17:DD:8D:10:C9:8D:A0:DA:5F:DD:6A:C4:4A
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jdCZOpktihfdjRDJjaDaX91qxEo.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  49.158.216.0/21

    Signature Algorithm: sha256WithRSAEncryption
         8c:34:b7:7c:6e:83:9e:d2:d4:6f:a9:ef:c5:8a:87:d2:fc:d4:
         00:d6:f1:72:f8:d4:be:c0:e4:eb:dd:9b:3c:74:56:ed:8b:34:
         ac:e7:13:2d:6b:3d:35:db:55:ba:24:a8:8c:e4:1e:58:7c:14:
         09:e8:62:b3:cd:50:a8:d9:e5:9b:9b:f6:69:70:03:4b:59:0e:
         d3:0e:fb:f0:3b:55:9c:01:03:81:a5:e3:fc:96:ec:85:ed:ef:
         5c:ad:d2:9d:57:ba:0f:3f:39:41:ec:c2:c8:b5:65:53:8f:db:
         e7:a5:4a:65:df:cc:04:04:0f:31:9b:bf:48:bb:ff:aa:ac:27:
         79:ed:d3:35:35:82:14:b4:c4:2b:69:b7:c2:9b:9f:10:03:19:
         4c:34:be:84:5a:a9:85:66:5a:41:43:2d:3a:01:97:81:79:d4:
         31:29:37:61:56:d2:d4:04:53:65:59:15:05:c9:52:a8:27:a3:
         2f:17:f8:49:47:e1:f6:79:57:e6:30:7a:cf:49:95:b2:a7:36:
         7d:a4:4d:b3:04:1c:70:79:91:5b:40:62:1e:7f:b4:2d:9b:41:
         d9:04:47:4d:11:bc:55:e9:ea:d6:45:c0:96:33:92:ce:71:6e:
         38:4b:3b:77:29:0a:89:29:8f:a3:49:91:35:92:9b:e0:25:46:
         45:96:3b:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:05 2024 by rpki-client on console-fra.rpki-client.org