Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nkE1Wtd_hZfH3sNMokg__YwDfrQ.roa
File:                     nkE1Wtd_hZfH3sNMokg__YwDfrQ.roa (raw, json)
Hash identifier:          1gL4Vl7TjYMIi/ifscJc9Gb6Rg14snpOcndJSYY1ML0=
Subject key identifier:   9E:41:35:5A:D7:7F:85:97:C7:DE:C3:4C:A2:48:3F:FD:8C:03:7E:B4
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       196B
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nkE1Wtd_hZfH3sNMokg__YwDfrQ.roa
Signing time:             Sat 22 Oct 2022 06:06:30 +0000
ROA not before:           Sat 22 Oct 2022 06:06:30 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24164
IP address blocks:        180.218.139.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6507 (0x196b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Oct 22 06:06:30 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=9E41355AD77F8597C7DEC34CA2483FFD8C037EB4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:fa:04:1b:48:2d:88:71:ca:89:d1:df:05:15:
                    b3:03:01:7b:a1:fd:91:39:e7:63:14:ee:0b:fd:c6:
                    88:ff:e4:ce:ba:5c:65:08:43:90:4a:85:37:79:d7:
                    fd:d2:40:af:a1:4e:48:88:88:7c:20:b3:72:9f:41:
                    a4:be:c5:62:fc:e5:e6:7a:bd:7c:b6:f7:97:a1:5c:
                    1a:a4:d5:43:55:4b:96:01:46:59:bc:0c:25:6f:af:
                    30:e8:38:6f:65:98:0b:3f:cc:ae:3b:89:12:61:89:
                    73:8a:4e:40:5f:f3:fe:8d:5d:91:9e:1e:bb:82:bc:
                    28:08:77:49:9f:f0:05:5f:a4:a1:6e:5f:a5:a1:ba:
                    31:78:d8:e7:ef:c0:87:1c:4f:6b:c2:ae:4b:eb:06:
                    e7:cb:5a:8a:ba:8c:d5:22:48:c9:a1:71:75:5a:c4:
                    17:3c:00:99:55:d6:65:e3:df:79:c5:df:4d:ba:d3:
                    c3:ed:ca:db:45:7b:a6:5f:db:db:12:a2:e8:20:86:
                    b1:01:70:ad:cc:a0:3a:3b:87:e7:6f:26:7c:7b:52:
                    a1:ec:0a:e9:b5:b7:0e:91:b2:5d:83:1c:fd:7b:c6:
                    7d:de:dd:df:28:03:31:94:14:b8:c9:4d:22:7e:56:
                    82:e5:1a:bb:ae:a7:26:78:c8:04:df:b6:99:54:4c:
                    d3:1d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9E:41:35:5A:D7:7F:85:97:C7:DE:C3:4C:A2:48:3F:FD:8C:03:7E:B4
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nkE1Wtd_hZfH3sNMokg__YwDfrQ.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.139.0/24

    Signature Algorithm: sha256WithRSAEncryption
         14:1f:4b:c9:27:2e:00:a3:40:c1:63:f6:ee:34:b9:20:26:48:
         36:f9:64:4a:78:9f:19:d5:64:ee:f0:86:11:c8:0e:15:7b:fb:
         eb:f6:e7:57:93:8f:1d:ac:5c:c7:14:20:58:25:07:b3:47:73:
         63:3a:e3:ce:46:88:9c:a1:9c:b7:0a:74:87:5a:12:63:e6:86:
         b7:4a:1f:70:0b:a5:7e:4f:cf:19:a7:a6:36:db:53:77:be:01:
         3f:b2:d5:26:87:32:4e:b8:03:13:5c:cb:b4:35:31:42:1a:ee:
         2d:9d:36:36:85:b0:32:e4:00:2f:6d:23:ea:fc:21:57:e1:38:
         2d:3f:08:ac:d4:45:4f:51:4f:63:76:f8:11:69:0a:0c:4e:2e:
         97:28:b4:22:b9:e7:1b:e8:38:d3:bd:d4:19:8d:20:6c:28:0a:
         9c:79:71:9d:f2:79:08:30:10:53:05:c4:c4:ba:a1:8a:0c:a7:
         aa:ca:e8:a2:2d:13:0f:0f:10:12:46:b5:09:9f:75:6a:a2:ae:
         7c:a7:1f:28:a3:58:22:77:b0:f3:00:1d:77:ba:08:6a:e4:17:
         29:b4:41:a2:32:75:9d:11:cf:a7:7a:64:66:7e:b1:86:a4:05:
         32:95:a6:79:32:75:d8:c9:45:f9:6b:f1:7f:25:dd:0b:16:cb:
         48:d0:f7:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:49 2024 by rpki-client on console-ams.rpki-client.org