Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uQN8kCOlaDUi-DlJyPBHUCOMjEo.roa
File:                     uQN8kCOlaDUi-DlJyPBHUCOMjEo.roa (raw, json)
Hash identifier:          O/6BrlDbJ+GFDO/L0kMbtux26AEZ96uWHLSd7ByN7Zs=
Subject key identifier:   B9:03:7C:90:23:A5:68:35:22:F8:39:49:C8:F0:47:50:23:8C:8C:4A
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       127F
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uQN8kCOlaDUi-DlJyPBHUCOMjEo.roa
Signing time:             Wed 29 Sep 2021 02:54:38 +0000
ROA not before:           Wed 29 Sep 2021 02:54:38 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     24163
IP address blocks:        211.76.64.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4735 (0x127f)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 29 02:54:38 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=B9037C9023A5683522F83949C8F04750238C8C4A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ab:2b:99:f8:a1:79:f2:9d:fa:0d:60:1e:48:ba:
                    a0:82:b3:1c:6c:88:bd:52:98:bd:51:8f:96:80:f7:
                    48:ef:c1:43:22:a1:6d:d8:01:51:81:50:e4:ff:84:
                    96:91:88:0a:dd:6c:8b:fe:58:f0:8f:54:cc:f7:08:
                    ef:e1:5a:ab:fb:d1:88:54:a2:0b:88:fa:cb:01:b1:
                    6f:4b:0c:bf:db:a6:3a:c2:80:1d:5d:97:e3:99:52:
                    ea:3f:14:e3:d9:34:05:a5:b2:e5:13:fd:75:5a:67:
                    2a:87:c2:41:7b:62:ce:f9:53:0b:29:44:39:a4:d7:
                    d6:87:e7:4f:b3:43:00:8a:e8:10:41:61:03:d7:1c:
                    58:32:e2:48:85:8a:1c:78:6b:d9:67:46:a1:78:26:
                    6d:d5:87:af:73:02:13:65:c1:4e:4a:37:6c:de:c5:
                    26:01:82:ce:5d:a4:5d:1f:36:05:47:9f:07:91:45:
                    cd:ef:ab:f5:72:f0:20:25:04:6f:f8:6c:1f:70:9f:
                    fc:0b:3a:3a:08:66:73:b0:4e:1e:21:44:32:4a:26:
                    55:bb:ba:c9:f6:ee:a4:f7:e6:28:dc:69:03:f2:b6:
                    78:c8:81:10:62:8a:70:e6:10:27:3c:34:08:64:77:
                    b7:17:d1:02:a6:ef:9e:48:f8:7b:c7:9e:44:6b:09:
                    76:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B9:03:7C:90:23:A5:68:35:22:F8:39:49:C8:F0:47:50:23:8C:8C:4A
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uQN8kCOlaDUi-DlJyPBHUCOMjEo.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  211.76.64.0/21

    Signature Algorithm: sha256WithRSAEncryption
         58:f1:c2:35:d5:2d:36:c9:31:90:4f:ca:5c:63:08:35:68:d1:
         04:39:65:52:30:e3:70:aa:de:76:93:bd:b2:06:e9:75:6c:ca:
         a8:a9:9d:80:24:26:cb:73:e1:64:5a:bf:1c:0f:32:57:02:a9:
         81:a7:93:47:32:2b:fb:cf:96:e0:7a:14:21:c1:c2:b5:d4:0d:
         79:3d:b2:42:92:7d:99:33:c9:de:4d:31:6f:d6:34:b9:6c:1f:
         40:df:ca:23:5f:68:cb:de:f7:00:06:78:dd:2f:b0:fe:24:ab:
         e1:64:62:52:4d:db:65:07:c0:a3:96:c5:32:1b:f8:d3:ae:e3:
         d5:1d:75:11:cb:5f:c5:19:4f:e0:3e:a3:f0:5c:3e:97:7d:f9:
         47:55:b5:e9:3b:29:64:01:d7:0d:b1:bd:ad:90:66:97:1d:8a:
         62:a6:eb:8c:df:d3:46:9f:71:bd:52:05:55:57:5a:13:ee:07:
         82:90:ec:00:1f:a6:83:02:c6:ea:5d:e3:f6:c4:dd:76:2f:cc:
         25:96:7b:c3:bd:07:9c:11:71:91:d4:30:29:6b:35:01:af:ea:
         12:a9:32:3b:59:b2:91:3e:8c:58:f3:e5:75:b8:a0:11:8a:d3:
         fb:57:d8:b9:54:fb:cc:e8:5e:9a:bf:c7:9d:ee:83:5b:e3:51:
         7a:8b:4b:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:50 2024 by rpki-client on console-ams.rpki-client.org