Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/rg2G78m_PRJbTMUkr6APlWEFnBo.roa
File:                     rg2G78m_PRJbTMUkr6APlWEFnBo.roa (raw, json)
Hash identifier:          zG5svoVyMwnSEmSPK3dhf2XNBs9PbsZz5PQblxpkc9c=
Subject key identifier:   AE:0D:86:EF:C9:BF:3D:12:5B:4C:C5:24:AF:A0:0F:95:61:05:9C:1A
Certificate issuer:       /CN=1E79C6C033BB9D469E0CE8164538DF39E9F1C3BC
Certificate serial:       09
Authority key identifier: 1E:79:C6:C0:33:BB:9D:46:9E:0C:E8:16:45:38:DF:39:E9:F1:C3:BC
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/rg2G78m_PRJbTMUkr6APlWEFnBo.roa
Signing time:             Tue 08 Dec 2020 01:41:20 +0000
ROA not before:           Tue 08 Dec 2020 01:41:20 +0000
ROA not after:            Thu 02 Dec 2021 03:52:46 +0000
asID:                     38856
IP address blocks:        2406:d040::/32 maxlen: 64

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 9 (0x9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1E79C6C033BB9D469E0CE8164538DF39E9F1C3BC
        Validity
            Not Before: Dec  8 01:41:20 2020 GMT
            Not After : Dec  2 03:52:46 2021 GMT
        Subject: CN=AE0D86EFC9BF3D125B4CC524AFA00F9561059C1A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:34:0a:e7:a3:1c:07:e1:6a:b5:c7:ea:35:78:
                    11:47:d5:64:41:b9:50:99:63:ad:ae:68:b8:0a:ef:
                    18:99:0e:12:e2:94:51:99:b8:17:98:8a:7c:54:ff:
                    8f:bd:6e:f6:b9:d4:58:42:75:2b:b5:76:0d:2c:b0:
                    ad:d4:7b:56:94:4f:29:e1:02:95:bf:57:9e:dd:d3:
                    c8:88:ff:93:4e:9f:71:ea:83:9a:17:a0:c7:a2:b9:
                    b0:38:28:53:ec:a5:15:b2:8e:4e:34:1c:89:05:2a:
                    2c:a7:dd:51:e6:3b:42:14:bf:c2:f6:fc:8b:87:ad:
                    0e:29:cb:d9:04:2e:80:71:5c:64:78:43:e1:a8:2b:
                    37:b5:7e:b2:e7:62:03:41:94:33:80:d9:43:45:73:
                    13:c4:bd:11:52:e7:8c:70:d8:e4:24:84:dd:24:14:
                    5b:b1:7b:24:89:44:dd:6c:8f:e1:65:9c:3e:f5:e2:
                    ec:83:b8:6f:cc:43:7d:57:c2:59:05:bf:b5:51:18:
                    fe:4f:50:8b:8c:5f:51:e5:67:a8:c0:1c:04:7a:14:
                    ee:97:95:98:8b:51:3e:0e:37:8c:bf:ec:48:3e:98:
                    20:bf:6d:1c:f6:f7:d7:4f:f2:70:1a:e5:46:8c:bd:
                    12:c4:f9:09:0f:02:c4:36:10:d8:34:80:1f:e7:5d:
                    33:01
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AE:0D:86:EF:C9:BF:3D:12:5B:4C:C5:24:AF:A0:0F:95:61:05:9C:1A
            X509v3 Authority Key Identifier:
                keyid:1E:79:C6:C0:33:BB:9D:46:9E:0C:E8:16:45:38:DF:39:E9:F1:C3:BC

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/HnnGwDO7nUaeDOgWRTjfOenxw7w.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HnnGwDO7nUaeDOgWRTjfOenxw7w.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WALKSCLOUD/rg2G78m_PRJbTMUkr6APlWEFnBo.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2406:d040::/32

    Signature Algorithm: sha256WithRSAEncryption
         ad:4c:27:af:28:de:89:bb:f7:ef:5e:4e:14:fb:40:8f:f6:00:
         21:2e:da:64:8d:47:5c:38:82:8f:8d:70:72:c4:08:90:71:52:
         33:4a:93:77:89:76:6f:a4:cf:e9:17:f2:35:93:29:ee:1d:87:
         4d:9e:5e:03:d4:08:84:23:cb:58:e2:10:53:44:e7:b6:d1:ee:
         14:f1:d4:35:a2:ab:6f:98:d5:81:ff:05:76:17:fc:fb:fe:bf:
         0b:e7:a2:8d:46:a7:74:57:f2:8e:65:69:87:9d:dc:89:3a:b3:
         cf:de:f3:16:1d:83:eb:d6:0f:48:67:24:56:41:24:78:73:c3:
         ad:2f:33:88:ea:8d:c3:5c:b2:72:15:96:62:a7:08:98:56:bf:
         3b:78:45:6e:78:03:fb:17:76:7f:dc:c1:3e:07:04:49:39:32:
         3f:aa:c9:95:75:43:d7:63:c4:d3:55:16:d3:6f:64:10:de:86:
         51:68:aa:c0:e9:e7:16:eb:88:92:97:cf:aa:90:3a:d2:c5:c8:
         30:e7:4b:6c:2e:9f:c9:bd:85:73:f2:d1:71:82:58:2d:8f:3f:
         fe:19:d6:7d:31:a3:0c:71:08:79:a2:5f:7f:f8:5c:2e:52:f0:
         ca:df:56:d9:3f:51:88:56:50:5a:f2:65:4c:36:de:10:a3:8c:
         c9:4a:bd:56
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org