Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/8gAYFFif8DccxiE_LOGN2EGnWXY.roa
File:                     8gAYFFif8DccxiE_LOGN2EGnWXY.roa (raw, json)
Hash identifier:          Qg0v4bB4cKkWJ2wobFJfzECpTeVS0UzYeeRpHEpywwY=
Subject key identifier:   F2:00:18:14:58:9F:F0:37:1C:C6:21:3F:2C:E1:8D:D8:41:A7:59:76
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       0967
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/8gAYFFif8DccxiE_LOGN2EGnWXY.roa
Signing time:             Sun 07 Feb 2021 13:05:21 +0000
ROA not before:           Sun 07 Feb 2021 13:05:21 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     18424
IP address blocks:        121.50.148.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2407 (0x967)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Feb  7 13:05:21 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=F2001814589FF0371CC6213F2CE18DD841A75976
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:3d:96:56:31:b3:64:d5:86:f7:88:c7:03:4f:
                    1c:2b:e1:5b:a3:bb:39:13:51:72:a9:fa:d5:88:0f:
                    b9:49:26:e6:b2:35:ca:f3:da:e9:71:92:52:ca:63:
                    d2:06:7d:4b:ab:08:2a:15:79:d5:15:72:1b:93:06:
                    95:d9:19:af:c5:2d:af:99:6a:83:dd:24:c1:93:f5:
                    c2:db:a7:e7:6c:58:75:ec:77:74:d8:20:90:17:94:
                    a5:0c:a2:84:a1:44:d0:c2:dc:a1:6e:d7:47:5c:a8:
                    13:66:0d:b7:2e:dc:e1:10:bf:37:9f:9c:08:a8:68:
                    e2:c2:76:d5:83:24:11:aa:21:52:14:70:b1:e4:77:
                    a8:1f:bf:ac:58:40:3c:cb:1c:98:0f:25:28:72:70:
                    5b:83:4b:c4:53:79:b9:68:e7:69:d1:7a:93:d5:30:
                    db:14:ee:b5:6e:18:84:50:5a:28:79:31:bd:37:78:
                    f3:eb:3a:b2:79:4f:ab:3c:f2:7f:e4:b5:ac:6d:6d:
                    0b:f4:0d:29:3c:70:ac:5a:14:48:bd:1c:21:3d:7d:
                    42:59:ef:76:bd:1f:82:eb:fa:14:c7:b1:d2:86:83:
                    90:c6:1d:ad:cd:bd:3e:fd:25:e4:fe:1f:62:5f:e0:
                    a2:d8:f8:91:0c:26:71:b7:ee:a3:00:18:d1:74:fc:
                    5b:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:00:18:14:58:9F:F0:37:1C:C6:21:3F:2C:E1:8D:D8:41:A7:59:76
            X509v3 Authority Key Identifier:
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/8gAYFFif8DccxiE_LOGN2EGnWXY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  121.50.148.0/22

    Signature Algorithm: sha256WithRSAEncryption
         6a:cb:a5:01:ab:22:59:33:16:dd:01:c7:02:87:fe:c6:1f:e3:
         92:4c:8e:54:84:14:50:51:88:77:80:50:3e:f3:06:19:2f:0b:
         77:e2:4e:c4:81:22:6d:10:2a:d9:02:4d:ea:12:29:dd:3d:3b:
         f0:f4:58:08:6c:78:38:7a:53:09:53:a5:98:cb:e3:b5:4f:32:
         03:4a:31:64:c1:e4:3b:b1:db:21:9a:f4:ee:7d:a3:8f:d9:c5:
         d6:ec:d5:71:a6:fa:88:c1:93:4c:73:82:75:f9:2a:f2:09:a5:
         26:82:d3:99:14:4e:28:a7:be:66:cf:10:7b:83:86:6c:d5:f3:
         27:a3:89:33:9d:4b:19:bb:f5:7f:38:fd:8e:d4:62:f0:76:42:
         8c:de:19:03:18:a7:e3:05:a7:e7:97:f1:ba:1e:5b:f9:55:84:
         48:51:c8:2c:28:44:46:05:1f:38:e3:dc:5a:2b:6d:df:fe:e0:
         70:e5:49:0e:9a:3b:57:71:bb:29:14:93:1b:59:6d:e0:41:ed:
         64:e8:ba:e9:a7:cf:4d:be:2f:96:c7:ed:71:a6:9a:ed:32:9f:
         0b:41:7a:3a:45:76:fb:3e:ea:9a:1a:50:22:75:10:8c:b9:ce:
         f0:aa:a6:ee:1f:1a:9a:a3:7c:73:b9:d3:a2:e7:78:fc:dd:c2:
         f7:f7:90:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org