Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/TrYLEj5-43pFP-nEFLOO3xpDUbM.roa
File:                     TrYLEj5-43pFP-nEFLOO3xpDUbM.roa (raw, json)
Hash identifier:          nmuRFw977i9vn6MX3fzyun+n2BE4PtohnpQU0Pjb9W4=
Subject key identifier:   4E:B6:0B:12:3E:7E:E3:7A:45:3F:E9:C4:14:B3:8E:DF:1A:43:51:B3
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       0A45
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/TrYLEj5-43pFP-nEFLOO3xpDUbM.roa
Signing time:             Wed 29 Sep 2021 02:52:51 +0000
ROA not before:           Wed 29 Sep 2021 02:52:51 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     18424
IP address blocks:        103.30.47.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2629 (0xa45)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Sep 29 02:52:51 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=4EB60B123E7EE37A453FE9C414B38EDF1A4351B3
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:c7:01:28:78:56:fe:8b:3a:75:ae:58:fb:44:
                    c9:fc:42:8d:18:0e:ba:94:a8:6d:3c:f8:b5:dc:7a:
                    65:0e:fc:c9:a8:b6:1a:d8:f4:99:e0:8a:a3:c7:a8:
                    64:22:d5:49:4c:4b:7c:f7:bd:f0:47:54:80:f7:5d:
                    75:e6:42:d2:d5:60:2d:03:43:be:72:38:b1:ef:a4:
                    8e:2e:a1:8d:a7:af:70:6b:a5:b9:92:6e:50:43:01:
                    c9:ec:01:38:8c:43:dc:6f:9c:71:64:64:49:d0:95:
                    9a:3e:be:5d:6b:04:83:57:57:bb:59:a9:5d:5b:6b:
                    f2:f0:b0:25:22:53:05:c3:43:ee:e9:8a:69:12:81:
                    26:5f:2d:58:c8:3d:61:bd:c9:f3:a4:f7:84:d5:c9:
                    5d:5f:4b:b6:89:0a:98:fe:c9:cb:62:a0:fb:82:00:
                    50:b2:90:78:f6:66:ad:b1:7e:27:2f:e1:f8:79:d2:
                    97:25:ad:ed:b0:03:b5:e1:a5:6b:fa:5a:6b:3e:49:
                    e0:ce:89:04:a5:e9:5d:f0:ed:7d:e6:9c:bc:ee:af:
                    76:56:dd:ac:57:57:b6:fc:e9:0a:ed:00:98:46:12:
                    5e:3a:7f:e3:24:d4:f4:75:79:15:98:66:00:34:76:
                    36:8d:98:56:0e:52:d8:15:99:b9:3f:5b:f2:f3:49:
                    66:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                4E:B6:0B:12:3E:7E:E3:7A:45:3F:E9:C4:14:B3:8E:DF:1A:43:51:B3
            X509v3 Authority Key Identifier:
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/TrYLEj5-43pFP-nEFLOO3xpDUbM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.30.47.0/24

    Signature Algorithm: sha256WithRSAEncryption
         34:d7:76:de:ce:8d:92:f0:56:40:6f:d5:73:0f:af:6a:3c:9d:
         8d:1d:7c:4a:bd:e2:05:be:04:ae:9e:b8:50:dc:e0:5b:22:4b:
         e4:c3:af:83:d0:4e:f6:8b:83:19:3e:09:c7:40:ce:be:28:40:
         a4:00:e5:8a:ef:0c:89:14:21:31:50:3a:88:eb:45:45:87:e1:
         64:cd:22:96:3a:3c:cb:a9:85:8d:d9:53:7c:5f:9d:c1:d3:fd:
         11:7b:e6:45:7f:a1:97:c2:6b:18:ab:87:f1:79:e7:90:cf:e7:
         a0:bd:05:9b:42:66:e9:a5:e0:88:c6:4c:fb:50:b7:25:fd:b4:
         f9:12:7b:37:75:9f:30:be:f4:69:24:13:64:cd:ca:1c:27:3c:
         81:d4:69:8f:81:e2:24:92:b4:b6:ca:54:fb:74:16:12:c4:d5:
         ce:8c:8c:d4:3a:db:1b:72:7b:a3:f3:4c:e6:13:60:da:79:15:
         fe:0e:42:ab:ee:9e:fe:85:e8:e4:fb:c1:7e:25:5f:b2:0b:3e:
         f7:63:96:b9:f9:b9:ec:5d:00:2f:e6:6b:a8:1e:6b:c8:1d:55:
         79:2d:4a:c1:c6:af:69:d7:5c:10:61:f5:d2:a4:6f:58:bd:35:
         50:db:fc:b9:bc:7a:e3:39:5d:5c:a1:80:b3:cd:76:9a:8d:07:
         cf:71:92:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org