Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/kxy0CRvp9D81-8pIQoMGxNBmbPk.roa
File:                     kxy0CRvp9D81-8pIQoMGxNBmbPk.roa (raw, json)
Hash identifier:          c60szrOQ4aJzVt4kmX+D3FASTz5UVF3QptNhv04rFOY=
Subject key identifier:   93:1C:B4:09:1B:E9:F4:3F:35:FB:CA:48:42:83:06:C4:D0:66:6C:F9
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       084C
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/kxy0CRvp9D81-8pIQoMGxNBmbPk.roa
Signing time:             Wed 04 Nov 2020 08:29:48 +0000
ROA not before:           Wed 04 Nov 2020 08:29:48 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     18424
IP address blocks:        103.30.44.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2124 (0x84c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Nov  4 08:29:48 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=931CB4091BE9F43F35FBCA48428306C4D0666CF9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b6:f4:fd:46:ab:ed:e8:b9:01:f5:61:a7:d4:32:
                    47:22:61:45:01:ad:57:23:1a:c6:5d:0b:05:77:4b:
                    f6:f7:52:3d:cc:80:ec:a5:61:f9:1a:a0:c7:74:df:
                    ab:c5:5c:a6:61:e6:97:1f:1c:b0:c4:d7:dc:8d:4a:
                    cc:22:3d:6e:a3:87:63:62:c0:6e:6a:78:c0:3b:34:
                    5e:49:59:da:6f:16:55:22:20:98:31:8b:4f:29:d9:
                    8c:85:26:1d:d5:fd:c1:0c:00:6a:04:71:35:8a:50:
                    c4:76:ed:f2:e0:d3:49:ce:bb:da:3e:5b:cf:b5:ca:
                    57:0a:e9:d1:cb:75:2c:bf:03:20:c4:ba:90:27:89:
                    d7:a3:6a:b7:07:09:5b:2e:8b:09:16:ae:e6:d1:9a:
                    14:c9:91:46:3d:99:3d:13:7b:67:c9:91:db:4d:0a:
                    9f:5c:f3:0e:28:10:82:40:6f:5b:b7:3d:dc:89:a6:
                    f2:5a:dd:c0:66:71:83:40:a0:b7:6d:97:73:ef:93:
                    dc:fd:3c:8b:0e:27:0f:a0:ce:01:f8:b6:75:c8:b1:
                    c1:75:62:9f:b6:b2:4d:3e:ed:50:87:1b:43:a4:de:
                    09:a8:0a:15:87:ed:8c:8e:e0:15:10:8a:0a:05:60:
                    20:e6:6c:c1:5a:4e:d9:b1:96:81:96:e9:0a:a6:16:
                    aa:59
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:1C:B4:09:1B:E9:F4:3F:35:FB:CA:48:42:83:06:C4:D0:66:6C:F9
            X509v3 Authority Key Identifier:
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/kxy0CRvp9D81-8pIQoMGxNBmbPk.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.30.44.0/22

    Signature Algorithm: sha256WithRSAEncryption
         a9:24:c0:98:a3:8d:b9:50:9b:94:cb:4b:61:b1:44:a9:dc:af:
         28:f7:1d:07:e2:74:d5:35:9c:d5:79:22:be:a3:f6:a8:6c:df:
         7d:b7:31:96:83:53:9a:30:ab:e4:4a:b4:a4:5b:bc:26:5b:65:
         da:1d:d6:ba:ce:e7:e8:14:8a:bf:0c:e8:1a:b6:e7:6c:81:93:
         66:c7:2f:6f:e6:21:b6:68:01:42:15:03:76:72:53:59:4c:87:
         04:d2:f7:62:a8:ed:1b:d8:a5:9e:20:44:4c:2b:be:ce:d6:6b:
         15:7a:7d:0a:61:7a:6c:a3:ce:f7:05:70:0d:61:20:a5:18:cd:
         ed:5c:5b:30:32:5b:b7:6c:64:13:99:86:41:70:de:99:fa:b5:
         4e:7b:51:9a:7a:61:1b:94:1e:fd:2e:3a:36:5b:7c:e4:2e:14:
         aa:ba:97:b8:1c:96:57:cb:f1:68:2a:23:43:1d:f3:69:a7:5d:
         84:7b:82:c8:cc:f9:d2:78:d9:ae:9e:69:ce:00:9f:5e:98:28:
         c5:b8:3f:33:c2:db:84:27:58:90:ee:ff:99:55:0e:53:93:3f:
         8b:a5:47:e1:06:46:ad:f7:b6:61:26:39:9e:5c:f0:7a:fe:5c:
         8c:a6:47:54:66:a9:c2:38:24:c8:6b:20:3c:9c:42:69:a3:46:
         eb:82:7f:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org