Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/rBrbFVhDnOH_Dl-VwWcDbEwo2WA.roa
File:                     rBrbFVhDnOH_Dl-VwWcDbEwo2WA.roa (raw, json)
Hash identifier:          cjBpvZZX1qcmFVN8wLY/RKMTLU+h5uL0heXbyb2qiV8=
Subject key identifier:   AC:1A:DB:15:58:43:9C:E1:FF:0E:5F:95:C1:67:03:6C:4C:28:D9:60
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       0BC0
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/rBrbFVhDnOH_Dl-VwWcDbEwo2WA.roa
Signing time:             Mon 27 Mar 2023 23:14:02 +0000
ROA not before:           Mon 27 Mar 2023 23:14:02 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     18424
IP address blocks:        121.50.150.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3008 (0xbc0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Mar 27 23:14:02 2023 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=AC1ADB1558439CE1FF0E5F95C167036C4C28D960
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b8:00:30:c6:76:71:b6:17:78:ee:56:87:dc:0b:
                    0b:34:a0:20:79:39:6d:8e:02:f3:71:82:c1:16:e0:
                    d6:7e:a0:fc:0e:24:46:73:53:04:98:b8:bc:5d:d1:
                    95:f3:67:a2:14:ff:6c:cf:d8:47:b3:05:6a:d5:ab:
                    11:61:0a:76:43:98:88:60:53:d6:7c:7d:63:66:f7:
                    e6:2d:38:83:3a:37:34:d4:32:d9:8d:bd:82:f4:37:
                    91:e5:b5:3b:75:44:5c:38:d3:54:00:62:4b:39:a3:
                    fc:c9:dd:92:94:00:86:52:84:66:55:23:b3:79:2d:
                    3b:ee:bd:38:5a:59:1a:89:9c:37:16:e7:e8:3f:b6:
                    c2:e5:de:b4:1b:cc:4c:b8:47:42:d1:26:87:13:36:
                    e4:e2:b0:6b:14:27:3f:ea:46:d8:56:8d:7f:11:86:
                    af:c9:f8:42:96:5f:02:ac:98:18:bd:93:26:91:ef:
                    19:16:59:03:60:bc:4b:1e:7c:bd:97:ca:3a:70:26:
                    85:10:01:a5:05:23:65:29:e1:7b:8a:c9:43:a8:d7:
                    6d:14:09:69:91:b6:0a:c1:7c:6d:fc:25:e0:c3:ef:
                    f5:a6:f5:3a:e9:d0:18:4a:37:df:00:51:3a:c8:f4:
                    4d:d2:21:a9:78:ab:62:a6:5c:19:8c:be:a2:5f:91:
                    b8:9d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AC:1A:DB:15:58:43:9C:E1:FF:0E:5F:95:C1:67:03:6C:4C:28:D9:60
            X509v3 Authority Key Identifier:
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/rBrbFVhDnOH_Dl-VwWcDbEwo2WA.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  121.50.150.0/24

    Signature Algorithm: sha256WithRSAEncryption
         b1:b2:d7:42:d6:4a:e7:3b:21:06:d5:97:33:e4:90:72:e5:e4:
         0a:02:91:c1:f9:dd:9d:6f:86:b1:9e:15:9d:3e:19:66:24:92:
         98:a2:f7:67:ca:18:18:79:f5:c9:64:6e:9b:18:79:fd:ec:a2:
         34:11:af:de:e5:46:50:4a:eb:84:68:16:79:87:7c:29:94:6b:
         be:03:b6:49:c3:8e:79:68:9b:d7:4b:c6:07:1a:85:d7:af:f6:
         11:c4:88:38:e9:d0:3a:c7:a5:15:ae:eb:7d:66:c8:ea:f5:b4:
         fe:4f:03:7d:ba:75:c5:26:e7:1a:c7:88:5e:9e:b6:63:19:63:
         d3:a8:b5:d8:eb:c8:f5:b3:94:c3:d5:44:a3:3c:e9:c0:35:43:
         30:08:95:8d:29:15:37:27:cd:89:c7:78:a6:79:54:99:ac:67:
         a6:e5:21:2f:75:32:63:5d:0d:f3:ec:91:4e:72:7b:29:b4:3f:
         7d:31:f5:e2:bd:17:67:a3:ae:9e:3e:eb:a9:5a:ba:55:2f:03:
         d6:43:29:a5:0a:7d:75:eb:df:3c:3d:9d:a4:72:27:b4:09:69:
         3a:a5:1a:5e:52:22:0b:0a:06:2d:c0:10:87:b6:30:1d:2f:a6:
         8b:e5:cc:d9:c8:be:1e:65:ed:df:22:01:46:cd:a6:c2:b4:c4:
         5c:e0:2b:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org