Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/rzQGRIapjiyBlj8ndJEQDW-MRg8.roa
File:                     rzQGRIapjiyBlj8ndJEQDW-MRg8.roa (raw, json)
Hash identifier:          IzwGcsiHWTVubVYaIU6maqtaJBUYGP+OwmqBmQhibLo=
Subject key identifier:   AF:34:06:44:86:A9:8E:2C:81:96:3F:27:74:91:10:0D:6F:8C:46:0F
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       0A4D
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/rzQGRIapjiyBlj8ndJEQDW-MRg8.roa
Signing time:             Wed 29 Sep 2021 02:52:53 +0000
ROA not before:           Wed 29 Sep 2021 02:52:53 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     6939
IP address blocks:        2405:8700:3000::/48 maxlen: 48

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2637 (0xa4d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Sep 29 02:52:53 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=AF34064486A98E2C81963F277491100D6F8C460F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:de:d1:a2:60:c7:30:53:37:49:80:a8:4f:5d:8a:
                    d0:fe:d9:fb:7f:79:8b:e1:36:f6:55:f2:f3:83:8b:
                    4f:d4:84:5a:0d:fa:3a:2c:9e:7c:b1:ec:f5:8d:01:
                    0b:23:03:53:53:10:17:7a:53:67:98:e9:44:aa:4c:
                    ae:31:7d:fb:45:a6:3d:82:c2:34:49:6e:95:5a:b2:
                    87:6d:61:70:d3:43:e4:0a:e0:47:0d:f9:d4:5e:f0:
                    06:7e:a9:bb:32:16:56:0b:8b:77:49:82:db:c0:df:
                    72:4e:4f:21:3f:39:8c:cc:5a:57:e3:e9:2f:21:06:
                    dc:4c:5a:64:c1:2c:38:a4:72:a5:a9:96:4a:ab:29:
                    7a:b4:7f:96:42:6e:8e:dd:d1:f1:a5:bd:c7:2e:f5:
                    6d:bb:ed:71:26:5b:39:18:f5:a9:43:44:2b:be:7b:
                    85:ff:6d:c1:dd:dc:3f:4c:dc:d0:25:af:9c:2c:9b:
                    0d:f3:67:d7:07:7e:69:c2:73:fc:47:7e:8b:93:d6:
                    16:1b:54:03:a3:81:93:16:c1:a4:96:f2:70:22:62:
                    93:e3:aa:d2:79:f2:64:31:ee:06:2d:74:6f:4e:02:
                    06:bd:55:6d:3e:dc:b3:04:44:6a:15:e9:df:44:0f:
                    e2:ff:01:82:a8:2b:17:42:43:d1:22:1d:ca:d9:e1:
                    3b:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                AF:34:06:44:86:A9:8E:2C:81:96:3F:27:74:91:10:0D:6F:8C:46:0F
            X509v3 Authority Key Identifier:
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/rzQGRIapjiyBlj8ndJEQDW-MRg8.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2405:8700:3000::/48

    Signature Algorithm: sha256WithRSAEncryption
         c4:ae:69:1e:34:87:59:cf:fe:05:a9:ae:b2:af:65:a9:1f:02:
         69:6c:e9:53:a2:f9:0c:ca:86:0d:9b:ba:6b:9b:16:df:c1:db:
         8f:93:8f:8b:cc:92:13:a0:c6:7e:ba:4d:83:ef:21:f2:3e:05:
         64:10:89:d8:c2:b5:5d:3f:bf:93:42:09:02:cc:a6:2f:9e:a2:
         86:7d:71:12:5b:bd:10:78:9c:fb:be:4d:31:da:4a:bd:f7:65:
         2f:d6:3d:30:7a:c2:55:fc:e8:d3:44:2c:f5:1f:ad:6e:f7:8a:
         0b:bc:50:73:8c:3e:fd:f2:9f:8a:6a:7c:9f:19:d4:f2:c6:e8:
         37:71:76:ad:bd:ca:33:7b:97:3e:1e:6c:5a:72:69:e4:d7:ac:
         c4:18:8f:21:0c:92:3c:2d:52:3a:01:46:f8:23:2a:73:3f:b5:
         ce:18:59:6f:86:7c:e1:fd:24:10:4f:c9:0e:d9:4d:42:f5:b9:
         b9:a3:65:04:88:5a:3c:e9:a7:e2:22:39:f8:79:ef:d3:8c:21:
         07:04:0f:aa:03:5f:b3:4c:bc:a7:b4:80:eb:52:8c:7a:71:e1:
         84:41:b4:4b:0f:63:45:34:a7:b2:dc:b1:da:0d:7e:d1:a7:63:
         d1:c5:14:a5:79:49:43:b8:ea:1d:57:d0:57:01:e7:2b:5e:81:
         be:15:2a:c2
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org