Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/G71WQaiXm3m2u8tneigLviff0UI.roa
File:                     G71WQaiXm3m2u8tneigLviff0UI.roa (raw, json)
Hash identifier:          iO/NhtgPVSwSBTS503YGzwuYOpf4GbrYZeumg/mpUgw=
Subject key identifier:   1B:BD:56:41:A8:97:9B:79:B6:BB:CB:67:7A:28:0B:BE:27:DF:D1:42
Certificate issuer:       /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial:       0964
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/G71WQaiXm3m2u8tneigLviff0UI.roa
Signing time:             Wed 29 Sep 2021 02:42:52 +0000
ROA not before:           Wed 29 Sep 2021 02:42:52 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     131149
IP address blocks:        103.1.220.0/22 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2404 (0x964)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
        Validity
            Not Before: Sep 29 02:42:52 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=1BBD5641A8979B79B6BBCB677A280BBE27DFD142
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:2f:4c:6d:e0:db:c3:c2:56:66:fe:9b:71:11:
                    1e:00:ea:32:9c:88:aa:39:c6:3d:9c:51:5e:ab:11:
                    9d:e8:4e:73:44:a8:f2:bf:9c:80:da:14:58:51:cd:
                    ad:eb:9b:51:db:2c:1a:5e:4d:71:be:9b:49:77:4c:
                    59:ad:1e:2d:f4:d9:6c:10:63:64:43:09:f4:4e:c4:
                    20:fb:68:c9:a7:3f:2f:26:a6:b2:9d:52:a1:15:1b:
                    fc:34:fa:9c:c2:2b:8e:fc:4d:4d:a4:ca:5b:b8:55:
                    de:f4:2c:1c:a0:01:51:0c:af:eb:91:8b:fd:2b:11:
                    ad:32:d5:9e:f7:cd:55:2f:f2:27:32:83:ce:8a:7d:
                    a5:b2:05:3c:45:da:43:5e:48:99:3a:8a:22:80:8b:
                    ac:14:3d:73:39:d6:5e:36:8a:48:76:87:bb:bc:70:
                    ca:a1:1a:03:71:e7:50:dd:e1:3b:a4:bd:2c:ef:c7:
                    a1:47:61:cc:c7:c4:c4:21:b1:43:7b:45:07:47:4b:
                    59:05:51:d5:f4:46:04:a1:81:20:74:68:d9:55:78:
                    38:ed:77:09:4f:52:4b:5a:8c:a1:1f:af:49:d6:83:
                    9a:cc:7a:29:fd:32:d6:a3:15:88:dd:80:1c:c1:3a:
                    8a:81:f7:b1:81:75:63:b6:1c:7a:59:74:0b:d2:a1:
                    02:61
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1B:BD:56:41:A8:97:9B:79:B6:BB:CB:67:7A:28:0B:BE:27:DF:D1:42
            X509v3 Authority Key Identifier:
                keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/G71WQaiXm3m2u8tneigLviff0UI.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.1.220.0/22

    Signature Algorithm: sha256WithRSAEncryption
         2d:33:39:ef:e1:29:da:df:bf:af:e9:39:90:10:fd:4c:73:fb:
         1e:86:87:a9:ee:db:26:43:5d:e1:e0:6b:64:82:fe:d1:7e:06:
         04:1c:c7:78:a5:e9:70:4b:06:69:6b:26:a7:ff:3a:c6:48:e7:
         2f:bd:94:df:c2:10:a5:81:e8:36:a0:a1:44:52:61:38:92:e5:
         97:b5:98:c9:d0:29:af:35:b0:81:0e:55:9a:fc:93:23:16:35:
         fe:97:e1:ec:ec:2b:3d:f1:9c:29:d1:09:2e:75:8f:71:62:14:
         28:fb:ea:8a:bb:ab:b1:4c:0f:c6:f6:cf:de:ed:19:ff:0d:7a:
         78:7d:b2:c9:03:d5:64:f9:df:f2:22:bf:8b:69:9e:fa:43:be:
         71:75:6a:05:c1:05:16:91:31:ee:21:f0:b8:92:da:2a:90:f0:
         02:79:e2:73:c5:16:03:0b:90:a4:f3:12:a2:4d:53:e3:39:cb:
         75:4b:eb:81:5d:8a:dc:e7:d8:f4:bb:88:c8:74:b0:d6:21:a1:
         3e:08:07:69:49:f5:9e:98:b4:46:c7:e8:74:af:46:f3:81:35:
         35:44:3b:0c:5c:3f:9c:93:33:76:de:c0:3e:b6:0f:be:b7:6f:
         1f:9f:d7:fa:be:04:8d:63:12:01:c9:4f:f3:d7:ba:3a:5b:f7:
         33:aa:02:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org