Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/c3_h2m4cu26P1YMaqyIH7n_7Kkw.roa
File:                     c3_h2m4cu26P1YMaqyIH7n_7Kkw.roa (raw, json)
Hash identifier:          Sw176vDO6J04xq2Gu603pAewIgn+d3dcseF6nilIrQA=
Subject key identifier:   73:7F:E1:DA:6E:1C:BB:6E:8F:D5:83:1A:AB:22:07:EE:7F:FB:2A:4C
Certificate issuer:       /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial:       0965
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/c3_h2m4cu26P1YMaqyIH7n_7Kkw.roa
Signing time:             Wed 29 Sep 2021 02:42:52 +0000
ROA not before:           Wed 29 Sep 2021 02:42:52 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     131149
IP address blocks:        43.254.16.0/22 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2405 (0x965)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
        Validity
            Not Before: Sep 29 02:42:52 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=737FE1DA6E1CBB6E8FD5831AAB2207EE7FFB2A4C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:59:62:4f:12:d0:3d:8a:f7:72:7f:78:51:21:
                    11:23:06:7b:ba:34:8d:f3:5f:fe:56:90:09:7b:03:
                    91:f8:76:91:1b:d2:a3:7b:5a:79:42:66:47:05:59:
                    d0:1a:5c:db:32:cf:c5:66:bd:e1:72:46:77:4e:f7:
                    f8:68:b4:e5:d2:cf:67:78:cb:8a:16:20:ed:62:25:
                    2d:7b:9e:f7:36:dd:4a:b2:cc:3f:12:0a:dd:11:9e:
                    99:25:fc:6b:0e:1e:98:03:51:09:10:bd:4f:0a:99:
                    60:c7:43:83:5a:83:e0:91:41:a7:b7:8e:57:0a:63:
                    69:28:e8:f8:f6:73:35:1d:e2:d8:68:fa:e3:2b:7f:
                    e6:4b:9f:c8:43:46:42:ff:55:a2:a5:26:12:09:b2:
                    13:e4:35:20:65:92:0a:60:3d:a3:6d:5f:f9:eb:0b:
                    be:d0:fc:91:3a:9a:79:07:89:35:fd:43:e7:c4:b5:
                    88:77:a2:3e:01:6e:f1:e2:25:db:4f:27:a2:5c:59:
                    85:5e:1a:8d:1a:98:36:52:63:0d:7d:ab:e6:a4:a8:
                    2c:86:95:9b:ca:59:51:7c:69:1f:e6:79:43:23:0d:
                    a0:28:f2:75:cb:38:7e:d4:1e:a0:ba:e3:a4:82:a3:
                    aa:c8:8f:c5:30:f8:13:12:91:9d:bc:57:a5:72:ec:
                    f2:69
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:7F:E1:DA:6E:1C:BB:6E:8F:D5:83:1A:AB:22:07:EE:7F:FB:2A:4C
            X509v3 Authority Key Identifier:
                keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/c3_h2m4cu26P1YMaqyIH7n_7Kkw.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  43.254.16.0/22

    Signature Algorithm: sha256WithRSAEncryption
         7f:9f:90:35:58:c8:bc:d1:a5:97:d8:69:00:0f:79:44:cc:1a:
         4b:3e:dc:27:d5:a1:0b:07:d6:8e:47:72:75:5b:fa:8a:f4:92:
         c8:da:db:ed:12:76:b0:69:9c:06:c4:2c:84:b0:8f:46:f8:15:
         91:d2:66:33:32:85:40:6a:22:6e:bb:f6:e0:44:1a:2d:31:91:
         7d:37:d9:3a:c6:99:68:97:0d:53:36:ed:3b:6e:78:bb:1f:84:
         61:3d:25:a3:6c:48:fd:53:af:94:48:31:bb:8d:49:b5:5b:31:
         91:a3:17:95:ec:36:6e:86:37:ab:21:0a:60:71:c2:0b:fe:dc:
         86:f4:1a:f4:5b:5d:d4:f6:22:f6:b7:be:c9:1c:d0:7f:97:6d:
         3e:a3:00:a8:67:4f:23:9f:e2:12:b2:64:3c:54:32:b1:59:4c:
         12:b2:34:66:a9:d6:97:d0:ae:82:6f:9d:d9:11:5d:cd:c9:03:
         e8:63:e3:8e:93:aa:d6:4e:03:4e:d7:71:1c:7a:ec:0b:ff:08:
         c6:3a:7f:3e:08:7e:33:e5:c2:f4:72:f1:71:89:c1:f3:2e:68:
         ea:38:cf:7d:9a:fb:a8:77:68:89:00:f4:cb:ae:ff:3f:7a:eb:
         b7:ba:23:38:61:22:fe:aa:c6:43:c9:c5:c8:6f:87:af:92:3b:
         69:a8:2f:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:52 2024 by rpki-client on console-ams.rpki-client.org