Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/MfWNHFHh6Y0WSAFGs8MzZcVUv9s.roa
File:                     MfWNHFHh6Y0WSAFGs8MzZcVUv9s.roa (raw, json)
Hash identifier:          V0z/OHdfb5wLKF3aJwmay8KoilEhpsTDhsS3QIHxNGI=
Subject key identifier:   31:F5:8D:1C:51:E1:E9:8D:16:48:01:46:B3:C3:33:65:C5:54:BF:DB
Certificate issuer:       /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602
Certificate serial:       F1
Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/MfWNHFHh6Y0WSAFGs8MzZcVUv9s.roa
Signing time:             Thu 30 Mar 2023 01:29:08 +0000
ROA not before:           Thu 30 Mar 2023 01:29:08 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     63895
IP address blocks:        103.185.28.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 241 (0xf1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602
        Validity
            Not Before: Mar 30 01:29:08 2023 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=31F58D1C51E1E98D16480146B3C33365C554BFDB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c6:c9:18:5d:c4:37:88:dc:c0:cd:ec:83:74:e5:
                    19:77:42:3a:f6:62:5c:93:92:fd:29:c3:90:0b:c5:
                    ae:f5:0d:cf:c7:6d:00:2c:e4:fe:54:85:9b:f7:0f:
                    21:a3:de:fd:5a:23:9c:78:84:cc:b2:5c:e1:7b:82:
                    77:b2:05:77:d7:6b:36:9c:d9:4d:d2:f9:2f:e4:d5:
                    e9:d1:e0:a6:58:43:be:c5:cb:15:42:1c:4f:f5:38:
                    2d:95:ad:7b:48:f9:69:6e:77:af:7f:03:d4:ba:a7:
                    9b:b0:05:07:34:07:f6:2b:97:37:5a:2c:24:1c:e0:
                    57:30:7c:ac:33:c6:e3:7e:8b:ca:77:88:9c:d8:b4:
                    00:8c:02:ce:ca:b5:64:6a:7c:95:2a:91:c4:48:81:
                    4e:c4:2f:c9:79:c0:b6:3e:74:27:64:01:fc:f8:54:
                    ad:b8:93:82:50:02:30:dd:f9:09:c8:01:3f:c7:0c:
                    d0:aa:e9:6c:a5:59:47:97:69:c4:16:d4:0d:8d:1b:
                    e5:65:c5:ed:55:dd:7b:c6:4c:f7:67:77:2a:bd:8c:
                    b3:4c:de:b7:dc:75:6b:4e:43:da:26:01:ed:c8:1f:
                    2c:a4:18:58:37:49:63:48:9a:62:90:14:a1:c0:04:
                    00:88:b4:4d:e1:cc:4f:af:9e:09:78:52:54:62:73:
                    e5:8d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                31:F5:8D:1C:51:E1:E9:8D:16:48:01:46:B3:C3:33:65:C5:54:BF:DB
            X509v3 Authority Key Identifier:
                keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/MfWNHFHh6Y0WSAFGs8MzZcVUv9s.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.185.28.0/24

    Signature Algorithm: sha256WithRSAEncryption
         bd:e4:8c:39:a8:b6:b2:f3:75:dc:f5:0b:bd:ae:65:ec:d7:42:
         2d:90:8f:37:3a:77:c3:cf:54:a4:87:66:73:b9:32:7e:92:7b:
         43:b2:5e:b6:8e:9d:01:fd:90:93:79:d7:60:c1:33:ca:73:cc:
         85:8e:63:85:2d:66:88:e6:ff:9e:b0:ce:12:d1:ae:8d:de:b1:
         d0:16:33:21:16:e0:92:00:88:62:d0:23:23:a5:23:d3:26:20:
         93:5c:b0:09:9c:7a:bd:f3:e1:2b:63:5e:40:8a:da:26:50:fe:
         e0:de:b5:e6:73:cf:3d:a3:fc:55:df:40:bd:31:bd:70:78:b0:
         e0:8b:b4:8c:4e:05:0d:bd:1f:44:9f:ba:e6:72:68:f6:64:4d:
         38:f5:13:5e:01:1b:92:d1:8a:2f:ed:34:15:d8:48:f0:bb:d1:
         a8:98:61:9f:ea:83:18:5e:97:dd:08:74:1c:a9:b6:02:7e:00:
         c4:3e:62:bd:14:49:76:81:8f:52:57:6a:f8:19:90:04:36:4a:
         d9:f5:8d:51:ea:c0:84:ce:41:f5:0f:2d:a8:ed:90:77:38:22:
         85:ba:85:0b:77:c6:ab:91:54:89:69:d3:43:3f:41:30:ec:c1:
         37:9e:8a:d2:a0:8b:60:c2:5a:42:90:a4:72:9f:4e:90:72:e0:
         80:ea:fc:2d
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTc5
QzYzREIxRDZGM0FCMkZCMEVFNzhFMUE4OTdCODVCQkQyQTYwMjAeFw0yMzAzMzAw
MTI5MDhaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDMxRjU4RDFDNTFFMUU5
OEQxNjQ4MDE0NkIzQzMzMzY1QzU1NEJGREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDGyRhdxDeI3MDN7IN05Rl3Qjr2YlyTkv0pw5ALxa71Dc/HbQAs
5P5UhZv3DyGj3v1aI5x4hMyyXOF7gneyBXfXazac2U3S+S/k1enR4KZYQ77FyxVC
HE/1OC2VrXtI+Wlud69/A9S6p5uwBQc0B/YrlzdaLCQc4FcwfKwzxuN+i8p3iJzY
tACMAs7KtWRqfJUqkcRIgU7EL8l5wLY+dCdkAfz4VK24k4JQAjDd+QnIAT/HDNCq
6WylWUeXacQW1A2NG+Vlxe1V3XvGTPdndyq9jLNM3rfcdWtOQ9omAe3IHyykGFg3
SWNImmKQFKHABACItE3hzE+vngl4UlRic+WNAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUMfWNHFHh6Y0WSAFGs8MzZcVUv9swHwYDVR0jBBgwFoAUF5xj2x1vOrL7DueO
Gol7hbvSpgIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBUk1X
QVkvRjV4ajJ4MXZPckw3RHVlT0dvbDdoYnZTcGdJLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9GNXhqMngxdk9yTDdEdWVPR29sN2hidlNwZ0kuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSEFSTVdBWS9NZldOSEZIaDZZMFdT
QUZHczhNelpjVlV2OXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQAZ7kcMA0GCSqGSIb3DQEBCwUAA4IBAQC95Iw5qLay83Xc9Qu9rmXs10ItkI83
OnfDz1Skh2ZzuTJ+kntDsl62jp0B/ZCTeddgwTPKc8yFjmOFLWaI5v+esM4S0a6N
3rHQFjMhFuCSAIhi0CMjpSPTJiCTXLAJnHq98+ErY15AitomUP7g3rXmc889o/xV
30C9Mb1weLDgi7SMTgUNvR9En7rmcmj2ZE049RNeARuS0Yov7TQV2Ejwu9GomGGf
6oMYXpfdCHQcqbYCfgDEPmK9FEl2gY9SV2r4GZAENkrZ9Y1R6sCEzkH1Dy2o7ZB3
OCKFuoULd8arkVSJadNDP0Ew7ME3norSoItgwlpCkKRyn06QcuCA6vwt
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:03 2024 by rpki-client on console-ams.rpki-client.org