Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/YWKKLY4amY9vO0HbpSiL0pKATbg.roa
File:                     YWKKLY4amY9vO0HbpSiL0pKATbg.roa (raw, json)
Hash identifier:          p1YCU5VfqOYzusSK0KDp7k1dMnArAaUghe7qHn5X12M=
Subject key identifier:   61:62:8A:2D:8E:1A:99:8F:6F:3B:41:DB:A5:28:8B:D2:92:80:4D:B8
Certificate issuer:       /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial:       0C65
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/YWKKLY4amY9vO0HbpSiL0pKATbg.roa
Signing time:             Thu 15 Sep 2022 02:50:51 +0000
ROA not before:           Thu 15 Sep 2022 02:50:51 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     64271
IP address blocks:        103.137.246.0/23 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3173 (0xc65)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
        Validity
            Not Before: Sep 15 02:50:51 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=61628A2D8E1A998F6F3B41DBA5288BD292804DB8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:df:3c:b3:39:69:69:11:ce:01:de:85:64:a7:f3:
                    f6:01:0e:3e:ff:27:59:4a:da:90:71:8a:7a:87:f6:
                    08:0a:fe:ac:6a:d2:9c:3e:61:b3:c6:ef:7a:5f:26:
                    83:cf:df:b5:32:ae:fa:86:74:e5:c7:bd:85:0a:fb:
                    9d:f9:98:76:0a:8c:46:08:16:6c:b5:6c:cd:c8:c8:
                    59:aa:0c:99:07:d6:23:69:26:0c:ec:32:83:13:2b:
                    f7:d4:a1:9f:c5:bd:d0:1d:81:a2:b2:f3:70:25:f0:
                    1f:1c:c1:a6:08:ce:1e:4d:ad:56:91:08:f3:f5:71:
                    5f:7e:a3:a7:51:41:db:05:a0:10:e7:34:31:c5:98:
                    b3:85:56:30:55:51:47:ac:ae:c5:68:72:80:e8:4d:
                    a0:2b:05:6b:22:30:b1:ad:b2:9c:09:3b:6c:95:78:
                    38:49:67:12:3b:88:fa:d2:9f:2a:a8:1d:06:2f:f3:
                    f2:82:e8:79:18:7f:81:99:64:b8:42:d8:ec:00:90:
                    c1:0d:2a:b1:bb:b6:b8:20:1b:07:59:25:4a:64:eb:
                    31:05:fb:14:53:99:4b:bc:5e:e4:08:22:e2:6b:9b:
                    b4:69:5f:29:16:97:e1:d7:12:57:61:77:7f:4e:68:
                    ca:ae:af:00:1d:d9:21:a8:b4:81:d4:d4:65:3d:19:
                    0b:47
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                61:62:8A:2D:8E:1A:99:8F:6F:3B:41:DB:A5:28:8B:D2:92:80:4D:B8
            X509v3 Authority Key Identifier:
                keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/YWKKLY4amY9vO0HbpSiL0pKATbg.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.137.246.0/23

    Signature Algorithm: sha256WithRSAEncryption
         98:a4:7e:97:14:78:1b:d1:84:6c:83:52:61:84:17:3f:e1:67:
         f4:ca:3b:ce:64:9d:6d:1f:ac:af:e8:1d:27:5d:00:81:0b:d6:
         f1:37:f0:2c:dc:3b:e1:7c:10:ae:72:9c:38:2c:ec:f8:03:df:
         1d:82:a2:82:dc:86:34:9f:b8:d5:c6:4b:2a:a4:af:ac:64:a5:
         bc:e2:38:0a:6f:c9:99:c7:b3:55:4c:2c:9d:28:dd:70:0f:c4:
         a8:a0:7c:57:91:51:65:d6:09:d3:a9:6a:20:42:b0:e9:b1:46:
         2e:45:86:69:f0:c8:15:55:e5:1e:04:a3:2c:36:cd:78:d2:a1:
         b4:2f:ae:ad:65:e2:6d:ad:b2:94:f1:2f:19:d4:9b:49:fe:c4:
         7c:ed:4e:c7:7c:32:43:5e:e9:a3:99:5e:52:d0:c9:ae:ef:66:
         90:64:20:cf:8c:84:26:74:30:7c:c1:54:df:60:50:82:45:fc:
         90:3a:f1:32:35:23:61:58:88:e6:8e:ad:2f:5f:57:a1:cb:a7:
         d5:97:f6:a7:8a:97:c4:ba:ae:a5:90:1b:21:ec:2b:7f:40:e4:
         5b:65:3a:d2:9b:06:27:3a:8b:c4:cf:0c:0e:f2:49:1c:e5:49:
         19:e8:74:63:4b:1f:ef:64:0f:d7:35:26:62:2d:c0:fa:ec:6b:
         54:68:da:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:36 2024 by rpki-client on console-fra.rpki-client.org