Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/pzv35jfZC5oeivY0PHzYs_dFJ0Y.roa
File:                     pzv35jfZC5oeivY0PHzYs_dFJ0Y.roa (raw, json)
Hash identifier:          rUmJ7cGdxgDa4kgyOFhG2jPwkX+xPl88/eQsUAn34Ww=
Subject key identifier:   A7:3B:F7:E6:37:D9:0B:9A:1E:8A:F6:34:3C:7C:D8:B3:F7:45:27:46
Certificate issuer:       /CN=165495E8D327E4F62D5A16438F080E608A34D0D3
Certificate serial:       0C65
Authority key identifier: 16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/pzv35jfZC5oeivY0PHzYs_dFJ0Y.roa
Signing time:             Thu 15 Sep 2022 02:50:50 +0000
ROA not before:           Thu 15 Sep 2022 02:50:50 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     131642
IP address blocks:        2404:bac0::/32 maxlen: 32

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3173 (0xc65)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=165495E8D327E4F62D5A16438F080E608A34D0D3
        Validity
            Not Before: Sep 15 02:50:50 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=A73BF7E637D90B9A1E8AF6343C7CD8B3F7452746
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ac:23:64:3d:a5:a1:4f:d6:3c:07:50:bc:a7:b1:
                    42:68:ea:fe:76:94:49:22:79:db:e6:ca:ab:87:ad:
                    a7:e7:ed:3a:d7:de:75:6d:f3:ff:d9:b7:fc:8a:77:
                    4c:f8:22:4a:60:ea:79:89:59:38:0b:8e:bb:f2:ee:
                    79:db:f2:9e:8f:ab:ee:1e:f3:f8:f3:4d:12:b0:07:
                    9d:1f:1c:08:71:95:d5:6c:8b:b2:64:8c:28:5b:c9:
                    af:ab:4a:f9:7b:f7:72:34:25:c8:5f:30:22:a4:36:
                    48:2f:62:7f:5f:9a:3e:bd:9c:8f:09:af:ae:8e:bc:
                    27:49:ab:b8:fc:83:60:22:c6:fe:29:0b:70:91:f3:
                    69:ac:04:7e:36:4a:b0:89:4d:23:47:09:79:7a:39:
                    95:a6:21:b6:ca:ea:0f:7c:bf:96:45:24:e7:4d:20:
                    7b:ae:06:cd:5f:aa:9e:6f:3b:e7:9c:d3:32:11:df:
                    c5:ff:ca:25:74:65:d8:3f:c4:87:72:9e:82:6e:2d:
                    9e:b3:ae:2b:2b:a3:79:e0:82:67:50:56:69:94:2f:
                    af:77:b9:97:09:7c:43:5c:5a:ab:49:10:ef:69:8d:
                    92:59:9e:56:e8:dd:f1:98:3d:c7:31:46:15:e0:e6:
                    ec:6f:e4:cd:29:ea:b9:df:6f:71:00:20:32:a1:cd:
                    70:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A7:3B:F7:E6:37:D9:0B:9A:1E:8A:F6:34:3C:7C:D8:B3:F7:45:27:46
            X509v3 Authority Key Identifier:
                keyid:16:54:95:E8:D3:27:E4:F6:2D:5A:16:43:8F:08:0E:60:8A:34:D0:D3

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/FlSV6NMn5PYtWhZDjwgOYIo00NM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FlSV6NMn5PYtWhZDjwgOYIo00NM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMESOUL/pzv35jfZC5oeivY0PHzYs_dFJ0Y.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2404:bac0::/32

    Signature Algorithm: sha256WithRSAEncryption
         08:a9:89:a0:ac:63:f7:2f:7b:dc:d3:a8:c9:62:16:1e:b1:ef:
         ee:ba:d8:fa:c0:74:b6:7e:e4:32:e4:fe:4a:62:e0:95:3b:37:
         f4:86:fd:3b:ba:1b:a3:ec:98:3c:e1:86:11:7d:78:17:b6:a6:
         d3:4e:e4:a8:14:fe:0a:b6:d2:ac:df:96:d5:93:e8:a4:7d:e7:
         85:7a:1e:bb:45:08:13:63:a5:1e:79:56:06:ce:55:78:46:ca:
         78:e7:cd:bf:51:07:de:5e:ad:75:75:b0:1c:14:c7:eb:73:ba:
         02:e0:51:84:7b:6f:d5:f6:46:b8:91:7f:1a:b2:df:11:cd:4f:
         92:f7:1b:33:7e:ed:7f:42:61:e4:20:d7:04:68:32:2f:51:57:
         bb:59:0a:57:dc:f4:ad:eb:ee:5f:b3:ce:63:fd:74:2d:31:9a:
         be:1c:2c:f8:ef:4a:65:41:5d:91:25:5e:7f:b7:60:77:46:69:
         35:52:c8:1c:5d:f2:94:5a:dc:a5:3a:06:d3:05:03:b6:15:29:
         c0:dc:0e:4a:b6:36:cd:f2:8f:f8:28:cd:49:f6:06:5d:da:ee:
         df:bd:3e:5e:4c:d2:76:2c:54:39:e2:69:9e:ed:70:c0:78:33:
         8a:81:ef:3f:07:9b:02:9d:3f:9a:e0:9f:d9:4e:cb:31:27:05:
         7c:15:54:81
-----BEGIN CERTIFICATE-----
MIIE1zCCA7+gAwIBAgICDGUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTY1
NDk1RThEMzI3RTRGNjJENUExNjQzOEYwODBFNjA4QTM0RDBEMzAeFw0yMjA5MTUw
MjUwNTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEE3M0JGN0U2MzdEOTBC
OUExRThBRjYzNDNDN0NEOEIzRjc0NTI3NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCsI2Q9paFP1jwHULynsUJo6v52lEkiedvmyquHrafn7TrX3nVt
8//Zt/yKd0z4Ikpg6nmJWTgLjrvy7nnb8p6Pq+4e8/jzTRKwB50fHAhxldVsi7Jk
jChbya+rSvl793I0JchfMCKkNkgvYn9fmj69nI8Jr66OvCdJq7j8g2Aixv4pC3CR
82msBH42SrCJTSNHCXl6OZWmIbbK6g98v5ZFJOdNIHuuBs1fqp5vO+ec0zIR38X/
yiV0Zdg/xIdynoJuLZ6zrisro3nggmdQVmmUL693uZcJfENcWqtJEO9pjZJZnlbo
3fGYPccxRhXg5uxv5M0p6rnfb3EAIDKhzXAlAgMBAAGjggHzMIIB7zAdBgNVHQ4E
FgQUpzv35jfZC5oeivY0PHzYs/dFJ0YwHwYDVR0jBBgwFoAUFlSV6NMn5PYtWhZD
jwgOYIo00NMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0FNRVNP
VUwvRmxTVjZOTW41UFl0V2haRGp3Z09ZSW8wME5NLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9GbFNWNk5NbjVQWXRXaFpEandnT1lJbzAwTk0uY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU1FU09VTC9wenYzNWpmWkM1b2Vp
dlkwUEh6WXNfZEZKMFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH
AwUAJAS6wDANBgkqhkiG9w0BAQsFAAOCAQEACKmJoKxj9y973NOoyWIWHrHv7rrY
+sB0tn7kMuT+SmLglTs39Ib9O7obo+yYPOGGEX14F7am007kqBT+CrbSrN+W1ZPo
pH3nhXoeu0UIE2OlHnlWBs5VeEbKeOfNv1EH3l6tdXWwHBTH63O6AuBRhHtv1fZG
uJF/GrLfEc1PkvcbM37tf0Jh5CDXBGgyL1FXu1kKV9z0revuX7POY/10LTGavhws
+O9KZUFdkSVef7dgd0ZpNVLIHF3ylFrcpToG0wUDthUpwNwOSrY2zfKP+CjNSfYG
Xdru370+XkzSdixUOeJpnu1wwHgzioHvPwebAp0/muCf2U7LMScFfBVUgQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:07 2024 by rpki-client on console-ams.rpki-client.org