Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/owprurEMnomylMYVWV5R3Fl2vPI.roa
File:                     owprurEMnomylMYVWV5R3Fl2vPI.roa (raw, json)
Hash identifier:          3kT8rKIS0aucXz+9+2NS86eXJdmCEzKRWKqhCZ1IFSQ=
Subject key identifier:   A3:0A:6B:BA:B1:0C:9E:89:B2:94:C6:15:59:5E:51:DC:59:76:BC:F2
Certificate issuer:       /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial:       0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/owprurEMnomylMYVWV5R3Fl2vPI.roa
Signing time:             Thu 15 Sep 2022 02:48:44 +0000
ROA not before:           Thu 15 Sep 2022 02:48:44 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     54994
IP address blocks:        203.74.117.128/27 maxlen: 27

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3446 (0xd76)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
        Validity
            Not Before: Sep 15 02:48:44 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=A30A6BBAB10C9E89B294C615595E51DC5976BCF2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:b5:55:97:e1:28:74:d0:71:69:c6:0e:9a:6b:
                    6c:17:7a:19:db:e3:a0:68:55:64:fc:1c:aa:5b:c9:
                    d0:d5:77:be:8b:7b:16:f7:9c:50:13:91:cd:15:62:
                    12:64:7d:c0:6a:20:f2:1c:a1:0a:1b:80:2b:d1:24:
                    e7:c3:d2:9a:61:89:7a:5b:51:63:f6:48:fc:0a:b2:
                    d3:ee:35:1b:d8:2d:9f:01:fe:3d:47:aa:ce:5b:04:
                    3b:ae:41:ef:40:f4:6d:28:6d:70:8e:07:0c:f9:f3:
                    ff:36:f3:88:78:1b:82:02:32:dc:9b:30:0c:3f:23:
                    94:60:0f:23:cb:c5:32:61:f3:b0:72:d8:7b:58:be:
                    1c:88:17:8b:01:de:6f:4e:09:5d:81:15:83:cc:3c:
                    5c:85:d3:7f:04:3e:14:66:01:ac:8b:85:12:15:95:
                    b0:36:d4:8c:a8:91:38:21:30:8f:c6:c6:93:d7:fc:
                    39:6e:ca:1d:5b:74:6c:08:a9:13:ef:97:16:51:f7:
                    5c:77:77:08:5a:91:7d:ae:f6:72:c0:87:2e:ab:e7:
                    48:92:83:3e:c0:6a:da:bf:29:d4:d0:bb:85:4c:8d:
                    bd:04:1f:06:51:75:70:5a:ab:0f:0f:b3:da:63:39:
                    c4:bd:5e:35:55:31:be:f1:44:d3:bd:11:b5:64:d8:
                    85:2d
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A3:0A:6B:BA:B1:0C:9E:89:B2:94:C6:15:59:5E:51:DC:59:76:BC:F2
            X509v3 Authority Key Identifier:
                keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/owprurEMnomylMYVWV5R3Fl2vPI.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  203.74.117.128/27

    Signature Algorithm: sha256WithRSAEncryption
         bd:9c:5e:79:af:bd:a7:53:cf:c2:8b:85:f0:6f:b1:96:1a:50:
         56:38:d7:2c:d2:e8:3d:28:a6:7b:84:a0:65:85:b5:61:bd:85:
         42:7b:2c:00:27:8a:0e:e8:c8:79:c7:2d:e9:74:a8:e8:ee:e5:
         8b:d8:e7:91:5b:6b:3e:ad:43:10:f6:ba:ef:6b:17:1a:48:81:
         a9:4e:d4:0a:4f:5c:53:3f:23:c5:f6:88:31:a5:ed:0a:6d:01:
         7d:b1:38:09:18:23:2a:4b:0a:77:2f:58:46:a0:cc:0c:9a:05:
         a3:ca:8d:4e:84:d9:48:f9:f4:92:2c:a8:00:c5:16:c2:de:e9:
         5f:31:9a:80:26:b2:bc:c6:73:94:55:d3:1e:e8:7b:80:95:cd:
         f6:07:89:1f:ea:fa:1b:14:16:50:d7:57:36:70:e1:69:24:14:
         b7:f8:54:49:83:15:ca:b2:21:fd:2b:22:1a:73:c5:15:08:d1:
         8c:cf:df:91:c6:dd:5d:ad:22:3f:7f:da:86:d9:31:13:a6:7b:
         c5:8d:06:3e:37:10:4e:5c:b4:dd:bb:0a:eb:e7:5a:ae:3e:c4:
         33:bb:a8:5b:a2:6a:28:b7:2e:18:ca:64:de:28:a2:8c:57:0e:
         4f:8f:49:e5:21:c2:7c:55:8d:2a:97:62:4a:4c:31:8b:29:21:
         42:13:7f:a5
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4NDRaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEEzMEE2QkJBQjEwQzlF
ODlCMjk0QzYxNTU5NUU1MURDNTk3NkJDRjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/tVWX4Sh00HFpxg6aa2wXehnb46BoVWT8HKpbydDVd76Lexb3
nFATkc0VYhJkfcBqIPIcoQobgCvRJOfD0pphiXpbUWP2SPwKstPuNRvYLZ8B/j1H
qs5bBDuuQe9A9G0obXCOBwz58/8284h4G4ICMtybMAw/I5RgDyPLxTJh87By2HtY
vhyIF4sB3m9OCV2BFYPMPFyF038EPhRmAayLhRIVlbA21IyokTghMI/GxpPX/Dlu
yh1bdGwIqRPvlxZR91x3dwhakX2u9nLAhy6r50iSgz7Aatq/KdTQu4VMjb0EHwZR
dXBaqw8Ps9pjOcS9XjVVMb7xRNO9EbVk2IUtAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUowprurEMnomylMYVWV5R3Fl2vPIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9vd3BydXJFTW5vbXlsTVlWV1Y1
UjNGbDJ2UEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUFy0p1
gDANBgkqhkiG9w0BAQsFAAOCAQEAvZxeea+9p1PPwouF8G+xlhpQVjjXLNLoPSim
e4SgZYW1Yb2FQnssACeKDujIecct6XSo6O7li9jnkVtrPq1DEPa672sXGkiBqU7U
Ck9cUz8jxfaIMaXtCm0BfbE4CRgjKksKdy9YRqDMDJoFo8qNToTZSPn0kiyoAMUW
wt7pXzGagCayvMZzlFXTHuh7gJXN9geJH+r6GxQWUNdXNnDhaSQUt/hUSYMVyrIh
/SsiGnPFFQjRjM/fkcbdXa0iP3/ahtkxE6Z7xY0GPjcQTly03bsK6+darj7EM7uo
W6JqKLcuGMpk3iiijFcOT49J5SHCfFWNKpdiSkwxiykhQhN/pQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:37 2024 by rpki-client on console-fra.rpki-client.org