Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tGuA50swR6enBrf7ZplpBE7TQEc.roa
File:                     tGuA50swR6enBrf7ZplpBE7TQEc.roa (raw, json)
Hash identifier:          OKtPgD5sHNE5uBN/kfbqSbwz7dh7ZM0SB6zJbmwbe3k=
Subject key identifier:   B4:6B:80:E7:4B:30:47:A7:A7:06:B7:FB:66:99:69:04:4E:D3:40:47
Certificate issuer:       /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
Certificate serial:       0D76
Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tGuA50swR6enBrf7ZplpBE7TQEc.roa
Signing time:             Thu 15 Sep 2022 02:48:23 +0000
ROA not before:           Thu 15 Sep 2022 02:48:23 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     10126
IP address blocks:        175.111.192.0/18 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3446 (0xd76)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509
        Validity
            Not Before: Sep 15 02:48:23 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=B46B80E74B3047A7A706B7FB669969044ED34047
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c9:36:56:ce:55:a9:91:d2:1e:0d:d6:70:04:5c:
                    35:fc:cc:a4:ef:29:4d:29:46:07:27:97:b2:77:12:
                    8c:5f:b8:4f:a3:10:3a:db:59:b7:66:7e:bc:91:ee:
                    35:ee:1f:4d:6e:aa:09:48:be:e5:7b:e9:52:f0:3b:
                    07:ec:71:65:13:a1:f7:b6:be:fb:7f:96:6d:17:b2:
                    21:68:c3:17:49:09:21:4c:88:f5:18:7d:c1:db:e8:
                    7c:a4:c7:e9:83:3e:54:92:8e:87:75:b7:74:37:4d:
                    20:07:e0:91:ab:80:13:13:30:0d:33:4d:19:ef:08:
                    4d:ac:2d:d2:94:1e:7f:ca:1c:5f:78:ed:36:4a:16:
                    11:3e:7a:41:5d:eb:f9:b7:16:5c:29:f4:b6:78:e1:
                    53:10:09:0e:f5:87:22:55:20:e9:20:40:96:08:ef:
                    ec:03:49:e9:45:60:ed:90:59:65:9c:48:a1:07:14:
                    91:72:ec:f8:5a:e9:85:8e:3a:75:fb:cd:63:67:b4:
                    33:1a:f8:06:07:c7:9c:3e:15:cc:3f:f7:f3:e2:bc:
                    b0:27:e5:dd:20:cb:8d:a3:0b:a5:84:6c:8e:3a:ad:
                    eb:db:6c:6b:70:97:13:d6:34:6b:28:cb:d1:a8:4d:
                    f8:b1:c2:10:a0:a1:65:72:64:8f:42:7a:eb:9e:d7:
                    fd:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B4:6B:80:E7:4B:30:47:A7:A7:06:B7:FB:66:99:69:04:4E:D3:40:47
            X509v3 Authority Key Identifier:
                keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tGuA50swR6enBrf7ZplpBE7TQEc.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  175.111.192.0/18

    Signature Algorithm: sha256WithRSAEncryption
         87:75:b3:cf:cc:14:85:86:5e:19:79:67:36:d3:d9:5d:bb:69:
         0b:3d:70:77:07:33:03:1c:97:55:0d:02:da:48:1c:1e:a0:44:
         eb:d9:55:6e:57:36:f2:52:9b:6d:03:1e:c0:2d:23:ab:f5:36:
         38:ef:8c:5f:9f:84:7f:e2:f2:7a:23:ba:f8:e0:c8:56:74:b6:
         2f:7a:d3:23:c2:01:76:86:52:e0:bf:a6:98:ad:fe:26:7f:0a:
         0a:6a:44:e3:1f:3d:55:1f:7d:0b:42:2e:94:39:94:7e:e3:e5:
         b5:e8:1f:c9:40:d3:c5:6f:d7:09:ef:3b:50:cd:41:29:b4:7d:
         fc:29:80:d4:66:82:0c:49:29:52:f1:68:7e:12:ab:21:d8:6f:
         b0:2f:a2:f2:12:ac:ca:a0:21:ab:6b:63:7a:3d:34:2e:87:4a:
         e0:a0:dc:31:54:46:fc:ae:59:9c:dd:65:51:b4:d0:66:9f:de:
         77:18:f8:b4:8f:d0:25:e5:40:6b:de:ad:46:4d:e9:8f:47:6f:
         c7:a6:bc:11:d7:e9:38:d3:64:06:c9:15:44:f4:5f:96:37:3c:
         ba:55:d7:0a:70:45:e4:24:53:e3:a1:92:46:f7:4d:d9:f0:98:
         9c:88:a8:21:79:39:01:13:d9:fd:1d:eb:c4:ce:63:70:d7:64:
         58:99:d0:44
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICDXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5
RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMjA5MTUw
MjQ4MjNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEI0NkI4MEU3NEIzMDQ3
QTdBNzA2QjdGQjY2OTk2OTA0NEVEMzQwNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDJNlbOVamR0h4N1nAEXDX8zKTvKU0pRgcnl7J3EoxfuE+jEDrb
WbdmfryR7jXuH01uqglIvuV76VLwOwfscWUTofe2vvt/lm0XsiFowxdJCSFMiPUY
fcHb6Hykx+mDPlSSjod1t3Q3TSAH4JGrgBMTMA0zTRnvCE2sLdKUHn/KHF947TZK
FhE+ekFd6/m3Flwp9LZ44VMQCQ71hyJVIOkgQJYI7+wDSelFYO2QWWWcSKEHFJFy
7Pha6YWOOnX7zWNntDMa+AYHx5w+Fcw/9/PivLAn5d0gy42jC6WEbI46revbbGtw
lxPWNGsoy9GoTfixwhCgoWVyZI9Ceuue1/2XAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUtGuA50swR6enBrf7ZplpBE7TQEcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv
5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv
eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC90R3VBNTBzd1I2ZW5CcmY3WnBs
cEJFN1RRRWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGr2/A
MA0GCSqGSIb3DQEBCwUAA4IBAQCHdbPPzBSFhl4ZeWc209ldu2kLPXB3BzMDHJdV
DQLaSBweoETr2VVuVzbyUpttAx7ALSOr9TY474xfn4R/4vJ6I7r44MhWdLYvetMj
wgF2hlLgv6aYrf4mfwoKakTjHz1VH30LQi6UOZR+4+W16B/JQNPFb9cJ7ztQzUEp
tH38KYDUZoIMSSlS8Wh+Eqsh2G+wL6LyEqzKoCGra2N6PTQuh0rgoNwxVEb8rlmc
3WVRtNBmn953GPi0j9Al5UBr3q1GTemPR2/HprwR1+k402QGyRVE9F+WNzy6VdcK
cEXkJFPjoZJG903Z8JiciKgheTkBE9n9HevEzmNw12RYmdBE
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:38 2024 by rpki-client on console-fra.rpki-client.org