Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/wD_jEeyZbD6bPzump3Bc6csxPiQ.roa
File:                     wD_jEeyZbD6bPzump3Bc6csxPiQ.roa (raw, json)
Hash identifier:          7a3wNKhY9LbrGiRnhBgLz96iPWstVWo1E6StO63fMUs=
Subject key identifier:   C0:3F:E3:11:EC:99:6C:3E:9B:3F:3B:A6:A7:70:5C:E9:CB:31:3E:24
Certificate issuer:       /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
Certificate serial:       0AE5
Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/wD_jEeyZbD6bPzump3Bc6csxPiQ.roa
Signing time:             Thu 15 Sep 2022 02:49:50 +0000
ROA not before:           Thu 15 Sep 2022 02:49:50 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     131627
IP address blocks:        61.61.70.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2789 (0xae5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3
        Validity
            Not Before: Sep 15 02:49:50 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=C03FE311EC996C3E9B3F3BA6A7705CE9CB313E24
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:80:c5:20:c3:17:b5:2e:b3:b0:fd:af:e9:43:
                    df:6a:ce:1f:7d:2d:8e:23:69:4b:32:e2:bc:83:cc:
                    7a:a9:97:1e:06:8a:c6:2f:6a:50:8f:64:ed:f3:67:
                    36:ae:0c:7d:3f:22:bf:23:11:04:00:6e:de:b6:25:
                    e3:4c:21:4e:56:9e:2a:27:ea:6a:88:ea:10:c6:32:
                    d2:60:af:8d:5a:70:f6:db:0b:ca:ce:8e:8d:74:c0:
                    87:cd:76:3b:87:09:32:ab:29:c4:d2:54:d3:a5:4a:
                    5c:ab:e1:cd:82:aa:28:aa:5e:76:97:bc:1d:e0:2e:
                    ae:53:8e:28:4b:df:53:6f:49:e4:02:4f:37:98:ee:
                    15:40:c1:48:b2:ef:ec:b3:fa:39:3a:89:54:04:e0:
                    0c:a2:89:1f:90:25:51:0a:45:30:bf:13:51:c5:69:
                    09:9f:4f:70:e4:2f:a0:68:33:58:c3:13:f4:bf:82:
                    b7:17:08:3f:c3:20:40:c0:ab:16:e3:10:7c:7f:62:
                    ae:db:f3:db:80:3a:0d:f5:a4:b2:bb:01:15:c5:74:
                    e2:ca:ee:80:fc:97:9d:ff:45:94:4f:77:18:08:af:
                    83:40:af:1b:c8:df:6c:35:d9:b1:41:d3:5e:6a:de:
                    e0:bb:ed:78:6c:bc:59:de:51:0e:5a:e8:c0:2b:99:
                    cc:2b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C0:3F:E3:11:EC:99:6C:3E:9B:3F:3B:A6:A7:70:5C:E9:CB:31:3E:24
            X509v3 Authority Key Identifier:
                keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/wD_jEeyZbD6bPzump3Bc6csxPiQ.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  61.61.70.0/24

    Signature Algorithm: sha256WithRSAEncryption
         49:eb:e8:f0:92:6f:60:5a:3a:3f:39:47:75:80:57:0d:b1:66:
         94:dc:4c:4b:71:90:cf:48:2a:43:19:27:a2:bf:b7:48:e4:85:
         e5:4f:51:2d:99:dc:3d:90:ea:05:7b:33:08:46:2c:c2:18:97:
         cc:e1:e4:57:98:5f:f1:83:af:c7:9e:13:52:bc:45:9b:02:50:
         c9:b1:da:19:6a:82:7d:fc:9e:88:77:c9:44:53:95:5e:d5:37:
         f0:3e:39:f6:81:2e:ab:a2:66:1d:4a:6c:b8:12:c6:d8:0d:79:
         47:97:f4:f8:3b:af:cf:1e:62:cf:17:fa:d8:9a:07:0c:56:dd:
         f1:54:35:cd:25:c3:96:e8:12:6c:23:64:a4:a6:72:3c:b2:f1:
         9d:56:f9:c8:20:0a:f2:29:e0:f1:39:4c:a3:b0:d8:5a:8b:20:
         94:25:c6:f6:44:11:f5:0e:81:a3:7d:77:71:73:8e:e2:43:4a:
         1b:4b:3d:2e:5c:f2:1f:56:b3:eb:08:5b:34:c7:62:d1:49:94:
         85:b4:24:b6:74:93:3e:53:3c:d2:69:d1:98:eb:16:29:b2:b5:
         19:29:1c:84:bc:99:31:c3:63:7b:94:30:2f:ec:3c:69:45:10:
         69:6b:3a:85:5e:f8:22:9b:69:fa:b0:3d:03:db:23:d9:e2:0e:
         67:2f:c0:1c
-----BEGIN CERTIFICATE-----
MIIEzDCCA7SgAwIBAgICCuUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3
MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMjA5MTUw
MjQ5NTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEMwM0ZFMzExRUM5OTZD
M0U5QjNGM0JBNkE3NzA1Q0U5Q0IzMTNFMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC8gMUgwxe1LrOw/a/pQ99qzh99LY4jaUsy4ryDzHqplx4GisYv
alCPZO3zZzauDH0/Ir8jEQQAbt62JeNMIU5Wnion6mqI6hDGMtJgr41acPbbC8rO
jo10wIfNdjuHCTKrKcTSVNOlSlyr4c2CqiiqXnaXvB3gLq5TjihL31NvSeQCTzeY
7hVAwUiy7+yz+jk6iVQE4AyiiR+QJVEKRTC/E1HFaQmfT3DkL6BoM1jDE/S/grcX
CD/DIEDAqxbjEHx/Yq7b89uAOg31pLK7ARXFdOLK7oD8l53/RZRPdxgIr4NArxvI
32w12bFB015q3uC77XhsvFneUQ5a6MArmcwrAgMBAAGjggHoMIIB5DAdBgNVHQ4E
FgQUwD/jEeyZbD6bPzump3Bc6csxPiQwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL
JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g
TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz
TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG
CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev
UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw
gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50
d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL3dEX2pFZXlaYkQ2YlB6dW1wM0JjNmNz
eFBpUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw
L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9PUYwDQYJ
KoZIhvcNAQELBQADggEBAEnr6PCSb2BaOj85R3WAVw2xZpTcTEtxkM9IKkMZJ6K/
t0jkheVPUS2Z3D2Q6gV7MwhGLMIYl8zh5FeYX/GDr8eeE1K8RZsCUMmx2hlqgn38
noh3yURTlV7VN/A+OfaBLquiZh1KbLgSxtgNeUeX9Pg7r88eYs8X+tiaBwxW3fFU
Nc0lw5boEmwjZKSmcjyy8Z1W+cggCvIp4PE5TKOw2FqLIJQlxvZEEfUOgaN9d3Fz
juJDShtLPS5c8h9Ws+sIWzTHYtFJlIW0JLZ0kz5TPNJp0ZjrFimytRkpHIS8mTHD
Y3uUMC/sPGlFEGlrOoVe+CKbafqwPQPbI9niDmcvwBw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:10 2024 by rpki-client on console-ams.rpki-client.org