Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_2L7IxctdsrKDoPA3ye6EWJcNYg.roa
File:                     _2L7IxctdsrKDoPA3ye6EWJcNYg.roa (raw, json)
Hash identifier:          cZ2R5FZ0JGLaMI5XAJQ+HDHjwQh2+uEleATbJjMjTXM=
Subject key identifier:   FF:62:FB:23:17:2D:76:CA:CA:0E:83:C0:DF:27:BA:11:62:5C:35:88
Certificate issuer:       /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
Certificate serial:       0DC9
Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_2L7IxctdsrKDoPA3ye6EWJcNYg.roa
Signing time:             Thu 15 Sep 2022 02:47:27 +0000
ROA not before:           Thu 15 Sep 2022 02:47:27 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     9924
IP address blocks:        210.63.128.0/19 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3529 (0xdc9)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464
        Validity
            Not Before: Sep 15 02:47:27 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=FF62FB23172D76CACA0E83C0DF27BA11625C3588
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:19:25:3e:db:33:4a:a9:3b:01:44:a6:60:6e:
                    ae:8e:29:21:50:cc:45:30:5b:05:73:36:0a:0d:c5:
                    f0:cb:33:a2:40:4a:e6:d7:dd:4d:80:68:50:29:b0:
                    59:84:07:b1:c1:06:6c:57:06:64:ab:e6:35:43:bc:
                    bb:e7:73:ba:d4:51:f4:2a:10:6e:1d:8c:a2:21:a7:
                    74:f1:1b:3d:f5:0b:89:a8:7e:0a:3c:41:09:e3:71:
                    af:15:82:75:4c:1e:f6:df:44:c7:76:3f:d7:89:d9:
                    51:5f:02:58:09:c7:7d:ff:f6:fe:26:ec:18:4c:66:
                    01:9b:d8:2b:04:09:b1:2c:e9:ec:a2:3f:cf:a4:99:
                    1f:35:05:6c:b0:7a:dc:6e:1d:dc:da:9a:01:6a:b6:
                    9d:21:2a:94:65:03:66:5f:10:0c:4c:4a:4b:aa:4f:
                    62:63:f6:ab:b8:81:73:6f:6a:3d:59:e0:b0:ba:6c:
                    38:df:63:1a:f1:48:b0:1c:7f:26:de:ab:0d:81:6a:
                    5c:0f:e3:70:83:45:80:55:68:ce:10:1a:5e:3c:6d:
                    03:2e:ca:35:ca:96:78:26:83:f2:09:c9:99:f0:92:
                    88:b6:7e:3d:4c:7c:97:3b:4d:3e:b6:90:0f:6c:ce:
                    cb:41:55:dd:62:9a:1f:c3:cf:be:bb:7e:ee:81:a0:
                    33:b3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                FF:62:FB:23:17:2D:76:CA:CA:0E:83:C0:DF:27:BA:11:62:5C:35:88
            X509v3 Authority Key Identifier:
                keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/_2L7IxctdsrKDoPA3ye6EWJcNYg.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.63.128.0/19

    Signature Algorithm: sha256WithRSAEncryption
         93:72:dd:3d:47:a0:2c:f2:71:bb:17:f1:65:54:af:30:62:d6:
         7f:fe:e5:e6:43:d2:5f:28:58:df:01:dc:53:ab:33:fb:97:d4:
         23:42:09:8f:5f:0b:39:32:fd:cd:b1:24:0d:69:b1:a6:dc:c1:
         7d:5e:2b:28:b9:28:6a:52:0d:72:46:a2:91:08:64:58:bf:f9:
         8d:4f:0b:68:16:1c:37:29:ab:87:62:64:cf:c7:b5:63:d4:40:
         e8:88:cc:48:68:3b:99:7b:74:75:e3:19:3e:b2:5c:88:a6:0d:
         8b:bf:5e:f8:5e:44:27:a9:14:c3:d7:ef:b8:91:8d:cd:6b:31:
         7d:15:d1:10:22:91:0b:c0:04:0e:c4:1a:45:4b:ee:39:60:20:
         b8:48:6d:8c:93:34:fd:0c:09:e9:a0:3a:9b:98:90:65:6f:77:
         14:6c:48:71:3a:ac:d6:a0:4d:19:09:12:95:c3:7a:6e:97:63:
         a8:90:d8:24:b7:6a:42:b0:fc:52:61:78:9d:a1:28:ab:2c:2d:
         27:fd:fa:11:37:97:02:3c:8d:12:13:6a:05:fe:18:03:41:31:
         b1:95:74:f0:d8:ed:93:19:c2:62:11:7c:3f:ed:2c:73:b9:74:
         11:2d:f2:d3:29:e8:2a:4e:f4:11:dd:df:94:36:93:02:30:ea:
         b3:f0:ec:01
-----BEGIN CERTIFICATE-----
MIIE1DCCA7ygAwIBAgICDckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB
NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMjA5MTUw
MjQ3MjdaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEZGNjJGQjIzMTcyRDc2
Q0FDQTBFODNDMERGMjdCQTExNjI1QzM1ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSGSU+2zNKqTsBRKZgbq6OKSFQzEUwWwVzNgoNxfDLM6JASubX
3U2AaFApsFmEB7HBBmxXBmSr5jVDvLvnc7rUUfQqEG4djKIhp3TxGz31C4mofgo8
QQnjca8VgnVMHvbfRMd2P9eJ2VFfAlgJx33/9v4m7BhMZgGb2CsECbEs6eyiP8+k
mR81BWywetxuHdzamgFqtp0hKpRlA2ZfEAxMSkuqT2Jj9qu4gXNvaj1Z4LC6bDjf
YxrxSLAcfybeqw2BalwP43CDRYBVaM4QGl48bQMuyjXKlngmg/IJyZnwkoi2fj1M
fJc7TT62kA9szstBVd1imh/Dz767fu6BoDOzAgMBAAGjggHwMIIB7DAdBgNVHQ4E
FgQU/2L7IxctdsrKDoPA3ye6EWJcNYgwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it
/rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg
UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O
RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw
UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J
Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD
AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp
Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvXzJMN0l4Y3Rkc3JLRG9Q
QTN5ZTZFV0pjTllnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj
LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BdI/gDANBgkqhkiG9w0BAQsFAAOCAQEAk3LdPUegLPJxuxfxZVSvMGLWf/7l5kPS
XyhY3wHcU6sz+5fUI0IJj18LOTL9zbEkDWmxptzBfV4rKLkoalINckaikQhkWL/5
jU8LaBYcNymrh2Jkz8e1Y9RA6IjMSGg7mXt0deMZPrJciKYNi79e+F5EJ6kUw9fv
uJGNzWsxfRXRECKRC8AEDsQaRUvuOWAguEhtjJM0/QwJ6aA6m5iQZW93FGxIcTqs
1qBNGQkSlcN6bpdjqJDYJLdqQrD8UmF4naEoqywtJ/36ETeXAjyNEhNqBf4YA0Ex
sZV08NjtkxnCYhF8P+0sc7l0ES3y0ynoKk70Ed3flDaTAjDqs/DsAQ==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:43 2024 by rpki-client on console-fra.rpki-client.org