Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/VlIYZK_faq3Nrttrh1PcoTpAmD4.roa
File:                     VlIYZK_faq3Nrttrh1PcoTpAmD4.roa (raw, json)
Hash identifier:          /OMgHdGPbhf/N0suqhIdJEL8hWs7mRUlmNt9/GVSkwU=
Subject key identifier:   56:52:18:64:AF:DF:6A:AD:CD:AE:DB:6B:87:53:DC:A1:3A:40:98:3E
Certificate issuer:       /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial:       07EE
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/VlIYZK_faq3Nrttrh1PcoTpAmD4.roa
Signing time:             Tue 29 Sep 2020 10:06:38 +0000
ROA not before:           Tue 29 Sep 2020 10:06:38 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     131150
IP address blocks:        163.32.240.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2030 (0x7ee)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
        Validity
            Not Before: Sep 29 10:06:38 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=56521864AFDF6AADCDAEDB6B8753DCA13A40983E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:30:b7:38:47:11:c3:bd:88:b8:c9:56:ec:5f:
                    82:8d:2d:81:6e:dd:1c:04:84:0e:30:ed:4a:9c:50:
                    9e:0c:b0:06:97:a9:81:45:0a:b9:d9:a5:a8:15:83:
                    1f:0c:c8:28:c8:dc:fe:40:00:71:58:42:6b:d0:87:
                    44:51:c8:88:27:ae:d2:71:fc:91:e5:b3:f0:0f:0c:
                    a0:1e:88:ac:9b:24:73:c4:85:88:36:9b:fd:84:fd:
                    68:f6:13:75:f3:fe:fe:61:ba:53:c6:50:cb:79:c4:
                    28:cb:d2:0f:a0:1c:3c:cc:7c:22:57:66:50:10:5c:
                    cc:03:fd:2f:28:0a:09:90:6c:97:41:c6:7b:8e:c9:
                    fc:04:a5:a4:75:f5:8c:cd:e6:8a:09:3f:21:88:ac:
                    93:4f:1a:64:7c:ee:26:87:32:ba:b8:0a:7b:59:03:
                    9b:8f:d9:10:f5:91:33:2f:8b:82:47:f6:ba:b1:7f:
                    4c:03:44:aa:7d:d3:36:80:1e:5b:24:cb:e7:fc:6d:
                    a5:e4:c8:25:ca:5f:06:d6:7f:b0:e3:59:b5:b3:35:
                    03:d5:31:4e:9c:4e:ba:b9:32:04:6d:15:bf:b8:a1:
                    9d:bc:4e:ee:d2:7b:53:90:15:c8:7d:3c:4f:5e:9b:
                    0f:14:ab:95:94:7a:30:f8:db:e0:1d:f3:db:4f:cd:
                    76:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                56:52:18:64:AF:DF:6A:AD:CD:AE:DB:6B:87:53:DC:A1:3A:40:98:3E
            X509v3 Authority Key Identifier:
                keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/VlIYZK_faq3Nrttrh1PcoTpAmD4.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  163.32.240.0/22

    Signature Algorithm: sha256WithRSAEncryption
         05:e3:3a:85:fb:23:17:23:6a:b3:f6:5b:0a:14:8f:2e:90:e6:
         a8:ab:d4:44:54:b6:70:02:1b:f0:0e:fb:df:0f:83:6f:36:90:
         14:c3:b3:89:1c:ff:12:9e:12:1e:f3:61:25:0a:16:31:15:2e:
         25:8d:61:42:23:31:f6:49:9b:c8:c2:0e:5c:37:8c:d1:e4:ac:
         e4:55:60:63:5e:c3:1f:bf:a7:43:04:38:32:b8:32:cd:9c:01:
         c7:3f:0b:6c:22:09:d1:e9:1e:91:19:27:24:f4:32:90:a3:e1:
         66:33:57:51:68:c9:02:7a:88:14:2d:27:a3:2d:f4:4e:3a:04:
         05:c7:62:7e:c8:4e:b4:80:23:26:c7:ea:ae:2c:32:61:33:c0:
         4d:e8:1c:ad:65:e3:be:1d:1a:ec:d2:33:8b:d9:3c:eb:05:84:
         d0:ec:21:5c:59:af:38:4b:d0:6a:4e:dc:e9:39:7a:62:a7:13:
         90:3d:8f:8f:7d:35:9e:14:d9:df:28:70:35:7e:98:c2:d9:e3:
         45:f7:3a:9b:25:3b:eb:33:4f:f0:ed:d5:f5:bd:71:39:e4:e9:
         cd:04:42:23:6e:5c:be:65:6b:fa:0d:e1:95:66:57:db:24:49:
         1f:c6:5d:5d:6c:4a:5e:f0:fe:a4:a6:ba:81:2e:4b:f8:dd:12:
         2a:b2:f0:84
-----BEGIN CERTIFICATE-----
MIIE0DCCA7igAwIBAgICB+4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMDA5Mjkx
MDA2MzhaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDU2NTIxODY0QUZERjZB
QURDREFFREI2Qjg3NTNEQ0ExM0E0MDk4M0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCfMLc4RxHDvYi4yVbsX4KNLYFu3RwEhA4w7UqcUJ4MsAaXqYFF
CrnZpagVgx8MyCjI3P5AAHFYQmvQh0RRyIgnrtJx/JHls/APDKAeiKybJHPEhYg2
m/2E/Wj2E3Xz/v5hulPGUMt5xCjL0g+gHDzMfCJXZlAQXMwD/S8oCgmQbJdBxnuO
yfwEpaR19YzN5ooJPyGIrJNPGmR87iaHMrq4CntZA5uP2RD1kTMvi4JH9rqxf0wD
RKp90zaAHlsky+f8baXkyCXKXwbWf7DjWbWzNQPVMU6cTrq5MgRtFb+4oZ28Tu7S
e1OQFch9PE9emw8Uq5WUejD42+Ad89tPzXbRAgMBAAGjggHsMIIB6DAdBgNVHQ4E
FgQUVlIYZK/faq3Nrttrh1PcoTpAmD4wHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9WbElZWktfZmFxM05ydHRyaDFQ
Y29UcEFtRDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCoyDw
MA0GCSqGSIb3DQEBCwUAA4IBAQAF4zqF+yMXI2qz9lsKFI8ukOaoq9REVLZwAhvw
DvvfD4NvNpAUw7OJHP8SnhIe82ElChYxFS4ljWFCIzH2SZvIwg5cN4zR5KzkVWBj
XsMfv6dDBDgyuDLNnAHHPwtsIgnR6R6RGSck9DKQo+FmM1dRaMkCeogULSejLfRO
OgQFx2J+yE60gCMmx+quLDJhM8BN6BytZeO+HRrs0jOL2TzrBYTQ7CFcWa84S9Bq
TtzpOXpipxOQPY+PfTWeFNnfKHA1fpjC2eNF9zqbJTvrM0/w7dX1vXE55OnNBEIj
bly+ZWv6DeGVZlfbJEkfxl1dbEpe8P6kprqBLkv43RIqsvCE
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org