Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/XOFbb6850JYGT7Gp6mntd12ILlQ.roa
File:                     XOFbb6850JYGT7Gp6mntd12ILlQ.roa (raw, json)
Hash identifier:          Hyp0uzWzfIqTtIS48DN2Om1P3wBPJsEC9TptbANMy80=
Subject key identifier:   5C:E1:5B:6F:AF:39:D0:96:06:4F:B1:A9:EA:69:ED:77:5D:88:2E:54
Certificate issuer:       /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial:       0BD8
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XOFbb6850JYGT7Gp6mntd12ILlQ.roa
Signing time:             Thu 15 Sep 2022 02:41:12 +0000
ROA not before:           Thu 15 Sep 2022 02:41:12 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     1659
IP address blocks:        203.71.0.0/16 maxlen: 16

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3032 (0xbd8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
        Validity
            Not Before: Sep 15 02:41:12 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=5CE15B6FAF39D096064FB1A9EA69ED775D882E54
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:da:0e:ed:4a:ad:89:c8:69:f9:75:25:8d:f7:9f:
                    3d:33:ee:6b:b9:6e:ec:cf:cb:09:e3:a4:c2:03:f1:
                    dd:f7:07:9b:76:65:7d:1e:29:95:7d:59:5f:c0:1b:
                    b1:bb:eb:81:2e:d0:c3:88:72:a3:62:2c:ac:49:93:
                    d7:b0:e6:d3:5d:ab:04:f0:0e:01:e1:39:51:22:fc:
                    10:86:57:ba:3b:48:64:01:ff:63:02:4f:0b:34:b6:
                    c0:c6:55:c7:36:d0:2c:44:cd:1a:92:5f:a3:9d:0f:
                    3f:66:9d:6e:19:24:46:ec:6f:9d:8f:37:12:98:19:
                    7a:0a:e9:8c:90:4b:bd:83:2a:ce:be:a9:70:56:82:
                    ad:a4:94:33:fc:9e:31:95:74:82:7a:53:b5:bc:a1:
                    31:c4:16:af:f1:64:a7:e2:1a:31:1f:99:58:e0:24:
                    ae:47:25:0d:27:96:23:81:8e:d5:5b:ae:b6:d6:ce:
                    cb:e0:f6:d5:62:71:64:0e:9b:6c:94:44:6e:fc:65:
                    f0:b5:07:9b:ef:5d:2f:8a:b4:d3:25:f3:a9:57:91:
                    cd:25:a5:0b:9b:23:d7:2d:6c:f5:e9:4e:3e:ec:6a:
                    e3:b8:32:a3:f6:d3:2c:97:81:cc:14:3e:c5:94:4a:
                    e6:fa:d2:00:7c:13:7e:73:b0:74:ac:4f:17:43:c5:
                    e9:7b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                5C:E1:5B:6F:AF:39:D0:96:06:4F:B1:A9:EA:69:ED:77:5D:88:2E:54
            X509v3 Authority Key Identifier:
                keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/XOFbb6850JYGT7Gp6mntd12ILlQ.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  203.71.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         56:cd:53:94:70:2a:c8:14:c5:25:fc:bf:a6:97:d8:02:e8:1f:
         09:55:24:2d:ba:47:ae:1b:03:51:2f:04:c7:99:ec:1f:7e:98:
         8c:4c:2a:40:38:6f:a8:88:a1:2f:37:b5:8b:35:4a:04:8b:19:
         f5:62:d8:24:ce:9a:79:34:01:c9:01:74:ba:5c:7a:ea:98:f6:
         73:22:f4:b1:ba:53:23:99:21:9c:f2:3b:da:0e:3d:60:97:b9:
         4c:9e:a4:09:12:95:84:d2:77:5a:22:86:af:39:c8:fc:5f:53:
         27:b6:d5:68:e9:e0:de:3d:47:c6:fd:48:22:27:82:7a:17:fb:
         54:99:00:5f:d7:87:9f:8d:63:ed:db:69:77:f3:66:d3:82:88:
         e7:67:31:98:1a:72:b4:0b:13:0e:2b:63:ae:0c:c2:41:39:96:
         e4:e9:14:e3:34:11:d9:e8:05:bf:c3:78:9e:14:67:7a:ad:06:
         3d:ea:bf:cd:e3:53:a3:8e:20:77:57:96:f8:b8:c6:b9:e8:f5:
         79:60:f3:79:7f:ff:3b:14:9c:12:fa:2f:2e:58:85:0c:68:4b:
         d5:6f:53:f9:72:fc:66:01:2d:e6:77:e3:bc:17:02:3b:09:ee:
         ff:a4:d7:63:d9:57:c2:21:5f:97:f2:b6:f0:0a:50:cc:4e:45:
         22:c1:09:46
-----BEGIN CERTIFICATE-----
MIIEzzCCA7egAwIBAgICC9gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB
ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yMjA5MTUw
MjQxMTJaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDVDRTE1QjZGQUYzOUQw
OTYwNjRGQjFBOUVBNjlFRDc3NUQ4ODJFNTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDaDu1KrYnIafl1JY33nz0z7mu5buzPywnjpMID8d33B5t2ZX0e
KZV9WV/AG7G764Eu0MOIcqNiLKxJk9ew5tNdqwTwDgHhOVEi/BCGV7o7SGQB/2MC
Tws0tsDGVcc20CxEzRqSX6OdDz9mnW4ZJEbsb52PNxKYGXoK6YyQS72DKs6+qXBW
gq2klDP8njGVdIJ6U7W8oTHEFq/xZKfiGjEfmVjgJK5HJQ0nliOBjtVbrrbWzsvg
9tVicWQOm2yURG78ZfC1B5vvXS+KtNMl86lXkc0lpQubI9ctbPXpTj7sauO4MqP2
0yyXgcwUPsWUSub60gB8E35zsHSsTxdDxel7AgMBAAGjggHrMIIB5zAdBgNVHQ4E
FgQUXOFbb6850JYGT7Gp6mntd12ILlQwHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF
/peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv
NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9YT0ZiYjY4NTBKWUdUN0dwNm1u
dGQxMklMbFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0cw
DQYJKoZIhvcNAQELBQADggEBAFbNU5RwKsgUxSX8v6aX2ALoHwlVJC26R64bA1Ev
BMeZ7B9+mIxMKkA4b6iIoS83tYs1SgSLGfVi2CTOmnk0AckBdLpceuqY9nMi9LG6
UyOZIZzyO9oOPWCXuUyepAkSlYTSd1oihq85yPxfUye21Wjp4N49R8b9SCIngnoX
+1SZAF/Xh5+NY+3baXfzZtOCiOdnMZgacrQLEw4rY64MwkE5luTpFOM0EdnoBb/D
eJ4UZ3qtBj3qv83jU6OOIHdXlvi4xrno9Xlg83l//zsUnBL6Ly5YhQxoS9VvU/ly
/GYBLeZ347wXAjsJ7v+k12PZV8IhX5fytvAKUMxORSLBCUY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:21 2024 by rpki-client on console-ams.rpki-client.org