Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TGM/221TV65_q2v00X8cYdxhmpiNX44.roa
File:                     221TV65_q2v00X8cYdxhmpiNX44.roa (raw, json)
Hash identifier:          z8hL0DKX38xJtyaa78LZOZdYl2ZCHc4TBzfTzBtwZKY=
Subject key identifier:   DB:6D:53:57:AE:7F:AB:6B:F4:D1:7F:1C:61:DC:61:9A:98:8D:5F:8E
Certificate issuer:       /CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5
Certificate serial:       05
Authority key identifier: 9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/221TV65_q2v00X8cYdxhmpiNX44.roa
Signing time:             Fri 28 Jan 2022 03:51:34 +0000
ROA not before:           Fri 28 Jan 2022 03:51:34 +0000
ROA not after:            Sat 28 Jan 2023 03:36:51 +0000
asID:                     18178
IP address blocks:        103.180.20.0/23 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5 (0x5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5
        Validity
            Not Before: Jan 28 03:51:34 2022 GMT
            Not After : Jan 28 03:36:51 2023 GMT
        Subject: CN=DB6D5357AE7FAB6BF4D17F1C61DC619A988D5F8E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:d0:1a:4c:3c:b3:2d:c7:0b:03:dd:e8:5e:a9:
                    8e:3a:40:49:67:73:8a:4b:93:d6:03:3e:17:a9:1a:
                    3b:f5:0d:df:66:a4:7c:14:f1:b1:be:bd:46:e2:18:
                    ad:1c:02:ec:17:54:e0:9f:a4:a9:c4:d3:08:04:ab:
                    8f:79:ea:31:fb:ed:d1:50:36:d0:40:16:d6:06:a2:
                    f6:e4:51:8b:7f:6e:94:79:b4:ce:89:37:2c:55:0b:
                    b6:cf:2b:9a:68:a5:ed:01:2c:bd:77:20:aa:54:da:
                    25:a1:41:a6:f3:61:8f:8b:22:bb:75:9a:ac:01:99:
                    4d:40:98:b2:81:7e:59:1b:31:f2:f3:2a:bf:be:75:
                    55:aa:4e:87:12:23:87:d8:56:4f:cc:67:c2:be:ef:
                    1c:5d:71:c2:ab:6a:95:a1:94:df:69:b8:4d:e5:c8:
                    e7:10:c1:9d:a8:52:85:f3:6a:fa:83:1d:3b:39:04:
                    46:ca:fc:d6:8a:7a:0e:61:34:20:2d:a2:9f:60:4b:
                    a6:c6:e3:8f:02:18:70:13:4b:85:0e:ed:3c:aa:51:
                    b0:bb:9e:c4:7c:6a:70:bd:ca:3a:b8:24:3c:a5:0e:
                    08:a6:05:a9:d9:c0:b7:25:aa:fa:96:4c:9b:c8:d5:
                    72:03:22:e0:fe:2b:be:9e:b5:1f:d2:9b:aa:0d:ff:
                    80:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DB:6D:53:57:AE:7F:AB:6B:F4:D1:7F:1C:61:DC:61:9A:98:8D:5F:8E
            X509v3 Authority Key Identifier:
                keyid:9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/221TV65_q2v00X8cYdxhmpiNX44.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.180.20.0/23

    Signature Algorithm: sha256WithRSAEncryption
         92:c1:c0:fe:08:fe:3c:e5:0b:f4:b3:e8:b1:fc:97:3d:c4:dd:
         ba:e4:72:48:31:ed:b4:a5:2e:0f:4e:85:21:86:77:43:46:0f:
         45:21:1d:d7:10:d4:ae:58:f4:8d:0f:b6:88:48:5d:d4:dc:02:
         d9:dc:eb:71:94:f1:67:16:be:4e:5e:f0:2f:14:2b:0c:87:f0:
         2f:d4:c9:fb:92:29:8c:9f:f5:88:da:af:82:45:70:1e:0c:a7:
         ee:d5:35:f9:f6:e6:e5:df:a8:ec:5a:35:d7:26:20:21:e3:10:
         15:19:60:2f:e9:2a:9e:67:23:3e:65:65:1f:19:c2:0e:9d:ff:
         f7:21:5d:bf:3e:c7:99:73:c4:53:59:eb:3c:63:ee:b7:0a:32:
         9f:71:3b:69:ff:14:d5:3c:0a:2a:f8:a6:be:91:3e:10:f0:43:
         7c:c1:7f:e3:22:fc:ee:4a:a0:74:d2:4a:db:80:c2:e5:a8:df:
         3f:2d:c5:85:92:36:db:2c:5d:83:3d:7f:9c:59:b1:a7:d4:35:
         c1:6e:6c:e1:14:1a:5e:13:4e:f8:6f:06:c1:43:5f:88:43:70:
         44:f3:b2:91:b6:a5:6b:bc:fb:41:e8:92:56:d3:50:cc:9d:3c:
         f6:d2:f3:8a:73:b7:d9:eb:5d:e0:d0:e0:00:27:91:36:c7:2c:
         19:ca:0d:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:22 2024 by rpki-client on console-ams.rpki-client.org