Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4XifV8gobJ_dbg7eqCrJtA-Smfg.roa
File:                     4XifV8gobJ_dbg7eqCrJtA-Smfg.roa (raw, json)
Hash identifier:          KNX+7BH258dmUHeWzdOo6iWcqhkMNTiHf4Knw3MdIyk=
Subject key identifier:   E1:78:9F:57:C8:28:6C:9F:DD:6E:0E:DE:A8:2A:C9:B4:0F:92:99:F8
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1511
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4XifV8gobJ_dbg7eqCrJtA-Smfg.roa
Signing time:             Sun 07 Feb 2021 12:02:45 +0000
ROA not before:           Sun 07 Feb 2021 12:02:45 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     38841
IP address blocks:        123.193.60.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5393 (0x1511)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Feb  7 12:02:45 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=E1789F57C8286C9FDD6E0EDEA82AC9B40F9299F8
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9e:28:a9:e5:9b:e1:d9:ee:4e:9d:76:f1:0a:71:
                    b4:c6:b4:45:94:9a:b8:6e:f7:62:9e:e1:c6:3e:75:
                    43:d6:c1:92:cf:72:7e:c5:8a:97:16:ee:54:22:fc:
                    df:30:a9:62:dc:27:d5:f0:34:2d:7a:3d:d5:c9:4a:
                    8b:84:fa:98:e7:cd:39:5d:80:32:03:d2:54:69:4e:
                    10:6d:eb:ab:22:71:aa:9c:72:4a:ce:87:1b:0d:d7:
                    31:6c:55:d0:66:8f:b4:b7:26:7f:44:7d:45:e6:fa:
                    99:87:3e:d7:2a:16:7f:4c:cd:8c:69:59:9e:36:01:
                    20:f5:3a:20:f7:a5:6b:3b:4e:c6:74:71:88:a5:02:
                    c1:07:24:19:0a:5b:2b:d2:a1:35:ce:e7:59:ea:26:
                    4b:4e:f9:91:c9:33:21:a7:89:28:17:a3:8a:49:33:
                    16:1e:85:d8:49:f2:bc:7a:d2:5b:93:88:7c:11:3b:
                    eb:15:ae:1a:30:5f:a0:4f:a2:5e:ff:e0:01:6f:a5:
                    26:26:2f:27:2d:10:34:50:c1:cd:4e:cc:03:ae:52:
                    bd:65:ca:0f:ec:7f:e0:fa:53:a6:2f:e7:ad:28:15:
                    fd:d4:af:80:4a:0e:1e:19:2b:7c:89:ab:0b:dc:a1:
                    c1:cf:1a:8f:b5:53:9b:93:38:28:75:c3:ca:4c:5a:
                    8e:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E1:78:9F:57:C8:28:6C:9F:DD:6E:0E:DE:A8:2A:C9:B4:0F:92:99:F8
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/4XifV8gobJ_dbg7eqCrJtA-Smfg.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.193.60.0/22

    Signature Algorithm: sha256WithRSAEncryption
         15:03:0b:a3:79:b8:2a:0e:46:5f:74:c5:15:ab:8f:2e:63:39:
         5b:6a:1c:74:20:c7:ca:55:44:79:23:dd:2b:ee:68:97:7b:3a:
         cb:c3:f9:f1:08:07:d0:5b:0c:52:c0:43:d8:ec:23:6a:6c:59:
         63:5b:8c:fa:01:cf:f5:c4:a6:81:fd:c5:18:41:0a:fa:50:61:
         79:0f:be:ed:c8:01:5a:77:42:58:f8:bb:2b:7f:57:06:5f:57:
         d9:e3:5c:ca:16:b7:1e:0c:ac:fe:a3:6c:11:e4:9c:9e:99:f5:
         98:77:8d:22:99:2c:9f:40:ec:6a:66:4e:98:9c:2a:8a:c5:b4:
         ff:48:b5:d0:c0:bd:14:06:57:2b:0a:8d:ab:3e:6d:36:44:f5:
         90:da:61:b3:72:df:32:e1:aa:1a:35:d2:9f:8a:b5:28:5b:45:
         08:6b:10:33:42:98:67:e6:fb:7a:c8:18:79:b5:03:3d:e9:d3:
         39:fc:1e:95:55:83:89:ee:20:2e:4d:d7:7b:5a:d1:14:e9:24:
         00:ad:50:ee:bd:9d:25:ef:7c:49:5b:fb:ab:2d:73:d4:02:c4:
         bd:b2:eb:71:0e:9a:5d:58:13:44:73:15:f7:c6:d5:7d:71:6f:
         5d:a4:d0:52:25:f1:fa:5a:a1:e6:50:3b:26:13:79:83:38:8f:
         f7:35:81:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:47 2024 by rpki-client on console-fra.rpki-client.org