Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/90W429BcOOEJxuMIBAhmcec4m_s.roa
File:                     90W429BcOOEJxuMIBAhmcec4m_s.roa (raw, json)
Hash identifier:          oA+81vAV2SBlSvVv7OzKkZo8D7E6L/MC21Qczt58V0E=
Subject key identifier:   F7:45:B8:DB:D0:5C:38:E1:09:C6:E3:08:04:08:66:71:E7:38:9B:FB
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       216C
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/90W429BcOOEJxuMIBAhmcec4m_s.roa
Signing time:             Fri 25 Nov 2022 04:39:55 +0000
ROA not before:           Fri 25 Nov 2022 04:39:55 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        123.195.224.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8556 (0x216c)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Nov 25 04:39:55 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=F745B8DBD05C38E109C6E30804086671E7389BFB
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:c9:dc:1c:a4:34:6e:48:1a:e5:92:36:e7:47:
                    e6:59:c0:45:b6:cb:8d:bd:0a:8b:ca:9a:9c:65:3e:
                    a0:c7:a2:d6:3e:54:c8:f4:9f:51:24:dc:c9:92:ff:
                    d8:7a:7f:33:33:5e:9b:04:90:60:34:3e:0e:95:e6:
                    87:c0:c4:a2:79:1a:be:3f:2b:e6:c6:0a:4d:a4:22:
                    3e:67:02:4d:62:53:6e:e4:dd:21:d9:f0:bf:4c:3c:
                    98:58:92:1e:ca:54:8f:02:ec:a5:a6:66:ab:e7:fc:
                    da:73:fd:2a:15:09:87:81:61:04:19:43:6a:07:41:
                    22:5d:d0:94:24:64:ba:fc:2a:47:8e:a1:26:9c:ec:
                    7c:e0:7a:9c:76:17:b9:8e:b4:de:7b:42:a1:b0:3f:
                    a9:48:ef:c1:2b:87:9b:ac:34:05:e9:2d:fa:3e:8b:
                    91:73:59:c8:6f:f2:ea:d6:fd:f8:fb:73:12:c8:e8:
                    f4:09:39:ca:28:39:ab:30:66:7f:72:a1:c2:6a:fb:
                    fc:5b:41:2e:c4:b0:4a:07:4b:78:41:12:d3:bd:95:
                    73:19:38:4f:44:7b:c0:6d:17:3f:90:16:0e:c3:58:
                    3d:78:7e:71:f6:78:71:67:e5:40:4c:ec:71:32:5b:
                    49:66:c4:43:24:61:1f:0e:a0:70:06:c3:10:68:b9:
                    d8:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F7:45:B8:DB:D0:5C:38:E1:09:C6:E3:08:04:08:66:71:E7:38:9B:FB
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/90W429BcOOEJxuMIBAhmcec4m_s.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.195.224.0/22

    Signature Algorithm: sha256WithRSAEncryption
         60:47:73:f7:01:a6:38:19:d2:36:ae:df:4c:ee:31:89:d7:bc:
         dc:ac:cb:c5:91:d2:2b:c1:ba:0e:6d:9c:a0:c2:a3:33:e5:fa:
         c4:03:5f:68:56:17:31:30:a3:a5:e5:ea:f0:8d:1b:fc:5b:5d:
         7e:7f:bc:6e:59:7e:82:40:e6:6f:05:f7:4a:3d:40:16:5a:46:
         e4:d2:6c:f9:7f:3d:b9:29:c6:60:21:ed:f1:ab:a2:ec:0e:1e:
         4c:ae:3a:dd:82:c7:05:45:ee:27:76:49:90:4c:97:39:a5:20:
         d3:eb:0f:a6:d1:ce:79:c0:ce:8a:cb:27:eb:b3:d0:c9:de:6e:
         d8:6f:2b:29:4d:4d:ca:f8:92:3e:27:94:ae:54:05:0e:dc:db:
         e3:81:af:9b:df:ad:be:38:ee:66:a8:27:5a:4b:40:55:93:97:
         d6:ec:6d:70:32:da:70:0c:5c:09:f7:03:ad:f2:e3:5e:2a:d6:
         40:38:1c:b9:e9:99:96:2c:56:6c:f9:d6:db:fa:3e:3a:46:3b:
         4b:6f:6a:9f:cf:fe:25:7d:04:a6:e4:35:5e:0b:28:ee:73:69:
         de:8b:e9:1c:12:ca:96:df:65:d7:a1:34:41:b2:40:96:b2:51:
         10:07:d3:87:28:2e:eb:5f:82:2c:6b:c3:35:6c:8e:7f:3a:59:
         bd:2a:12:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:48 2024 by rpki-client on console-fra.rpki-client.org