Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DiJYkqswhpFDNtMU_Q0DALpuoVg.roa
File:                     DiJYkqswhpFDNtMU_Q0DALpuoVg.roa (raw, json)
Hash identifier:          K8Sm0+gb39RGEXLX4v+e5k+0oyQxNpBK67JcoQvt0Ss=
Subject key identifier:   0E:22:58:92:AB:30:86:91:43:36:D3:14:FD:0D:03:00:BA:6E:A1:58
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1C86
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DiJYkqswhpFDNtMU_Q0DALpuoVg.roa
Signing time:             Wed 29 Sep 2021 02:47:53 +0000
ROA not before:           Wed 29 Sep 2021 02:47:53 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     38841
IP address blocks:        118.233.160.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7302 (0x1c86)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 29 02:47:53 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=0E225892AB3086914336D314FD0D0300BA6EA158
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:dc:8c:41:23:7d:b1:e0:01:cf:23:20:5b:33:
                    5b:54:6f:7a:b7:2e:41:5a:9d:e9:1f:b7:88:e4:16:
                    7b:0a:9a:fa:db:94:79:77:28:c6:28:4b:e2:02:d3:
                    32:ba:b0:14:f2:5c:03:bb:31:ac:da:ff:bc:8f:84:
                    a1:ec:70:cd:3f:4c:28:b4:a4:75:0e:6a:e2:a2:3b:
                    d3:97:7b:ba:ee:db:c2:e4:fd:43:85:0c:a5:7d:f0:
                    76:85:0c:1b:02:24:75:f3:1e:51:2f:d7:ba:44:2c:
                    38:fd:95:f8:69:9d:76:35:a2:55:f9:6a:a4:a4:e6:
                    62:b6:dc:80:bc:2a:3b:db:35:7c:21:e4:18:e9:7a:
                    22:d8:3c:c1:48:36:4b:e4:82:3d:53:da:73:c5:61:
                    c2:2c:ca:e3:ec:48:c4:00:e1:1d:f4:58:60:40:40:
                    b9:b7:bc:ac:8b:08:bd:92:ef:73:07:12:6f:98:6d:
                    86:f7:8a:d4:e1:b5:92:9c:ef:a7:69:bc:7e:50:3b:
                    0a:01:25:4a:71:e7:9f:80:02:3f:73:51:d8:49:05:
                    6d:70:7c:0d:3c:83:3c:56:e6:ef:b0:ed:3d:c2:25:
                    df:ce:72:d0:c7:91:64:1a:fa:b2:1f:33:5b:90:cd:
                    a6:08:61:94:cf:88:36:a1:c9:40:02:0c:96:c1:e6:
                    f6:ad
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0E:22:58:92:AB:30:86:91:43:36:D3:14:FD:0D:03:00:BA:6E:A1:58
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/DiJYkqswhpFDNtMU_Q0DALpuoVg.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  118.233.160.0/21

    Signature Algorithm: sha256WithRSAEncryption
         42:84:8b:53:9a:7c:57:f2:32:7c:56:6a:d7:34:cf:57:36:77:
         af:56:40:89:0e:b3:1a:c7:ea:79:d5:4e:55:56:a0:48:32:9e:
         f2:1c:d1:0c:5d:cd:a4:5c:fa:40:e9:3b:d9:1c:e0:b5:78:ca:
         bb:cc:99:11:d4:b8:b8:44:5a:f4:fb:21:e0:f8:fb:3c:97:c6:
         21:b7:57:7f:ae:84:45:ab:57:b3:86:e2:77:99:6d:51:17:db:
         cb:b4:e7:57:15:d9:28:4e:a6:fc:61:f5:2d:1b:2e:5e:a8:1b:
         05:65:2a:e5:48:7b:b3:f2:b8:3c:ba:07:f4:e1:d7:97:b0:f7:
         92:fc:fc:a3:ad:25:dd:c1:43:5b:aa:a3:62:06:30:71:61:41:
         97:5f:5e:1b:93:83:66:e9:c5:8b:89:c8:fc:ee:53:36:90:c1:
         09:4f:ac:63:40:64:0b:b8:34:06:3d:7c:ab:61:bc:40:38:b1:
         f5:d8:6b:9e:e7:0d:e9:1c:64:5a:65:62:42:2f:0e:7d:69:f8:
         f9:51:94:0a:19:9a:b4:27:9f:de:dd:96:ec:96:dc:6f:7a:7a:
         e5:85:ed:16:12:55:31:f8:75:61:11:3b:c4:ae:a7:6f:a5:39:
         1e:7b:26:65:5b:8f:da:39:fa:bb:6d:4c:8c:47:40:3a:46:eb:
         41:ae:19:03
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICHIYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTA5Mjkw
MjQ3NTNaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDBFMjI1ODkyQUIzMDg2
OTE0MzM2RDMxNEZEMEQwMzAwQkE2RUExNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC93IxBI32x4AHPIyBbM1tUb3q3LkFanekft4jkFnsKmvrblHl3
KMYoS+IC0zK6sBTyXAO7Maza/7yPhKHscM0/TCi0pHUOauKiO9OXe7ru28Lk/UOF
DKV98HaFDBsCJHXzHlEv17pELDj9lfhpnXY1olX5aqSk5mK23IC8KjvbNXwh5Bjp
eiLYPMFINkvkgj1T2nPFYcIsyuPsSMQA4R30WGBAQLm3vKyLCL2S73MHEm+YbYb3
itThtZKc76dpvH5QOwoBJUpx55+AAj9zUdhJBW1wfA08gzxW5u+w7T3CJd/OctDH
kWQa+rIfM1uQzaYIYZTPiDahyUACDJbB5vatAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUDiJYkqswhpFDNtMU/Q0DALpuoVgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL0RpSllrcXN3aHBGRE50TVVf
UTBEQUxwdW9WZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2
6aAwDQYJKoZIhvcNAQELBQADggEBAEKEi1OafFfyMnxWatc0z1c2d69WQIkOsxrH
6nnVTlVWoEgynvIc0QxdzaRc+kDpO9kc4LV4yrvMmRHUuLhEWvT7IeD4+zyXxiG3
V3+uhEWrV7OG4neZbVEX28u051cV2ShOpvxh9S0bLl6oGwVlKuVIe7PyuDy6B/Th
15ew95L8/KOtJd3BQ1uqo2IGMHFhQZdfXhuTg2bpxYuJyPzuUzaQwQlPrGNAZAu4
NAY9fKthvEA4sfXYa57nDekcZFplYkIvDn1p+PlRlAoZmrQnn97dluyW3G96euWF
7RYSVTH4dWERO8Sup2+lOR57JmVbj9o5+rttTIxHQDpG60GuGQM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:26 2024 by rpki-client on console-ams.rpki-client.org