Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FkB5eEl8sL3SeaDz6RO38e7FMwA.roa
File:                     FkB5eEl8sL3SeaDz6RO38e7FMwA.roa (raw, json)
Hash identifier:          s/Vqdl+iS4J7rqhrpki6tThQ+oQTNfWZ6PtsPAO/VW4=
Subject key identifier:   16:40:79:78:49:7C:B0:BD:D2:79:A0:F3:E9:13:B7:F1:EE:C5:33:00
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       22AF
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FkB5eEl8sL3SeaDz6RO38e7FMwA.roa
Signing time:             Fri 25 Nov 2022 04:41:31 +0000
ROA not before:           Fri 25 Nov 2022 04:41:31 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        180.177.120.0/21 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8879 (0x22af)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Nov 25 04:41:31 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=16407978497CB0BDD279A0F3E913B7F1EEC53300
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:29:ef:59:f8:c9:6c:cf:9a:b0:78:15:29:35:
                    56:b6:2d:fa:df:38:02:05:ae:26:cf:ca:81:af:03:
                    e0:35:a9:79:ab:a6:58:4d:ff:ad:fd:70:5b:71:2b:
                    5e:5d:f4:fe:c2:52:73:31:57:e6:6c:38:b8:95:16:
                    d9:15:13:79:61:e9:97:1e:73:c7:0c:4d:9b:19:07:
                    85:45:6e:9c:1b:13:2a:64:42:f2:ab:4f:68:4f:aa:
                    a7:df:ab:1e:03:87:72:c7:d0:18:aa:5b:18:15:67:
                    8c:74:2e:4b:9e:3f:39:42:9c:51:ba:8a:ca:53:18:
                    ed:d3:9e:17:79:fc:fa:00:68:45:71:61:70:be:16:
                    c1:b1:5e:6b:cc:e4:eb:6e:50:ae:eb:d1:71:86:87:
                    eb:9e:61:da:7a:d5:ad:37:b0:c0:da:6b:cc:d0:83:
                    5f:22:3b:46:2d:fa:c8:c6:c7:5f:5d:4f:46:f5:d6:
                    7e:ff:cf:9a:fb:5c:a2:da:8c:bd:5d:99:d8:5d:de:
                    2d:5e:6c:89:0a:96:eb:68:2f:86:3b:e7:24:70:7c:
                    08:d5:c9:f4:59:c8:87:8d:88:55:1a:31:c0:71:b9:
                    a3:26:c1:62:a4:ca:31:ac:34:66:69:1a:9c:77:fc:
                    d6:7f:c2:81:31:cd:ce:f4:8e:56:07:2f:c1:8f:dd:
                    7f:6f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                16:40:79:78:49:7C:B0:BD:D2:79:A0:F3:E9:13:B7:F1:EE:C5:33:00
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/FkB5eEl8sL3SeaDz6RO38e7FMwA.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.177.120.0/21

    Signature Algorithm: sha256WithRSAEncryption
         3d:b2:a3:0f:a3:8e:81:da:fe:c1:48:89:e5:96:fb:b6:a7:54:
         28:be:26:f2:87:79:1b:23:c7:06:8e:70:64:d7:1c:39:f2:52:
         5b:2d:88:46:07:4b:1e:08:59:20:7e:73:13:05:56:73:7f:3b:
         5e:0c:ba:df:f2:a1:82:5a:d9:32:f3:61:b8:52:b9:86:96:c2:
         3c:e1:a1:04:a4:69:7c:36:01:a9:28:f5:ba:8e:11:25:f6:53:
         fe:f0:79:ad:a7:1f:51:e2:ac:e4:f3:cd:d1:a4:74:44:aa:2b:
         27:9c:71:eb:db:3f:d3:30:65:d9:43:26:ba:c1:07:f9:d6:db:
         05:49:30:c5:82:e6:50:23:3c:b3:a1:a0:8e:92:13:fd:9a:4e:
         6b:08:ef:92:a9:94:7e:b3:4f:5f:66:02:e1:fa:96:38:42:c9:
         46:c4:39:e6:66:cd:9a:05:60:a8:92:1a:cd:ab:54:ef:fb:4d:
         ec:05:23:8f:ca:72:45:51:84:85:13:82:45:4b:1d:f4:66:7a:
         b7:6b:5a:e0:7d:2a:c1:87:fd:90:25:e6:ff:35:0e:56:dc:d3:
         13:9d:af:61:f4:26:84:19:96:8b:1e:4c:40:0c:89:14:11:a1:
         2a:d0:b0:3f:de:04:6f:5c:45:2a:60:ac:e3:17:c3:0d:e9:c3:
         f6:86:4c:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:27 2024 by rpki-client on console-ams.rpki-client.org