Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/M9dzdNTZ1Eh1fzNUY-4Z8kBf0vE.roa
File:                     M9dzdNTZ1Eh1fzNUY-4Z8kBf0vE.roa (raw, json)
Hash identifier:          qJS+EegL3kYp0pRKj9TsbosnTN/xE02vq8Yc2xZwOZ8=
Subject key identifier:   33:D7:73:74:D4:D9:D4:48:75:7F:33:54:63:EE:19:F2:40:5F:D2:F1
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       151B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/M9dzdNTZ1Eh1fzNUY-4Z8kBf0vE.roa
Signing time:             Sun 07 Feb 2021 12:02:55 +0000
ROA not before:           Sun 07 Feb 2021 12:02:55 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     38841
IP address blocks:        123.193.80.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5403 (0x151b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Feb  7 12:02:55 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=33D77374D4D9D448757F335463EE19F2405FD2F1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:76:37:ac:2a:ea:0b:97:16:35:66:19:37:f5:
                    23:11:3a:7c:3c:05:26:96:c1:77:18:37:73:9d:c2:
                    9a:ae:82:40:0e:36:68:48:a9:49:6e:a2:da:8b:00:
                    60:30:42:a9:b6:20:0c:65:a7:cd:db:b3:bb:a5:c4:
                    ea:fb:ff:d5:60:1b:7a:9f:b0:ab:6c:e1:c4:5c:39:
                    4e:34:b9:46:a2:25:6d:2f:4d:0a:d4:39:f9:ec:a2:
                    ab:4e:eb:ce:46:34:e5:9f:48:1e:92:b8:fc:da:7e:
                    29:80:9a:ef:d8:23:ad:c7:22:85:43:5e:46:63:41:
                    28:33:5e:51:f0:2a:95:8a:9e:3e:2f:95:78:ec:3e:
                    ca:39:f0:fb:5f:c8:be:74:66:00:85:32:7d:8a:ba:
                    b7:50:a4:6b:b5:9c:c2:c9:e9:44:b1:75:70:ef:e6:
                    17:e5:98:f0:9c:c4:b4:42:cc:0d:64:67:d3:c5:1b:
                    11:9a:52:47:15:60:7b:83:3c:6c:76:b7:74:94:11:
                    00:19:79:da:07:d5:d2:bd:a2:65:82:03:a4:12:dd:
                    38:f9:f0:bb:64:35:56:31:49:d3:bb:45:80:7c:b8:
                    68:70:d5:68:63:85:29:5e:4a:ca:d3:81:19:86:55:
                    ec:69:e1:4b:93:47:ab:3d:c1:30:00:d8:7c:2d:81:
                    0a:bf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                33:D7:73:74:D4:D9:D4:48:75:7F:33:54:63:EE:19:F2:40:5F:D2:F1
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/M9dzdNTZ1Eh1fzNUY-4Z8kBf0vE.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.193.80.0/21

    Signature Algorithm: sha256WithRSAEncryption
         73:ef:6b:96:61:30:76:88:39:91:34:79:a1:71:f2:bd:c6:09:
         ab:4f:7e:b6:66:c7:1e:5d:66:71:a6:11:9f:de:c8:f1:30:84:
         d5:b3:b0:6b:e4:02:bd:07:62:b5:ba:3f:ff:10:a9:fd:d1:b2:
         e8:e4:74:ad:23:79:ba:7b:0f:1a:2a:7a:a5:f7:1b:95:d5:ba:
         99:49:18:b3:a9:ea:ef:98:14:c5:51:67:81:d7:38:55:f4:0a:
         bc:e5:a2:57:67:25:0e:d4:6b:11:14:38:d6:ca:fd:74:4f:c5:
         3b:00:c5:31:ac:77:6d:70:54:f9:16:6d:ea:ec:45:73:b1:5f:
         33:32:6a:d8:68:04:3d:ad:13:83:aa:70:c8:1e:56:6e:24:b9:
         56:f6:54:b6:52:fb:cd:3e:38:75:e7:78:f9:ae:7f:f7:d0:f3:
         ab:8e:5f:38:42:b3:cd:7b:c5:5b:86:dd:bd:f6:22:62:6a:c2:
         44:3a:bb:83:24:b0:33:f8:19:54:6b:fa:41:3b:4a:f5:38:93:
         f2:ad:ec:eb:33:09:53:85:52:e4:fa:ba:9e:12:ae:3e:69:1f:
         8d:6c:31:16:29:47:66:dc:14:84:2a:c6:46:85:05:5d:ff:f9:
         3b:95:3e:77:8a:e9:66:4a:03:e6:ed:09:1f:87:81:f4:98:a6:
         fd:da:04:66
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFRswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjAyNTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDMzRDc3Mzc0RDREOUQ0
NDg3NTdGMzM1NDYzRUUxOUYyNDA1RkQyRjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC+djesKuoLlxY1Zhk39SMROnw8BSaWwXcYN3OdwpqugkAONmhI
qUluotqLAGAwQqm2IAxlp83bs7ulxOr7/9VgG3qfsKts4cRcOU40uUaiJW0vTQrU
OfnsoqtO685GNOWfSB6SuPzafimAmu/YI63HIoVDXkZjQSgzXlHwKpWKnj4vlXjs
Pso58PtfyL50ZgCFMn2KurdQpGu1nMLJ6USxdXDv5hflmPCcxLRCzA1kZ9PFGxGa
UkcVYHuDPGx2t3SUEQAZedoH1dK9omWCA6QS3Tj58LtkNVYxSdO7RYB8uGhw1Whj
hSleSsrTgRmGVexp4UuTR6s9wTAA2HwtgQq/AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUM9dzdNTZ1Eh1fzNUY+4Z8kBf0vEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL005ZHpkTlRaMUVoMWZ6TlVZ
LTRaOGtCZjB2RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wVAwDQYJKoZIhvcNAQELBQADggEBAHPva5ZhMHaIOZE0eaFx8r3GCatPfrZmxx5d
ZnGmEZ/eyPEwhNWzsGvkAr0HYrW6P/8Qqf3RsujkdK0jebp7DxoqeqX3G5XVuplJ
GLOp6u+YFMVRZ4HXOFX0CrzloldnJQ7UaxEUONbK/XRPxTsAxTGsd21wVPkWbers
RXOxXzMyathoBD2tE4OqcMgeVm4kuVb2VLZS+80+OHXnePmuf/fQ86uOXzhCs817
xVuG3b32ImJqwkQ6u4MksDP4GVRr+kE7SvU4k/Kt7OszCVOFUuT6up4Srj5pH41s
MRYpR2bcFIQqxkaFBV3/+TuVPneK6WZKA+btCR+HgfSYpv3aBGY=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:29 2024 by rpki-client on console-ams.rpki-client.org