Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NO2ctHBbQ507rBplzsXjWnCGniI.roa
File:                     NO2ctHBbQ507rBplzsXjWnCGniI.roa (raw, json)
Hash identifier:          +OhDhz3Cnx+T8INXw9H9BjvEpUs0rpajppAeEHYxkAc=
Subject key identifier:   34:ED:9C:B4:70:5B:43:9D:3B:AC:1A:65:CE:C5:E3:5A:70:86:9E:22
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NO2ctHBbQ507rBplzsXjWnCGniI.roa
Signing time:             Thu 15 Sep 2022 02:46:07 +0000
ROA not before:           Thu 15 Sep 2022 02:46:07 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        118.232.116.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8096 (0x1fa0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 15 02:46:07 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=34ED9CB4705B439D3BAC1A65CEC5E35A70869E22
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e4:70:c2:25:0f:85:c6:67:4b:8d:2d:bd:ab:bc:
                    5b:54:58:3c:8e:04:e7:8d:7c:a0:a6:fb:1d:f3:07:
                    ad:91:0c:bb:3a:91:28:4d:f7:57:a8:22:eb:6b:e3:
                    ae:7c:d1:11:77:0a:10:b2:c5:80:bc:6b:ea:30:63:
                    5d:50:ed:7c:c3:ba:a3:7a:3e:0e:f7:1f:ce:1d:5f:
                    5b:0c:db:0d:68:fc:f5:ad:ac:68:6d:b9:94:58:35:
                    80:30:bf:b8:ee:72:d3:15:30:09:1e:f4:38:b7:37:
                    27:cb:30:97:68:a4:a3:9d:69:f5:23:c3:c1:fd:ef:
                    72:c4:7e:31:66:f5:d8:e4:2a:e8:e8:6f:3c:1f:e9:
                    b4:8a:c2:c0:41:98:5f:37:42:c2:46:09:d1:9c:c6:
                    f3:25:2d:dd:97:ab:56:73:99:d1:a9:65:d9:96:d6:
                    3a:0d:40:e1:a8:7a:a1:c7:ef:8a:f3:c5:7b:a8:d9:
                    0c:83:23:bf:b7:91:53:8c:9e:27:a3:68:b6:cd:c6:
                    53:17:e0:e6:4b:1b:00:63:68:11:a1:20:9d:dd:42:
                    f1:0a:e8:1d:89:66:84:9f:cb:93:39:6a:d7:b5:ae:
                    58:a1:64:77:53:be:f8:63:7c:3e:05:8d:7e:b2:e1:
                    c2:e4:42:e6:b1:3d:1d:75:1c:b6:e4:80:ba:a0:b9:
                    da:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                34:ED:9C:B4:70:5B:43:9D:3B:AC:1A:65:CE:C5:E3:5A:70:86:9E:22
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/NO2ctHBbQ507rBplzsXjWnCGniI.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  118.232.116.0/22

    Signature Algorithm: sha256WithRSAEncryption
         83:ca:80:34:bd:ba:c6:50:40:67:5c:5a:b9:eb:3e:7c:24:e7:
         5e:b1:68:fd:e4:36:8a:f0:d3:ac:04:d9:e9:98:41:14:6f:18:
         80:59:34:38:2b:71:76:7d:11:0a:f2:70:4e:9d:3a:64:f3:7c:
         e9:62:7b:b0:f0:01:62:80:10:c5:47:4b:9c:18:3c:57:d8:fa:
         1a:8a:a9:e7:86:ec:88:c0:5a:2f:1c:99:56:41:1a:7c:70:f6:
         c9:e7:b3:c0:07:c2:bf:af:a3:5b:b8:e5:c2:90:8f:38:1e:4d:
         82:85:e1:65:2a:b6:db:f3:bc:cc:28:1f:2b:81:02:c3:27:56:
         b5:2b:69:c7:ab:4f:ba:25:88:21:24:c3:df:3f:84:4c:0b:c9:
         5b:68:de:dc:15:06:d1:e5:e2:6e:cc:58:ea:df:c1:a7:9d:b5:
         c4:94:20:41:63:25:d4:81:78:9e:8e:03:59:76:73:bb:8a:de:
         82:6d:d5:09:8e:bb:a3:db:bd:97:3a:20:97:d6:08:1b:45:2c:
         89:43:0c:e0:f1:fc:94:6e:0f:2b:54:64:b8:50:c8:13:fa:59:
         f6:58:0c:ad:48:fc:08:22:7d:e5:c0:ac:aa:f3:f7:58:fb:92:
         63:3a:dd:90:6c:df:f1:82:36:bf:cb:69:af:ef:3c:5d:b7:cf:
         56:ae:0a:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:51 2024 by rpki-client on console-fra.rpki-client.org