Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Omwk0Tqc6QD_10CDtYjQX-NF0eo.roa
File:                     Omwk0Tqc6QD_10CDtYjQX-NF0eo.roa (raw, json)
Hash identifier:          w4qBD25pOVY3txS2PxNNfBEibFoBI/AX2+iFLi0w1e4=
Subject key identifier:   3A:6C:24:D1:3A:9C:E9:00:FF:D7:40:83:B5:88:D0:5F:E3:45:D1:EA
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Omwk0Tqc6QD_10CDtYjQX-NF0eo.roa
Signing time:             Thu 15 Sep 2022 02:45:40 +0000
ROA not before:           Thu 15 Sep 2022 02:45:40 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        118.232.152.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8096 (0x1fa0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 15 02:45:40 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=3A6C24D13A9CE900FFD74083B588D05FE345D1EA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:ff:aa:be:60:04:39:37:b7:18:d4:dd:d8:28:
                    ed:44:28:f9:9a:2e:b0:a2:be:00:61:99:71:f2:1d:
                    e0:2e:f2:23:df:03:7a:74:0c:91:e8:31:80:1f:91:
                    b2:7b:39:e9:48:44:53:74:c3:3a:62:01:0e:e8:63:
                    11:1b:da:cf:99:e5:89:24:c5:15:1e:2b:ce:f9:24:
                    e3:4a:15:7e:1d:9a:7b:ec:35:34:1e:75:f8:dc:b9:
                    7d:72:46:25:7f:a6:69:5d:72:a2:99:4f:f6:80:7e:
                    ed:ba:2c:ff:3c:fb:08:2b:31:ce:e6:77:0d:47:a5:
                    31:75:a2:09:e6:d8:c8:69:f0:e4:11:45:0b:9a:57:
                    56:88:6d:01:83:4f:19:c4:e0:23:ce:d1:07:af:26:
                    59:d5:5c:35:16:7d:14:d0:70:6c:f8:70:dc:1c:d6:
                    5d:59:fa:a6:2b:2c:af:44:37:72:e0:69:7a:46:5a:
                    c2:ac:2a:2d:ba:1d:36:69:e7:0e:92:51:ee:07:cf:
                    98:d9:45:2b:5b:aa:64:ea:44:50:e3:ee:9b:d2:11:
                    b3:9a:2f:3b:49:62:53:7e:82:8c:71:e3:5b:63:81:
                    22:9a:3c:2c:33:1c:bc:c6:9c:76:c0:15:14:fd:3c:
                    2f:d4:1f:48:7b:6b:46:2b:ba:1b:4d:d5:6f:fc:a7:
                    54:f5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3A:6C:24:D1:3A:9C:E9:00:FF:D7:40:83:B5:88:D0:5F:E3:45:D1:EA
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/Omwk0Tqc6QD_10CDtYjQX-NF0eo.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  118.232.152.0/21

    Signature Algorithm: sha256WithRSAEncryption
         44:00:80:5c:ef:1a:6d:76:df:3f:f6:96:31:17:ed:12:8b:da:
         2a:a2:77:96:dd:58:2e:ea:83:89:c8:a9:c7:35:02:e1:3f:c6:
         5d:8a:b4:d8:6d:d9:3f:8f:56:f5:17:e5:be:76:c3:ae:34:69:
         4c:e1:ac:e7:9d:56:26:fc:e6:87:c9:e3:57:65:96:fb:7a:8a:
         a9:2c:de:4f:39:2a:27:39:9d:05:f7:51:44:03:0d:da:88:bc:
         41:53:29:69:8f:42:4c:88:1d:d2:a2:c4:8f:db:93:8b:5e:2d:
         32:cd:55:e4:4c:d6:15:8c:58:1c:90:65:0c:fd:c4:d0:7c:d9:
         04:1b:32:af:92:f3:47:19:45:37:80:12:17:e6:5a:5e:f4:79:
         c2:6f:8f:24:4d:db:b5:9a:82:34:3c:e0:fe:92:d6:9c:ad:c1:
         74:73:f2:3d:b5:69:51:ce:aa:65:a6:f7:05:28:4b:e6:06:1d:
         fb:83:84:aa:72:04:38:ab:82:4e:0e:3f:1d:92:f5:de:af:4f:
         87:91:e5:8e:b7:ed:38:7b:19:f9:70:d2:86:32:55:83:38:70:
         60:2c:ae:9e:26:99:8f:0d:11:5b:7c:3c:d6:7a:28:01:c7:52:
         26:84:df:91:c6:a4:df:40:ff:7f:b2:28:4e:5e:11:81:f3:0e:
         cb:db:62:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:30 2024 by rpki-client on console-ams.rpki-client.org