Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PCNaeawHZwSO6v3HONpaOS1n44E.roa
File:                     PCNaeawHZwSO6v3HONpaOS1n44E.roa (raw, json)
Hash identifier:          Ny02kbxeLARxJVY/4Djhvv0kFXeea+SYva+W0XvKon8=
Subject key identifier:   3C:23:5A:79:AC:07:67:04:8E:EA:FD:C7:38:DA:5A:39:2D:67:E3:81
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       227D
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PCNaeawHZwSO6v3HONpaOS1n44E.roa
Signing time:             Fri 25 Nov 2022 04:41:14 +0000
ROA not before:           Fri 25 Nov 2022 04:41:14 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        180.177.220.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8829 (0x227d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Nov 25 04:41:14 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=3C235A79AC0767048EEAFDC738DA5A392D67E381
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ed:b0:2d:2e:c3:02:3b:76:eb:d9:02:bc:cb:cd:
                    9a:86:da:48:49:d1:f4:7c:93:8e:94:28:57:7d:30:
                    c7:f2:cd:f6:96:ce:a1:f7:f2:18:0b:58:5f:c4:d3:
                    57:a5:90:a9:33:96:37:4e:58:37:a5:ed:3b:9a:ee:
                    c7:21:45:74:32:e7:87:2c:13:51:43:a4:46:ba:9e:
                    60:70:3c:10:f2:c9:ad:1c:1e:3d:9a:93:a5:fe:8f:
                    22:ab:0f:94:72:5e:ab:05:43:42:10:71:eb:0f:4b:
                    02:7d:70:3e:98:bf:b1:54:d5:fa:c4:c4:e5:8e:d4:
                    df:f4:f3:2b:67:b7:65:fb:e2:7a:80:19:dd:1f:ee:
                    d6:f6:a5:d0:f6:de:d4:ac:86:ba:58:4c:5b:32:c3:
                    fa:1a:09:76:df:de:12:21:54:81:1f:b1:48:62:1a:
                    26:10:12:8b:e5:11:51:ce:ce:73:ef:77:46:13:8b:
                    f6:84:71:14:46:df:aa:15:7f:14:29:e4:a8:0b:4f:
                    2b:c1:1e:1b:85:39:71:37:82:3c:1a:a2:83:46:6d:
                    72:34:8f:68:6b:88:d8:fa:63:ee:ae:64:52:33:8c:
                    52:e3:fe:2e:77:ee:cd:02:56:a2:83:04:a0:21:ee:
                    02:73:5d:fb:b9:c6:69:81:6e:15:49:50:aa:df:71:
                    06:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:23:5A:79:AC:07:67:04:8E:EA:FD:C7:38:DA:5A:39:2D:67:E3:81
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/PCNaeawHZwSO6v3HONpaOS1n44E.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.177.220.0/23

    Signature Algorithm: sha256WithRSAEncryption
         a5:e0:80:4d:59:19:b3:6d:7b:91:1c:bf:ba:82:90:69:0f:5b:
         bf:14:a0:c9:7d:24:2d:7c:ee:d0:a5:2e:ea:f2:41:dc:5c:8f:
         e2:09:3b:03:b2:35:99:0c:38:80:f6:b6:67:d0:4c:5c:07:10:
         30:fc:fb:c5:48:9e:e0:69:c6:6a:a0:93:70:2a:84:0b:a7:a5:
         53:ae:eb:93:96:99:89:29:a3:32:d0:6c:57:00:06:23:6b:d7:
         7f:4b:35:22:6a:ac:31:69:70:26:18:48:0a:c3:fb:a6:1f:93:
         bf:65:a9:fa:e3:03:5b:aa:20:04:81:66:f0:67:b1:83:57:f3:
         bb:35:0f:18:dc:97:cb:54:d0:8d:99:81:52:b7:73:66:1b:32:
         6d:0b:ae:b2:8c:28:29:4c:08:ea:4d:40:03:32:d3:da:4a:6e:
         aa:ab:78:ac:b3:46:ae:b2:f5:d1:ec:1e:94:99:a0:c4:fa:1a:
         66:70:b4:d7:8d:93:07:41:c8:15:dc:eb:a6:da:18:2a:83:7c:
         8d:ba:4e:37:a7:56:36:88:58:db:12:2d:a1:3c:73:dc:66:1e:
         8c:a0:b5:a1:c1:2f:f6:34:fc:d7:10:bc:c4:5a:2e:a4:de:6b:
         b6:a9:d2:99:ee:71:16:2a:33:76:4a:6c:e9:61:46:59:e2:8d:
         db:83:93:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:30 2024 by rpki-client on console-ams.rpki-client.org