Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/U_07joSCdr9RuOhr6dhSeFpH9Wg.roa
File:                     U_07joSCdr9RuOhr6dhSeFpH9Wg.roa (raw, json)
Hash identifier:          /SBSpsWhiKA9RqTTSx8zgxf8BK0IfNZWevS6a2HRJNo=
Subject key identifier:   53:FD:3B:8E:84:82:76:BF:51:B8:E8:6B:E9:D8:52:78:5A:47:F5:68
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       2117
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/U_07joSCdr9RuOhr6dhSeFpH9Wg.roa
Signing time:             Fri 25 Nov 2022 04:39:29 +0000
ROA not before:           Fri 25 Nov 2022 04:39:29 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        123.195.112.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8471 (0x2117)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Nov 25 04:39:29 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=53FD3B8E848276BF51B8E86BE9D852785A47F568
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cd:2b:c1:8d:3f:46:85:7a:39:57:e4:73:62:7e:
                    37:59:4a:ff:04:b1:10:b2:74:8f:68:2f:7e:40:0c:
                    ca:a5:21:04:52:76:59:51:54:ca:38:ab:e3:ca:f2:
                    0c:b4:e5:47:d2:6d:5d:ae:46:db:18:70:08:04:9d:
                    86:4f:ca:92:3c:97:52:d9:3a:95:f6:9e:ed:b9:30:
                    20:c5:3c:b0:49:07:c0:0c:a4:7d:39:f9:13:c9:1f:
                    db:08:ed:e3:e7:aa:fe:2d:70:08:6b:5a:fb:d2:51:
                    9a:de:d1:76:b0:f3:d4:08:0a:26:e1:15:1d:17:a1:
                    c5:c9:20:98:69:c4:c2:09:c2:3a:f0:c0:32:0f:37:
                    b0:07:26:b8:01:59:71:f7:52:01:5f:85:d4:6e:db:
                    23:98:5a:07:d5:87:3e:06:80:d4:8a:b1:4a:60:46:
                    98:9e:c8:22:5b:e8:9d:6e:53:7d:b0:75:47:f0:88:
                    94:55:cc:3f:98:6c:ab:d4:99:ab:cf:0a:64:31:73:
                    65:13:37:97:71:ec:4a:2d:d7:01:b0:1e:ab:02:07:
                    2b:6f:ff:e6:69:1a:5e:c6:23:98:0c:17:d7:00:e9:
                    0a:06:7e:23:6f:d5:a5:6f:34:1e:0a:75:94:dd:39:
                    f8:e9:7d:bf:92:8b:37:db:a0:bb:75:e9:05:90:21:
                    37:4f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                53:FD:3B:8E:84:82:76:BF:51:B8:E8:6B:E9:D8:52:78:5A:47:F5:68
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/U_07joSCdr9RuOhr6dhSeFpH9Wg.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.195.112.0/21

    Signature Algorithm: sha256WithRSAEncryption
         72:41:00:94:23:f5:0d:1e:27:fd:4d:3b:f8:c9:9f:dd:46:12:
         c1:3a:43:24:a1:33:f8:ab:d5:6a:3c:40:18:de:c8:d5:a9:89:
         4c:2e:a7:01:e5:60:fe:4b:07:9d:23:64:90:92:30:a3:50:24:
         1a:a5:2b:5f:9d:53:4f:3d:c2:1e:6e:50:f1:00:b3:1f:47:49:
         49:7f:99:f1:18:07:ce:0b:96:c8:45:7f:de:6d:fa:ff:2d:00:
         bb:82:1a:36:49:7b:e2:2c:f7:5d:8c:b1:62:79:ed:be:71:cc:
         0b:59:cb:e9:ff:0e:fc:b0:36:e9:f0:c2:e3:54:3c:09:b2:83:
         8c:6a:dd:d3:3e:3a:a7:20:6e:9b:03:86:44:45:e4:2b:f3:85:
         36:9f:cf:c0:73:04:91:56:9a:11:2f:de:11:83:f1:28:75:84:
         16:9c:18:bc:7b:09:9b:3f:f5:c9:98:d2:65:ea:d9:59:23:25:
         2e:92:6a:56:40:c6:f2:3e:a5:6c:ec:d0:9a:3d:b9:ff:78:2d:
         21:d0:15:12:27:ab:7d:36:fd:f6:aa:e8:a9:05:89:3f:2a:4c:
         ae:ba:e0:a7:0a:76:11:d4:a0:76:a5:ab:a8:32:60:d3:82:1e:
         65:41:e3:20:6f:0e:ab:14:bf:fc:94:89:76:33:80:6f:10:a7:
         ac:b1:2d:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:53 2024 by rpki-client on console-fra.rpki-client.org