Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aovDt24HoFseHI9K5evIXoxj8vI.roa
File:                     aovDt24HoFseHI9K5evIXoxj8vI.roa (raw, json)
Hash identifier:          NI7f5Y4i1olXYzHgTw7kHam1AYkSL7AmW4Ef+XDxu9o=
Subject key identifier:   6A:8B:C3:B7:6E:07:A0:5B:1E:1C:8F:4A:E5:EB:C8:5E:8C:63:F2:F2
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       0D3B
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aovDt24HoFseHI9K5evIXoxj8vI.roa
Signing time:             Tue 29 Sep 2020 09:54:20 +0000
ROA not before:           Tue 29 Sep 2020 09:54:20 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     38841
IP address blocks:        118.233.184.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3387 (0xd3b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 29 09:54:20 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=6A8BC3B76E07A05B1E1C8F4AE5EBC85E8C63F2F2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:c4:ec:1b:3e:a2:15:ba:a0:8a:94:0f:4b:c9:
                    07:d3:16:a5:b9:bd:a1:44:94:14:bc:66:54:8a:29:
                    44:99:af:93:39:5f:67:9f:57:40:bb:b1:b6:b7:90:
                    88:f9:cd:22:aa:a5:6d:79:e4:bd:f4:93:05:8d:fc:
                    cf:3e:6f:ea:a5:b4:ee:88:79:66:6f:52:c4:4f:d3:
                    c9:88:3d:dc:22:13:2b:e7:fa:49:0d:cb:01:10:c1:
                    ac:b6:06:3c:31:a2:29:b8:2f:e4:ef:28:c0:be:9c:
                    48:0f:4d:ff:c7:5f:60:bc:f5:ae:39:29:3c:e4:91:
                    6d:16:fc:b3:aa:e6:d4:f1:d2:96:65:e5:57:da:dd:
                    5c:b0:e3:db:63:e7:87:9a:c9:8f:86:1a:bf:b1:aa:
                    32:4c:f5:e0:c7:0c:c8:9a:a4:b6:38:15:5e:6b:24:
                    03:37:c8:8b:16:6d:87:4a:a9:6a:0a:8b:24:a5:d3:
                    1a:bc:d2:ba:04:69:0f:e5:22:80:ea:67:ab:4b:d4:
                    91:ea:f6:d2:37:b9:f5:b4:ff:8a:b0:fd:94:a8:38:
                    56:35:c7:7e:3a:2d:8d:2f:3b:08:8f:7e:3b:78:14:
                    ce:bb:25:38:b6:5b:98:11:29:3a:c1:86:e0:4d:d9:
                    47:09:3c:10:49:37:e6:0c:24:e0:d1:38:5d:82:8c:
                    59:91
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6A:8B:C3:B7:6E:07:A0:5B:1E:1C:8F:4A:E5:EB:C8:5E:8C:63:F2:F2
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/aovDt24HoFseHI9K5evIXoxj8vI.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  118.233.184.0/22

    Signature Algorithm: sha256WithRSAEncryption
         26:00:eb:f5:e2:cb:f2:8e:44:11:6f:fa:05:65:6c:80:f8:0f:
         65:a8:76:54:11:95:cb:b4:53:8f:d8:f5:6e:19:8d:be:9e:e6:
         13:ec:28:b9:53:5d:73:2b:c1:53:95:5e:38:01:94:75:db:24:
         17:e1:87:68:06:9e:b9:bf:d7:c1:51:c1:87:af:b7:3f:7e:d6:
         67:e5:02:76:8c:d9:5d:a3:b1:b5:15:c6:64:71:f9:b1:c1:89:
         4b:66:41:53:0b:bd:c9:50:5e:f5:4b:68:17:16:97:82:ea:67:
         0e:c3:2a:9c:af:59:ef:06:e3:0a:ca:9f:1e:6c:c7:54:75:28:
         8d:05:60:5a:20:4a:c3:ee:9b:13:61:01:1b:91:8d:cb:ed:8f:
         2a:12:41:6d:e3:d2:90:f4:cb:2a:74:c1:b5:b1:49:e0:f3:ea:
         90:18:b7:bd:66:fc:9f:fd:06:d9:db:0a:7e:8a:f4:62:8d:b3:
         85:80:31:b2:a4:61:09:8c:99:cc:31:41:1e:5d:2e:be:a5:63:
         5c:e3:59:df:63:5a:8e:f0:b9:a3:a6:b1:57:6b:f7:7b:56:a9:
         17:a9:23:6b:bd:51:8e:69:f9:7a:10:0d:5f:77:11:b6:35:9b:
         a7:56:0e:c7:d7:6f:1e:fd:6c:93:66:ff:35:b4:36:d3:39:34:
         59:cb:32:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:35 2024 by rpki-client on console-ams.rpki-client.org