Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cflYr8cHrw7cHLEsLLzIePQl22s.roa
File:                     cflYr8cHrw7cHLEsLLzIePQl22s.roa (raw, json)
Hash identifier:          a4WAv7S2VESfn9KMgjKu9T8zGrmmc1V2BFKB8uNBf2s=
Subject key identifier:   71:F9:58:AF:C7:07:AF:0E:DC:1C:B1:2C:2C:BC:C8:78:F4:25:DB:6B
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       22B3
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cflYr8cHrw7cHLEsLLzIePQl22s.roa
Signing time:             Fri 25 Nov 2022 04:41:32 +0000
ROA not before:           Fri 25 Nov 2022 04:41:32 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        180.177.222.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8883 (0x22b3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Nov 25 04:41:32 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=71F958AFC707AF0EDC1CB12C2CBCC878F425DB6B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:c7:06:d7:86:aa:6c:dc:f1:87:ad:33:65:31:
                    4b:ad:67:89:b1:c5:e2:56:a9:1c:20:a9:73:d0:ac:
                    68:39:e0:bd:13:ea:19:d3:28:cf:34:6f:fd:ef:1e:
                    35:c3:6b:91:14:3b:c9:8d:29:98:bf:52:14:25:f7:
                    1d:57:53:f9:b6:18:81:da:8f:a5:85:4d:b0:f7:9c:
                    d7:cb:79:01:2b:41:64:d7:85:3c:e0:94:31:ce:ec:
                    f8:3b:ad:d1:cc:b4:ef:a0:76:14:75:51:da:c8:ff:
                    06:ea:5f:92:a2:8c:f7:9d:88:82:4c:30:80:d0:eb:
                    c4:1f:b7:ba:96:94:94:b2:94:bd:12:ab:b2:fb:67:
                    57:20:dd:24:1d:4b:3b:11:34:ed:72:65:d5:09:ec:
                    39:ce:7a:cf:f3:37:66:13:be:5b:0e:fc:c9:3a:c3:
                    ec:ea:49:36:66:8a:36:be:ad:56:85:b7:3e:fb:4a:
                    c2:9e:6b:90:69:57:64:4e:7d:39:45:81:06:03:d2:
                    0c:c7:97:ae:e3:90:89:09:42:7d:fa:47:9d:c8:28:
                    52:dd:ee:dd:9a:f9:78:ba:22:bb:2c:72:ff:61:2d:
                    49:ea:47:4b:d8:41:ff:b6:2a:96:f3:42:d9:fc:36:
                    0d:85:a1:6e:74:92:05:49:d5:22:ea:66:63:06:5a:
                    1d:97
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:F9:58:AF:C7:07:AF:0E:DC:1C:B1:2C:2C:BC:C8:78:F4:25:DB:6B
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cflYr8cHrw7cHLEsLLzIePQl22s.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.177.222.0/24

    Signature Algorithm: sha256WithRSAEncryption
         5b:7f:cf:19:2f:b2:2c:a2:20:00:e4:cb:4c:c0:95:2c:7e:3f:
         a3:78:d2:6d:f7:94:6a:e0:16:a0:0b:55:11:b0:ff:13:ef:69:
         d8:27:d0:8a:3f:82:6f:60:bf:b1:c3:33:be:83:3b:18:3f:e8:
         39:2d:ec:15:f5:d1:6f:c3:e2:eb:c6:e3:33:dd:d4:ab:6b:6e:
         b3:60:91:2f:15:06:39:bc:80:de:e9:34:9d:d8:d0:e9:3d:69:
         c5:96:9b:7a:95:bf:ff:2d:71:57:2a:e0:85:c5:fd:52:dd:a2:
         b7:88:e3:85:3b:39:5b:c4:51:fa:ba:78:22:06:dd:7f:5f:14:
         6f:93:1e:63:29:f8:13:54:91:dc:b1:be:d8:4f:a7:4f:9b:83:
         14:7d:b0:ea:46:17:0b:c5:19:ef:0c:e3:14:73:57:d2:fe:7e:
         01:f5:b9:4d:e3:39:a5:ba:97:25:40:10:73:0e:43:2a:c9:59:
         2f:48:bc:ae:4b:4f:ff:bb:f3:9c:3f:52:f6:4a:f8:71:34:cd:
         75:26:b7:6f:13:aa:4f:8d:4a:c7:4e:3c:ac:62:3c:2d:65:0c:
         56:67:78:f1:55:7f:b2:4a:59:ca:dc:eb:71:dd:1f:35:7b:03:
         8a:51:a4:35:77:d5:3a:fd:b1:ee:59:7c:2a:f6:5b:87:44:c0:
         f8:3d:74:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:35 2024 by rpki-client on console-ams.rpki-client.org