Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cfqMhUZ3Zn2Z7YkkHGufKAeHYu4.roa
File:                     cfqMhUZ3Zn2Z7YkkHGufKAeHYu4.roa (raw, json)
Hash identifier:          1bEoneSML/THS1/gTSqB7DytnYd+FvTcoKK0OBn9OuE=
Subject key identifier:   71:FA:8C:85:46:77:66:7D:99:ED:89:24:1C:6B:9F:28:07:87:62:EE
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1FA0
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cfqMhUZ3Zn2Z7YkkHGufKAeHYu4.roa
Signing time:             Thu 15 Sep 2022 02:46:11 +0000
ROA not before:           Thu 15 Sep 2022 02:46:11 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     9924
IP address blocks:        118.232.248.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8096 (0x1fa0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 15 02:46:11 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=71FA8C854677667D99ED89241C6B9F28078762EE
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b1:03:09:a2:41:86:be:d5:ef:4c:e7:ca:23:f4:
                    7c:ee:4e:f9:24:2a:82:27:f7:ff:fb:27:f4:11:86:
                    c4:39:a8:ac:c6:40:04:98:7f:c8:90:fe:29:ca:36:
                    79:d8:66:7f:16:72:a2:ab:35:ec:e1:45:c4:cf:b4:
                    07:76:88:9b:f3:f7:29:81:db:19:7c:d2:2a:e2:b8:
                    55:84:de:20:fd:0f:fe:a0:a6:0a:26:5a:f1:8d:57:
                    29:d2:fa:79:13:6a:09:d9:63:70:77:a1:a1:dc:ba:
                    fa:e7:fd:6f:4a:24:1a:3f:ab:8b:eb:90:37:17:bd:
                    a6:97:a3:cd:03:df:c2:f1:3e:33:24:ae:c1:9e:c4:
                    69:27:94:20:0e:ec:b5:2a:91:7b:14:75:38:7a:50:
                    f0:39:96:51:9e:9b:97:30:26:74:45:6e:ed:c9:de:
                    0b:2f:27:ce:03:3e:5a:13:49:d1:60:84:12:fa:45:
                    a0:fe:6e:86:3f:0b:85:70:4f:a9:49:bb:a8:84:85:
                    7d:ca:61:09:60:03:20:ae:70:ca:4d:03:a3:ca:39:
                    ab:14:35:f7:9f:99:e7:0e:64:5c:5e:23:53:be:89:
                    86:53:43:05:10:bb:54:ae:67:37:06:05:14:78:fc:
                    0d:de:51:29:72:d3:40:24:38:fd:7f:3f:8e:c6:69:
                    42:d1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                71:FA:8C:85:46:77:66:7D:99:ED:89:24:1C:6B:9F:28:07:87:62:EE
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cfqMhUZ3Zn2Z7YkkHGufKAeHYu4.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  118.232.248.0/22

    Signature Algorithm: sha256WithRSAEncryption
         91:66:83:42:e3:0a:b1:c7:d3:a5:d4:2c:62:a9:20:04:73:e5:
         32:78:74:52:6a:7f:db:a9:2c:05:24:af:50:72:eb:8f:ea:53:
         ca:d2:3f:23:cd:da:4e:95:5a:a4:e5:74:80:98:41:91:28:43:
         86:30:d1:df:d0:d9:d5:2f:ea:04:0e:a4:f4:f5:1b:10:7d:36:
         c5:29:ed:b3:cc:76:ec:d9:7a:f5:84:62:01:4c:a7:80:92:4c:
         0f:a7:e3:8c:16:23:e3:c5:c6:92:98:55:14:66:b5:44:b1:cb:
         af:6a:6f:70:00:40:81:0d:66:01:9d:cf:b4:f4:e1:ef:ac:c6:
         1c:29:50:1a:86:2f:c5:e6:da:90:a7:1f:f8:28:1d:f9:5c:3d:
         7b:66:36:7b:2e:ca:a1:ab:4c:ad:5e:2c:bb:fa:55:34:04:58:
         42:e6:0a:3f:aa:fa:e9:33:3d:ef:d8:9e:c2:ee:bd:8f:48:58:
         fe:8f:c7:24:5b:20:4b:c1:71:f1:d2:55:02:06:6a:7d:d2:07:
         ff:e9:1e:f0:04:55:29:02:22:13:b2:fc:b9:82:c6:4b:f7:00:
         97:08:b0:10:8e:a6:d5:50:57:b8:c2:c4:9b:6c:4a:c3:ab:cf:
         04:79:a5:22:f9:91:ae:a7:48:5d:ea:0f:56:68:2e:46:86:4f:
         c8:0b:80:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:35 2024 by rpki-client on console-ams.rpki-client.org