Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gDWDJjkuLT3Q-5ejDwye_V6Xvu0.roa
File:                     gDWDJjkuLT3Q-5ejDwye_V6Xvu0.roa (raw, json)
Hash identifier:          5fF+I7cwVBWfBjb7AcIsl5HfQC/RROkMdbr794kcV3w=
Subject key identifier:   80:35:83:26:39:2E:2D:3D:D0:FB:97:A3:0F:0C:9E:FD:5E:97:BE:ED
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gDWDJjkuLT3Q-5ejDwye_V6Xvu0.roa
Signing time:             Thu 15 Sep 2022 02:52:30 +0000
ROA not before:           Thu 15 Sep 2022 02:52:30 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        180.176.236.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8098 (0x1fa2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 15 02:52:30 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=80358326392E2D3DD0FB97A30F0C9EFD5E97BEED
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cc:4d:ba:3d:32:07:2c:3d:eb:6f:2f:80:60:f4:
                    ea:3d:45:56:de:3d:bb:21:c3:79:19:21:71:24:c7:
                    03:8e:d8:1e:4e:ae:a5:5b:cb:3f:5b:8f:66:48:46:
                    dc:f6:ea:fe:3f:7c:53:3f:01:41:4d:8e:6b:b9:50:
                    01:5b:f1:f6:13:94:f3:41:9f:2f:f1:9e:ea:c2:70:
                    17:d7:24:59:91:b1:1d:2f:00:2f:69:34:e8:bb:91:
                    68:e5:c3:34:dd:34:6a:d3:18:35:82:e1:48:e8:bc:
                    e5:50:3a:ca:f3:f1:34:e4:2b:c9:a9:7c:cb:d9:86:
                    2c:20:f2:6b:b7:bf:3e:c1:81:8a:ff:3e:20:61:c7:
                    f8:68:86:f5:56:77:54:64:07:81:f1:d9:97:ee:fe:
                    8f:48:62:db:d0:69:33:eb:5f:3a:d5:e5:b1:75:e7:
                    74:cc:00:e0:87:cd:13:44:ac:d8:a8:31:0f:fc:20:
                    1f:51:a1:ea:3d:03:87:2b:09:de:c8:3b:ab:ca:00:
                    fe:80:f6:1e:7f:3e:76:81:d4:63:87:9b:cd:b3:f1:
                    d2:8b:c8:9a:2d:47:40:37:d3:f4:77:23:f7:ab:4e:
                    96:3c:a7:c7:3e:de:ae:af:a7:4e:be:d9:cc:d6:0a:
                    76:3c:cc:c8:da:0e:7f:a4:bb:3d:00:22:0c:f2:ef:
                    f4:fb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                80:35:83:26:39:2E:2D:3D:D0:FB:97:A3:0F:0C:9E:FD:5E:97:BE:ED
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gDWDJjkuLT3Q-5ejDwye_V6Xvu0.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.176.236.0/22

    Signature Algorithm: sha256WithRSAEncryption
         66:8d:93:98:22:5f:43:d0:79:e2:70:99:40:96:ea:d6:ce:33:
         23:dd:76:4e:83:c4:66:06:8e:d5:fd:ba:04:1c:98:bf:cb:bd:
         a4:7f:01:03:ff:c8:64:8b:4b:aa:1d:71:87:49:86:d1:1f:4d:
         93:c2:7b:54:fc:45:ba:68:8c:48:ac:ff:89:9e:06:cd:81:2a:
         c7:9c:b0:f5:fb:12:5f:3a:91:a2:51:a9:d0:0f:3e:ef:48:7e:
         0e:90:3e:88:72:0f:d4:d9:a0:e0:58:65:4d:9f:bd:81:c7:67:
         63:5d:2b:2b:63:aa:a5:a4:1c:b2:2f:f4:4e:d1:4b:ce:17:f2:
         40:5a:6b:29:3f:08:52:f4:ed:41:76:a3:70:4c:86:a0:d0:b0:
         e5:db:af:78:5f:2d:e5:3d:37:ae:f0:06:14:0f:71:7b:28:c3:
         16:0b:c1:ce:f3:0f:c8:7f:12:18:9b:7c:5c:ed:36:02:66:d6:
         21:a2:4b:14:b6:99:3d:94:6e:91:76:64:66:d6:58:a2:24:74:
         c4:74:7f:ac:f4:59:27:a2:ea:1f:39:2d:0c:7a:f5:8c:ab:79:
         6f:d9:14:7e:79:70:5f:49:da:41:2a:de:ad:27:e2:27:a3:63:
         45:0f:0e:d4:4b:93:a3:5f:fa:7b:5b:c7:cc:35:52:ec:8d:75:
         f6:0a:75:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org