Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gQGl4EP6Hw6aREq3icE0mOw5qqE.roa
File:                     gQGl4EP6Hw6aREq3icE0mOw5qqE.roa (raw, json)
Hash identifier:          DXQn+6D3v7qvl5P4akHYFX4sklArb5pSs7+rAENL7qw=
Subject key identifier:   81:01:A5:E0:43:FA:1F:0E:9A:44:4A:B7:89:C1:34:98:EC:39:AA:A1
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1AAB
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gQGl4EP6Hw6aREq3icE0mOw5qqE.roa
Signing time:             Wed 29 Sep 2021 02:45:36 +0000
ROA not before:           Wed 29 Sep 2021 02:45:36 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     38841
IP address blocks:        123.193.104.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6827 (0x1aab)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 29 02:45:36 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=8101A5E043FA1F0E9A444AB789C13498EC39AAA1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b4:a8:67:58:a3:aa:b0:90:bd:2c:87:72:80:26:
                    c1:16:00:04:e6:ae:3a:75:1f:62:bd:7f:a6:ac:a4:
                    ab:ae:ef:f3:aa:41:0e:76:de:b6:fa:12:50:d6:4c:
                    b7:66:86:ea:cd:80:1f:a7:25:12:eb:38:03:0f:58:
                    09:ad:75:d5:ed:7c:b2:7a:65:fd:2d:77:6f:b4:87:
                    5e:bd:ef:06:a3:e8:d2:eb:14:96:86:f8:32:52:01:
                    38:d7:75:43:c6:ca:a5:bb:62:3a:43:6e:b8:63:60:
                    4b:3a:e7:1c:91:c6:98:60:83:60:d9:bf:52:c8:89:
                    54:b6:80:4d:d3:bd:cb:48:c3:a6:cc:39:f0:cb:05:
                    02:b9:34:5b:37:45:15:73:98:a8:78:40:37:a0:65:
                    32:71:fb:32:f1:21:c8:d7:de:cd:81:ee:09:6e:37:
                    93:97:ec:b7:12:99:87:56:fb:42:1c:c7:41:f7:a8:
                    41:e8:15:57:b4:d5:23:44:31:e7:ec:3e:91:c6:2b:
                    79:08:ae:cb:72:fe:f4:d9:b7:d1:47:4f:ea:f0:17:
                    d6:86:fa:0a:a6:4a:38:9e:3d:1c:87:5c:38:3f:65:
                    9c:bd:3d:8d:6d:d2:7f:be:33:76:b3:20:ff:23:bf:
                    29:12:a4:6f:b6:30:90:89:ba:8b:a6:ee:17:d2:7d:
                    84:31
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                81:01:A5:E0:43:FA:1F:0E:9A:44:4A:B7:89:C1:34:98:EC:39:AA:A1
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gQGl4EP6Hw6aREq3icE0mOw5qqE.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.193.104.0/23

    Signature Algorithm: sha256WithRSAEncryption
         b3:ac:83:4e:4f:97:be:b9:1d:8d:9e:d7:1d:8b:47:4c:1e:db:
         12:f4:4a:59:07:43:43:b5:09:b5:65:19:07:ba:97:d1:b2:d1:
         5f:45:42:e9:26:b1:7f:57:ac:c0:a9:39:11:3c:36:54:49:e7:
         7b:a8:c9:62:f7:54:ab:63:f3:44:0f:4c:3c:67:bc:26:6a:57:
         92:0b:19:a7:be:f5:d4:52:75:42:1c:36:19:43:6e:eb:9b:fd:
         b1:6c:b3:6d:31:b1:83:0d:83:b3:4c:5d:8b:6f:07:ea:f1:62:
         fe:fd:65:96:ef:86:6c:13:09:64:18:04:43:32:df:6e:a8:a5:
         27:7f:05:73:e5:83:90:e4:1c:73:a3:fd:03:5a:f8:0b:fc:d6:
         a2:3a:a0:10:dd:f9:d4:37:14:bd:8e:8b:4a:d6:5d:d6:44:e4:
         98:e8:7a:4c:7e:55:31:66:c1:12:a8:76:46:66:ee:bb:36:e1:
         be:7a:8b:fb:28:c4:f4:0e:36:1c:7f:89:a0:aa:dc:01:ee:6a:
         e2:ce:68:0f:aa:eb:f5:f5:bb:6e:43:ab:1d:7e:37:50:73:56:
         f9:2a:b6:33:2c:64:99:8e:21:b7:67:2f:9d:91:e2:95:c5:e5:
         2b:88:4a:4a:45:4a:de:b5:2e:97:da:ee:63:ee:35:6d:9b:01:
         ea:94:2e:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:37 2024 by rpki-client on console-ams.rpki-client.org