Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hQodAl-FMGhkc_a7kz26FhrxLTM.roa
File:                     hQodAl-FMGhkc_a7kz26FhrxLTM.roa (raw, json)
Hash identifier:          U0S44us9H5+uY5LRVfXwNfp7kVZN3FTlKdEj2rHzjmo=
Subject key identifier:   85:0A:1D:02:5F:85:30:68:64:73:F6:BB:93:3D:BA:16:1A:F1:2D:33
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       2299
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hQodAl-FMGhkc_a7kz26FhrxLTM.roa
Signing time:             Fri 25 Nov 2022 04:41:23 +0000
ROA not before:           Fri 25 Nov 2022 04:41:23 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        180.177.232.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8857 (0x2299)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Nov 25 04:41:23 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=850A1D025F8530686473F6BB933DBA161AF12D33
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ea:97:fc:fe:de:a0:58:7d:37:d8:90:a5:10:c3:
                    95:64:88:06:02:30:51:0f:5f:d7:33:e5:b3:32:34:
                    b1:a4:49:ee:73:c7:16:40:44:ca:9e:b0:81:58:00:
                    0b:24:4f:bb:cd:83:3f:84:43:9d:79:db:95:b9:85:
                    51:41:6b:ca:59:1a:70:92:d4:4c:d9:2c:00:b9:f5:
                    94:32:93:43:80:75:25:0b:ce:fc:ac:b0:ff:b2:c9:
                    cc:cf:2a:70:3e:e5:63:61:f2:40:ac:90:5d:54:fc:
                    77:6b:88:b4:02:a6:cb:45:9a:70:0f:0d:70:ed:c0:
                    e9:2d:a6:a6:00:11:c9:67:cb:ed:28:6a:eb:68:65:
                    88:99:67:9a:5e:f4:d0:9c:3d:0c:29:e4:07:48:0c:
                    f8:dd:4f:ff:60:df:f3:dc:78:b0:6a:2b:50:81:04:
                    f3:a1:42:fa:e0:25:43:b3:e9:87:f2:3d:3c:31:3c:
                    16:41:a6:2a:fb:74:71:9c:ac:e4:1c:a3:fb:e3:57:
                    1a:80:76:4e:4a:bf:01:e7:1b:6b:84:ba:11:64:55:
                    ec:fc:be:dd:87:75:6f:a5:4f:c6:7c:6b:34:d9:83:
                    63:33:82:97:60:d0:bc:71:b4:40:57:16:7e:de:9b:
                    99:3f:40:00:61:32:5d:8d:ef:1a:ba:62:61:38:ba:
                    03:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                85:0A:1D:02:5F:85:30:68:64:73:F6:BB:93:3D:BA:16:1A:F1:2D:33
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/hQodAl-FMGhkc_a7kz26FhrxLTM.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.177.232.0/23

    Signature Algorithm: sha256WithRSAEncryption
         63:2b:b3:e1:a1:fb:66:fe:f6:4a:ca:cd:62:5f:f8:1f:a0:50:
         44:dd:4a:88:ed:4d:f9:2a:52:b9:44:f2:58:0b:08:17:63:e4:
         c8:59:a9:a9:f6:0b:4f:70:23:47:7f:04:7f:b2:dd:72:a1:aa:
         5c:7e:45:be:e1:46:f0:d4:7a:49:8e:6d:89:21:7e:87:ee:21:
         ef:ab:3b:05:af:62:7a:4b:dc:72:ca:47:0d:2a:2f:dd:51:cc:
         b8:19:3c:d1:90:b9:5c:7f:c3:51:33:5e:c8:98:db:58:a9:bc:
         c3:d2:37:a5:41:b8:19:ca:76:ae:65:12:aa:17:70:28:57:f7:
         89:f2:a6:2e:9f:53:3f:d4:64:f1:8b:73:38:71:ac:b3:b3:af:
         b7:bd:95:ce:bc:06:5f:d5:e3:b0:0f:05:cc:2a:37:eb:3a:4a:
         65:58:fb:45:fb:8a:94:dd:cc:60:4a:00:2a:dc:cb:26:a5:3f:
         59:11:3c:e5:4a:72:4c:7d:80:38:0c:db:77:c7:a2:5b:c6:45:
         4a:4a:e2:68:f4:3b:53:b1:64:8c:da:d2:67:c4:3f:e0:7c:2f:
         23:72:f4:1a:01:c1:63:93:38:18:99:a0:8c:18:8b:d9:2f:62:
         55:05:5b:7c:1e:8e:de:47:21:1e:f2:03:0c:1f:5a:a3:eb:2b:
         5d:f5:6a:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:56 2024 by rpki-client on console-fra.rpki-client.org