Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iOJbnCHyLzu2qFHbazm5U6ahcAw.roa
File:                     iOJbnCHyLzu2qFHbazm5U6ahcAw.roa (raw, json)
Hash identifier:          28HS4HUaFXS63VQXX6yawLt3H3WfdoUK+7fDm+IZmCw=
Subject key identifier:   88:E2:5B:9C:21:F2:2F:3B:B6:A8:51:DB:6B:39:B9:53:A6:A1:70:0C
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       2303
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iOJbnCHyLzu2qFHbazm5U6ahcAw.roa
Signing time:             Fri 25 Nov 2022 04:41:55 +0000
ROA not before:           Fri 25 Nov 2022 04:41:55 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        106.1.208.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8963 (0x2303)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Nov 25 04:41:55 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=88E25B9C21F22F3BB6A851DB6B39B953A6A1700C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f3:88:63:a4:63:48:7c:43:e6:ea:43:c3:60:32:
                    70:cb:ac:9e:74:ce:68:54:91:5a:0d:93:20:cc:b5:
                    38:1c:65:90:03:ee:82:a6:6d:7a:d0:6a:62:73:73:
                    8d:1c:ea:31:48:d6:30:e3:5d:7c:45:fe:21:78:53:
                    09:ee:36:cc:64:72:9d:8f:29:3e:ca:d3:f2:f2:b4:
                    b0:9a:23:92:3e:77:84:9d:20:95:95:4a:98:e5:de:
                    1d:e5:e4:a7:e6:db:cf:48:84:f5:1d:9d:96:af:00:
                    bb:49:14:6d:00:1c:49:58:01:98:51:65:cd:5b:aa:
                    07:9f:1f:f1:20:ab:85:ee:13:27:4f:f4:6e:7c:c5:
                    25:06:8b:fc:b2:b4:f8:4b:e9:f2:65:47:ef:b1:76:
                    51:dc:29:39:c6:d9:24:82:a8:0a:4b:3b:34:9f:29:
                    db:70:a8:03:05:1b:84:27:2b:4d:29:9e:54:c8:08:
                    0f:c2:3f:a8:04:43:37:fd:ec:c3:38:8a:fd:08:05:
                    6a:77:e3:b6:5a:31:ac:2a:5f:85:66:f3:4c:d4:8a:
                    ad:93:55:d1:dd:24:a4:bc:52:95:e2:e7:7e:7e:3e:
                    a8:55:e0:68:dd:73:e1:87:f9:ab:c1:f8:5a:c9:e2:
                    7d:c5:6b:f2:51:ce:cc:cb:9e:c3:f8:64:51:d7:3a:
                    82:af
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                88:E2:5B:9C:21:F2:2F:3B:B6:A8:51:DB:6B:39:B9:53:A6:A1:70:0C
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iOJbnCHyLzu2qFHbazm5U6ahcAw.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  106.1.208.0/22

    Signature Algorithm: sha256WithRSAEncryption
         8a:d1:b5:93:37:8d:58:12:35:13:c2:7e:9f:4b:ee:06:64:da:
         4d:58:3c:d9:87:86:7d:c4:bf:41:2c:f2:97:7a:74:b3:a8:ce:
         86:f7:df:a4:2e:54:5d:b4:5e:f9:86:24:b5:29:34:ee:d0:e3:
         fa:ae:85:82:f5:d7:bb:ae:67:b3:23:f4:fc:84:ec:6c:60:70:
         20:52:a6:20:9e:26:f5:40:b8:64:43:88:e8:02:64:bb:c3:08:
         9b:4d:c5:a1:1f:dd:cd:5d:75:2e:06:d6:60:41:3d:fd:85:43:
         2c:45:66:88:0f:13:70:97:83:cb:64:d7:3e:83:35:24:ce:21:
         59:b7:6e:c3:a2:a2:67:bc:a9:70:e2:8c:57:af:ec:0b:bf:44:
         af:7c:9c:74:a1:39:24:f9:16:66:d6:1a:47:d1:fb:13:61:57:
         89:90:99:65:58:15:05:a8:8e:fb:ac:99:61:cc:0d:04:22:91:
         75:f2:7d:8a:e1:3a:ba:95:17:11:b4:83:e6:42:2f:85:c0:69:
         fe:09:38:bd:d8:e5:b5:dc:5a:f5:63:f7:e6:22:4b:56:76:62:
         cf:92:f6:c9:81:25:41:93:2d:a5:04:8c:d6:cb:a2:be:ba:0e:
         1b:43:82:d5:d6:27:d3:33:05:cd:df:1d:d6:75:ef:d2:eb:99:
         b4:58:01:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:57 2024 by rpki-client on console-fra.rpki-client.org