Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j8Xr7qWHwLSzKD5HKWs_5B-uckw.roa
File:                     j8Xr7qWHwLSzKD5HKWs_5B-uckw.roa (raw, json)
Hash identifier:          Nf29uTR3AoVpGnvPbVZebxq1koDmkgvXF/F/KDPNlAs=
Subject key identifier:   8F:C5:EB:EE:A5:87:C0:B4:B3:28:3E:47:29:6B:3F:E4:1F:AE:72:4C
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       22E5
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j8Xr7qWHwLSzKD5HKWs_5B-uckw.roa
Signing time:             Fri 25 Nov 2022 04:41:46 +0000
ROA not before:           Fri 25 Nov 2022 04:41:46 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     9924
IP address blocks:        123.195.236.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8933 (0x22e5)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Nov 25 04:41:46 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=8FC5EBEEA587C0B4B3283E47296B3FE41FAE724C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d3:7e:08:75:08:1d:d6:50:b5:9f:a4:a4:35:9c:
                    77:bb:68:52:e8:d2:cf:78:5b:70:04:5f:30:26:28:
                    47:36:0b:3a:7a:df:09:c5:cf:a0:73:d8:05:68:8f:
                    ae:79:bf:7c:8b:0c:4d:16:29:f5:0a:87:8b:b7:46:
                    ff:da:e0:fe:c3:ed:2d:c8:5d:dd:20:4d:16:cb:a0:
                    86:ae:87:47:4f:aa:23:be:4e:3f:35:10:3f:2c:e7:
                    71:b9:14:7c:dc:e2:30:bf:af:55:37:ca:5c:2e:d8:
                    9b:7a:f3:96:29:4e:20:76:b6:c3:36:1b:6d:c6:a1:
                    a4:93:b9:bf:f4:f4:52:07:22:b4:fd:93:bd:1c:59:
                    4d:9a:0d:2a:14:4c:e2:84:83:38:65:5b:26:bf:e8:
                    30:3a:0c:c6:4a:0e:2f:29:c1:28:fb:bc:19:65:4d:
                    e6:ec:e5:40:36:89:3c:68:4f:ca:89:37:2f:87:44:
                    55:42:00:b5:33:8c:c0:85:66:2e:db:aa:c7:a3:4c:
                    f9:96:a4:95:db:38:b1:71:59:64:a5:47:55:f5:d7:
                    ed:9d:f4:2e:0a:53:fc:dc:20:71:26:00:65:f6:25:
                    4f:8e:b9:a9:41:7b:99:e6:c6:c3:12:42:a0:d8:7b:
                    5e:62:af:e0:24:6f:9a:4d:5c:bd:a9:ac:0c:d8:b0:
                    f2:85
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:C5:EB:EE:A5:87:C0:B4:B3:28:3E:47:29:6B:3F:E4:1F:AE:72:4C
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j8Xr7qWHwLSzKD5HKWs_5B-uckw.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.195.236.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a8:3b:7e:0d:80:93:84:71:5f:3c:d5:7f:00:f0:9b:d1:42:dc:
         84:ac:b4:af:3e:e0:76:b6:9e:f6:e8:b2:5d:04:78:6a:ca:42:
         2d:b3:f3:2a:e5:98:56:e4:81:99:f4:b4:4a:1e:4d:4e:ba:43:
         78:e2:a8:0c:02:fa:27:b1:06:fe:3a:8e:91:b2:bc:63:2f:2d:
         7a:5e:0a:23:27:d3:d1:b8:cb:64:06:32:f1:09:3c:4c:b8:c3:
         5c:7c:23:4c:e5:de:fe:a6:98:2d:0d:df:63:3a:ff:25:0b:46:
         e3:12:4f:62:1f:0b:9b:05:5a:1c:39:92:0b:14:7d:56:a0:de:
         51:0b:62:05:4b:77:ee:16:74:ee:22:65:22:62:79:d1:68:ea:
         ce:29:99:91:b7:60:0d:d4:47:0d:d2:59:1d:98:ee:be:3d:a8:
         76:29:05:f9:bd:c2:6b:6d:46:8c:10:e7:fc:5b:ae:77:fc:f6:
         ab:22:d6:52:d1:2f:25:3b:7a:7d:41:67:12:74:45:e9:69:6c:
         b4:ba:66:c9:22:55:42:27:24:ec:5f:e9:95:7f:d2:56:9b:89:
         67:e2:10:f0:2a:45:38:3e:f0:6b:97:86:fd:00:ca:3e:99:1f:
         36:fc:1d:f5:e2:1f:54:4c:9f:fe:77:bf:6a:cd:04:dc:a5:3f:
         67:f3:50:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:38 2024 by rpki-client on console-ams.rpki-client.org