Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kofkvnaCZeABbeR2yIVbJ7f-OuQ.roa
File:                     kofkvnaCZeABbeR2yIVbJ7f-OuQ.roa (raw, json)
Hash identifier:          dLdoUPkI3aWodrvyulMWj6eNAeP5ctkNv3ZEf3w23+g=
Subject key identifier:   92:87:E4:BE:76:82:65:E0:01:6D:E4:76:C8:85:5B:27:B7:FE:3A:E4
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       1FA2
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kofkvnaCZeABbeR2yIVbJ7f-OuQ.roa
Signing time:             Thu 15 Sep 2022 02:53:50 +0000
ROA not before:           Thu 15 Sep 2022 02:53:50 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        180.177.234.0/23 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8098 (0x1fa2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Sep 15 02:53:50 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=9287E4BE768265E0016DE476C8855B27B7FE3AE4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:44:fc:24:d4:5e:4a:86:32:60:1d:b4:33:00:
                    bf:7b:27:bb:80:8f:d9:e2:95:66:ce:d0:3b:d7:d3:
                    ee:24:e1:04:14:72:25:cf:97:d1:47:c6:cd:1c:cc:
                    58:8f:f4:63:fc:03:1f:8f:f5:06:9e:69:8d:f8:f1:
                    90:c1:f2:5b:89:88:74:65:65:ff:76:66:32:84:6a:
                    5f:ee:c1:55:06:03:c6:d4:2c:d6:e6:7e:61:2f:20:
                    8b:6e:a3:8f:b6:b7:2c:23:8d:25:c0:c2:2d:42:78:
                    b1:db:27:50:c8:d9:54:88:31:af:00:50:93:f5:0e:
                    c2:86:21:81:21:23:29:75:c8:a0:35:ed:01:4e:88:
                    fe:d2:1a:41:4e:d0:99:a9:cc:83:22:83:c0:49:33:
                    3e:31:1b:df:7f:48:62:c8:f3:85:5f:01:8d:f4:97:
                    5b:59:d5:ad:f3:6a:f0:52:1b:49:16:da:86:3e:bb:
                    2b:3b:d6:d1:72:a9:d4:a5:97:58:90:91:94:9e:ad:
                    c2:ac:23:00:a7:48:cf:65:a9:c2:a7:ff:eb:6a:b1:
                    33:c9:11:75:a9:5f:2c:f6:db:05:ea:90:bb:32:e8:
                    32:cf:06:94:14:a2:a1:68:1c:3f:23:59:35:53:40:
                    97:12:8f:24:be:40:f3:73:d1:4d:9c:de:7d:9c:76:
                    b9:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:87:E4:BE:76:82:65:E0:01:6D:E4:76:C8:85:5B:27:B7:FE:3A:E4
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kofkvnaCZeABbeR2yIVbJ7f-OuQ.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.177.234.0/23

    Signature Algorithm: sha256WithRSAEncryption
         29:2b:06:75:ea:d8:f8:b1:e2:8f:a5:83:7f:4f:d3:e3:4a:19:
         3e:5a:ff:60:0a:9a:8f:2b:24:93:26:54:59:06:fe:11:d2:33:
         23:5f:95:2b:17:0b:df:42:7e:0b:08:22:f1:a7:78:d5:33:a9:
         cf:ec:15:8e:c7:f0:39:48:e4:0f:35:21:25:e4:50:c9:1c:f9:
         82:9d:67:43:a2:70:a8:1c:f1:1a:3a:1b:fa:7b:69:af:cd:ec:
         77:7c:c4:3e:ad:2c:f3:67:9c:48:72:7a:6e:da:24:b3:40:bf:
         d6:45:c8:b0:72:1d:40:dd:0e:f6:db:d0:6d:0a:b8:5b:12:f4:
         a5:db:0d:0a:c6:6d:31:f4:64:69:0d:88:54:07:19:67:ca:c4:
         3e:b0:07:6b:4a:53:d5:2e:67:1f:23:f6:7d:ad:0e:5b:e6:7a:
         00:7d:56:70:68:99:12:f8:40:ee:d5:2a:ab:0e:36:30:23:a9:
         09:d6:63:97:ae:78:a3:40:c1:f9:aa:40:d0:b7:e6:35:32:f7:
         d2:a4:f4:2d:cf:99:29:b4:7e:64:9f:5c:e9:ee:ba:01:8f:c3:
         27:69:ce:d7:65:5c:f7:cb:bd:d5:3e:0f:31:94:3f:b9:eb:b0:
         39:32:26:e5:a7:66:16:bc:2b:86:2f:87:b5:39:d7:86:a4:63:
         c1:85:5e:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:38 2024 by rpki-client on console-ams.rpki-client.org