Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/m8NiDtZkAlrtu0ciY7NFA4g9wpw.roa
File:                     m8NiDtZkAlrtu0ciY7NFA4g9wpw.roa (raw, json)
Hash identifier:          rqel84exs8FZPNYcNTiEmx8o7XY0iELTaBr/ZLOIzEo=
Subject key identifier:   9B:C3:62:0E:D6:64:02:5A:ED:BB:47:22:63:B3:45:03:88:3D:C2:9C
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       21EC
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/m8NiDtZkAlrtu0ciY7NFA4g9wpw.roa
Signing time:             Fri 25 Nov 2022 04:40:33 +0000
ROA not before:           Fri 25 Nov 2022 04:40:33 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        123.193.88.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8684 (0x21ec)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Nov 25 04:40:33 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=9BC3620ED664025AEDBB472263B34503883DC29C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:3d:78:c1:ae:bf:9a:74:c2:c9:c9:dd:01:d4:
                    97:06:65:fa:78:fa:2c:aa:82:ce:2e:83:16:74:a3:
                    ee:a5:1b:d5:88:c9:2f:83:4b:4b:1f:8a:15:56:ff:
                    a7:ce:a2:cf:ac:5a:2d:de:3a:3a:14:be:ee:3c:03:
                    2b:f8:ec:76:66:b8:da:f3:b6:76:ce:95:65:0e:9c:
                    c2:ec:28:eb:7f:1d:34:31:e7:da:7f:16:07:e2:07:
                    4f:f7:4e:d2:98:4f:21:11:03:5d:08:ff:87:7e:38:
                    87:7e:cf:08:62:d3:fe:a8:be:dd:72:2e:f7:a5:85:
                    e4:1e:ce:90:19:ca:75:86:6a:38:0e:c9:72:80:ee:
                    4c:2e:9d:af:1e:de:ed:83:6e:68:95:e8:db:c8:10:
                    bc:1d:4b:e1:0d:15:95:63:79:56:36:25:7e:24:a6:
                    46:5f:8a:c0:bb:82:38:a6:3b:b6:98:ae:93:f5:07:
                    32:f4:4f:c7:f7:82:32:2d:7f:c6:ca:3b:53:dc:d2:
                    63:12:81:9b:19:8f:fc:e2:fb:3b:8e:23:34:c9:4e:
                    bb:01:80:99:4d:aa:02:d3:d6:6c:c6:2b:79:d0:0e:
                    3c:67:03:00:db:33:70:99:9f:64:68:49:4b:d9:5e:
                    db:ba:c3:81:29:1b:c6:9b:f9:fe:df:0f:53:b6:22:
                    b1:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                9B:C3:62:0E:D6:64:02:5A:ED:BB:47:22:63:B3:45:03:88:3D:C2:9C
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/m8NiDtZkAlrtu0ciY7NFA4g9wpw.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.193.88.0/21

    Signature Algorithm: sha256WithRSAEncryption
         81:3d:2b:6b:f4:1d:f6:ee:5d:38:5f:74:19:0b:25:92:00:4e:
         1d:f6:be:ad:94:18:37:bd:0f:95:97:cf:ed:e5:3f:77:61:86:
         aa:e7:f0:3a:28:3a:f4:2c:40:7d:6c:ea:61:9d:e2:fa:2a:cf:
         4e:2b:b0:fb:fa:6d:ce:4d:a4:97:5d:75:c4:1a:42:d4:67:2e:
         00:85:10:f3:d5:3d:46:4b:00:15:44:9a:c1:6d:88:1e:b4:5e:
         1e:d6:0f:f5:6c:3a:64:7f:99:ee:25:ef:03:62:af:19:02:0a:
         6d:df:1b:82:ff:b7:61:07:2e:f7:ad:8b:ad:12:72:10:6d:fd:
         3e:e1:86:ff:02:21:ef:c1:3f:c5:8a:ca:c6:f4:66:56:d1:6a:
         3a:65:7a:ea:04:1a:29:e1:86:03:21:bb:73:0b:b8:66:c9:54:
         2b:95:19:6c:86:8b:29:85:01:2c:c3:ff:ee:2d:18:f7:7c:e2:
         3f:cc:eb:ce:73:e1:25:fe:45:1d:73:fc:c1:4a:07:93:f5:f9:
         19:bb:23:dc:fd:5f:cd:f5:59:5f:f1:c4:59:81:07:da:db:c3:
         dd:7b:72:a1:36:c3:a5:ab:19:54:66:84:ca:d8:0f:aa:35:f9:
         bd:82:cf:1d:c5:88:cc:eb:d6:da:cf:f7:89:56:0e:32:fa:ea:
         a5:a9:29:4a
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIewwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwMzNaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDlCQzM2MjBFRDY2NDAy
NUFFREJCNDcyMjYzQjM0NTAzODgzREMyOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDEPXjBrr+adMLJyd0B1JcGZfp4+iyqgs4ugxZ0o+6lG9WIyS+D
S0sfihVW/6fOos+sWi3eOjoUvu48Ayv47HZmuNrztnbOlWUOnMLsKOt/HTQx59p/
FgfiB0/3TtKYTyERA10I/4d+OId+zwhi0/6ovt1yLvelheQezpAZynWGajgOyXKA
7kwuna8e3u2DbmiV6NvIELwdS+ENFZVjeVY2JX4kpkZfisC7gjimO7aYrpP1BzL0
T8f3gjItf8bKO1Pc0mMSgZsZj/zi+zuOIzTJTrsBgJlNqgLT1mzGK3nQDjxnAwDb
M3CZn2RoSUvZXtu6w4EpG8ab+f7fD1O2IrEXAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUm8NiDtZkAlrtu0ciY7NFA4g9wpwwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL204TmlEdFprQWxydHUwY2lZ
N05GQTRnOXdwdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7
wVgwDQYJKoZIhvcNAQELBQADggEBAIE9K2v0HfbuXThfdBkLJZIATh32vq2UGDe9
D5WXz+3lP3dhhqrn8DooOvQsQH1s6mGd4voqz04rsPv6bc5NpJdddcQaQtRnLgCF
EPPVPUZLABVEmsFtiB60Xh7WD/VsOmR/me4l7wNirxkCCm3fG4L/t2EHLveti60S
chBt/T7hhv8CIe/BP8WKysb0ZlbRajpleuoEGinhhgMhu3MLuGbJVCuVGWyGiymF
ASzD/+4tGPd84j/M685z4SX+RR1z/MFKB5P1+Rm7I9z9X831WV/xxFmBB9rbw917
cqE2w6WrGVRmhMrYD6o1+b2Czx3FiMzr1trP94lWDjL66qWpKUo=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:39 2024 by rpki-client on console-ams.rpki-client.org