Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oquAfDXkIhcwMtEez_rmql2BXYE.roa
File:                     oquAfDXkIhcwMtEez_rmql2BXYE.roa (raw, json)
Hash identifier:          kVYuM38YzntIOdwMpYvLvVbendULEKzPg1rHNETtLk0=
Subject key identifier:   A2:AB:80:7C:35:E4:22:17:30:32:D1:1E:CF:FA:E6:AA:5D:81:5D:81
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       18DD
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oquAfDXkIhcwMtEez_rmql2BXYE.roa
Signing time:             Sun 07 Feb 2021 12:54:33 +0000
ROA not before:           Sun 07 Feb 2021 12:54:33 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     9924
IP address blocks:        123.194.128.0/18 maxlen: 18

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6365 (0x18dd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Feb  7 12:54:33 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=A2AB807C35E422173032D11ECFFAE6AA5D815D81
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:eb:38:a7:71:ad:68:ce:05:70:4e:d0:7d:4f:fb:
                    6d:73:7e:47:71:41:eb:c9:80:57:76:1b:31:f8:7c:
                    a0:c4:97:9d:04:a2:4b:26:2d:2a:c2:fc:4f:f1:c5:
                    ff:5f:c8:2b:3c:3e:39:1f:2f:31:2e:39:14:9c:f8:
                    09:37:9a:ff:a4:c4:80:ef:3f:79:d0:08:3b:8e:ba:
                    23:39:72:8f:84:0c:fc:0a:dc:04:f7:aa:6b:bc:e1:
                    30:a1:e7:0f:dc:61:a6:8f:95:e3:11:b2:76:b8:0e:
                    02:ed:72:11:c2:a6:28:99:7b:60:40:ce:c3:90:f9:
                    9e:0c:4c:f2:2c:b6:84:77:49:7d:e9:42:5f:39:c2:
                    6f:1a:c9:40:91:dd:4a:89:a3:d5:a2:48:d6:89:7a:
                    12:bc:62:0f:d8:b6:1f:86:c8:ac:86:e1:db:f5:8c:
                    73:39:13:4b:e7:20:f7:b3:c8:ea:1e:b6:9c:3f:6f:
                    0e:86:27:fd:23:d1:fb:bc:ae:ad:42:f0:c0:83:99:
                    8f:b9:34:27:de:66:3c:d3:2b:8e:01:87:1a:74:c9:
                    e1:59:83:b8:4c:93:89:d8:c1:89:a0:ba:81:13:5f:
                    61:40:68:89:97:42:24:62:5c:3b:ea:66:80:b5:4c:
                    d9:f1:ac:21:e8:36:73:61:bb:4d:04:c1:62:36:f5:
                    f3:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                A2:AB:80:7C:35:E4:22:17:30:32:D1:1E:CF:FA:E6:AA:5D:81:5D:81
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oquAfDXkIhcwMtEez_rmql2BXYE.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  123.194.128.0/18

    Signature Algorithm: sha256WithRSAEncryption
         8f:e6:d6:6c:f0:c1:27:dc:6f:89:b2:16:ad:c8:80:1c:84:5d:
         22:34:ef:c0:a2:62:1d:af:d4:ea:68:a3:a6:92:c5:2a:7f:d2:
         a6:6d:89:80:17:51:af:c7:7b:99:26:a4:bf:4c:86:6d:cc:52:
         1a:6a:29:60:d3:a4:46:ea:e9:2a:89:5b:01:8b:4e:70:43:a9:
         93:e9:85:ee:de:e2:ee:db:13:ed:7e:09:c3:cd:d7:6f:a2:07:
         4f:0b:53:7f:88:ca:9f:30:bf:2e:79:0f:91:c1:22:7c:45:d4:
         ba:49:8d:63:32:7e:a2:20:92:68:d2:d7:87:78:ed:c7:43:b7:
         84:40:1d:3d:01:a4:60:ff:d5:61:36:c0:a9:7f:ed:35:9d:30:
         c1:93:e6:4c:95:51:fe:90:5a:53:87:05:69:fe:4b:3a:13:ef:
         d9:4f:a7:f7:13:2a:59:d2:7c:cc:2f:8b:4f:40:a2:49:4a:70:
         52:96:0b:84:6a:df:d3:96:66:9e:4f:d0:90:44:93:90:35:42:
         10:0c:74:05:d3:d0:34:5e:45:e0:b1:89:b1:fe:76:99:b5:b1:
         24:33:e0:ed:92:f1:93:df:f4:85:06:48:4a:bf:9a:68:06:a7:
         45:62:e1:5d:ea:79:71:6e:bf:a7:86:54:50:23:a2:78:64:0e:
         ac:64:d1:68
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICGN0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMTAyMDcx
MjU0MzNaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKEEyQUI4MDdDMzVFNDIy
MTczMDMyRDExRUNGRkFFNkFBNUQ4MTVEODEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDrOKdxrWjOBXBO0H1P+21zfkdxQevJgFd2GzH4fKDEl50Eoksm
LSrC/E/xxf9fyCs8PjkfLzEuORSc+Ak3mv+kxIDvP3nQCDuOuiM5co+EDPwK3AT3
qmu84TCh5w/cYaaPleMRsna4DgLtchHCpiiZe2BAzsOQ+Z4MTPIstoR3SX3pQl85
wm8ayUCR3UqJo9WiSNaJehK8Yg/Yth+GyKyG4dv1jHM5E0vnIPezyOoetpw/bw6G
J/0j0fu8rq1C8MCDmY+5NCfeZjzTK44Bhxp0yeFZg7hMk4nYwYmguoETX2FAaImX
QiRiXDvqZoC1TNnxrCHoNnNhu00EwWI29fO9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUoquAfDXkIhcwMtEez/rmql2BXYEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL29xdUFmRFhrSWhjd010RWV6
X3JtcWwyQlhZRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ7
woAwDQYJKoZIhvcNAQELBQADggEBAI/m1mzwwSfcb4myFq3IgByEXSI078CiYh2v
1Opoo6aSxSp/0qZtiYAXUa/He5kmpL9Mhm3MUhpqKWDTpEbq6SqJWwGLTnBDqZPp
he7e4u7bE+1+CcPN12+iB08LU3+Iyp8wvy55D5HBInxF1LpJjWMyfqIgkmjS14d4
7cdDt4RAHT0BpGD/1WE2wKl/7TWdMMGT5kyVUf6QWlOHBWn+SzoT79lPp/cTKlnS
fMwvi09AoklKcFKWC4Rq39OWZp5P0JBEk5A1QhAMdAXT0DReReCxibH+dpm1sSQz
4O2S8ZPf9IUGSEq/mmgGp0Vi4V3qeXFuv6eGVFAjonhkDqxk0Wg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:58 2024 by rpki-client on console-fra.rpki-client.org