Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zqz0ADYV86pI7bhmLlJzoWRI3n4.roa
File:                     zqz0ADYV86pI7bhmLlJzoWRI3n4.roa (raw, json)
Hash identifier:          G+24rcp5CUrN1ra/IAibBhiYBLnk93lDh6RFfgle/3o=
Subject key identifier:   CE:AC:F4:00:36:15:F3:AA:48:ED:B8:66:2E:52:73:A1:64:48:DE:7E
Certificate issuer:       /CN=EB675F938C85021374CAB1E1AF5099319B110B07
Certificate serial:       21A7
Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zqz0ADYV86pI7bhmLlJzoWRI3n4.roa
Signing time:             Fri 25 Nov 2022 04:40:10 +0000
ROA not before:           Fri 25 Nov 2022 04:40:10 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     38841
IP address blocks:        118.233.156.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 8615 (0x21a7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07
        Validity
            Not Before: Nov 25 04:40:10 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=CEACF4003615F3AA48EDB8662E5273A16448DE7E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:f1:29:9c:a9:d8:5f:96:85:86:93:02:a8:3c:ee:
                    b8:41:29:bc:4e:c8:a5:00:07:24:b7:86:5e:45:be:
                    6f:8c:d7:04:c7:4c:ba:96:7d:8e:bf:e7:c2:4a:63:
                    65:c1:79:99:1f:c4:8f:8c:c9:f2:4f:e5:be:53:0a:
                    69:3e:94:52:0b:85:8c:97:14:fa:06:4f:11:72:0b:
                    36:20:65:a4:59:d1:8f:3f:8c:a8:f1:ba:83:9c:7f:
                    8e:4f:d6:3a:dd:6e:79:b2:61:c7:55:41:7e:62:59:
                    3d:0a:2f:2d:02:2c:6c:60:44:50:d5:9d:f3:7e:b4:
                    b8:99:34:6e:13:89:c6:7c:48:0d:24:5d:86:db:1f:
                    c3:62:6f:9f:04:41:dc:b3:1c:ec:f7:b4:99:dc:30:
                    42:d4:ad:e2:77:f7:d3:97:12:30:c4:18:a6:4a:6e:
                    06:81:01:e1:d5:d6:e4:6c:29:05:ed:87:46:d9:0a:
                    66:dd:51:a4:02:18:64:11:d1:27:fa:f4:ee:34:d0:
                    56:c4:32:e7:8b:99:5f:d5:4a:40:40:79:b3:ba:bd:
                    5a:2a:d3:d9:d4:62:0d:fe:8d:3b:f9:9d:25:fb:ac:
                    c4:14:df:79:05:cc:e6:0a:a2:74:62:2b:03:a6:14:
                    ba:a9:5e:09:8d:76:eb:1f:2a:0d:34:be:34:12:22:
                    db:27
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:AC:F4:00:36:15:F3:AA:48:ED:B8:66:2E:52:73:A1:64:48:DE:7E
            X509v3 Authority Key Identifier:
                keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zqz0ADYV86pI7bhmLlJzoWRI3n4.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  118.233.156.0/22

    Signature Algorithm: sha256WithRSAEncryption
         6e:2a:12:6a:3e:3b:df:ab:9f:62:f4:73:9f:60:00:c9:b8:83:
         92:03:a0:c6:a2:95:5c:0a:dd:92:7b:50:d9:b3:23:ea:bb:a1:
         ba:80:b0:58:64:f1:9b:ca:a9:90:d2:3d:aa:b4:7a:12:93:16:
         e6:61:f4:c2:84:15:9d:37:ee:13:f7:46:d8:f1:3f:29:f6:bd:
         fc:d1:d1:89:3d:a3:7d:a1:07:ff:bd:f4:9b:a7:8b:7b:5d:ba:
         70:57:0a:9e:c5:f6:8b:0c:fe:7c:45:c5:46:21:93:aa:90:74:
         e2:9a:9c:02:92:6c:a6:36:1a:bd:99:36:23:1e:dc:22:b1:b4:
         50:5a:e8:02:8e:8f:4d:10:84:38:61:fe:9a:58:da:5d:ba:38:
         01:69:7b:6f:76:86:14:8e:04:0e:42:ae:e4:a4:34:c8:91:ef:
         ed:4a:e0:a4:04:87:28:89:68:6a:59:2b:28:d7:31:6e:90:f5:
         fc:6a:3a:3d:7c:62:e0:fe:78:d7:22:fb:9d:9c:bd:f3:54:33:
         8f:8c:69:8d:24:58:48:2e:ad:3c:e9:76:0d:65:80:18:cf:78:
         b8:63:1d:03:2c:1c:0c:1d:46:16:bc:a5:8c:6f:e0:16:59:c2:
         c3:a9:9e:0b:3d:fd:70:10:bb:ea:14:b6:3e:3d:67:86:25:b1:
         1b:9a:53:84
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICIacwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2
NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMjExMjUw
NDQwMTBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKENFQUNGNDAwMzYxNUYz
QUE0OEVEQjg2NjJFNTI3M0ExNjQ0OERFN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDxKZyp2F+WhYaTAqg87rhBKbxOyKUAByS3hl5Fvm+M1wTHTLqW
fY6/58JKY2XBeZkfxI+MyfJP5b5TCmk+lFILhYyXFPoGTxFyCzYgZaRZ0Y8/jKjx
uoOcf45P1jrdbnmyYcdVQX5iWT0KLy0CLGxgRFDVnfN+tLiZNG4TicZ8SA0kXYbb
H8Nib58EQdyzHOz3tJncMELUreJ399OXEjDEGKZKbgaBAeHV1uRsKQXth0bZCmbd
UaQCGGQR0Sf69O400FbEMueLmV/VSkBAebO6vVoq09nUYg3+jTv5nSX7rMQU33kF
zOYKonRiKwOmFLqpXgmNdusfKg00vjQSItsnAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUzqz0ADYV86pI7bhmLlJzoWRI3n4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh
r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP
LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3pxejBBRFlWODZwSTdiaG1M
bEp6b1dSSTNuNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2
6ZwwDQYJKoZIhvcNAQELBQADggEBAG4qEmo+O9+rn2L0c59gAMm4g5IDoMailVwK
3ZJ7UNmzI+q7obqAsFhk8ZvKqZDSPaq0ehKTFuZh9MKEFZ037hP3RtjxPyn2vfzR
0Yk9o32hB/+99Juni3tdunBXCp7F9osM/nxFxUYhk6qQdOKanAKSbKY2Gr2ZNiMe
3CKxtFBa6AKOj00QhDhh/ppY2l26OAFpe292hhSOBA5CruSkNMiR7+1K4KQEhyiJ
aGpZKyjXMW6Q9fxqOj18YuD+eNci+52cvfNUM4+MaY0kWEgurTzpdg1lgBjPeLhj
HQMsHAwdRha8pYxv4BZZwsOpngs9/XAQu+oUtj49Z4YlsRuaU4Q=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:01 2024 by rpki-client on console-fra.rpki-client.org