Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNTT/d_2pG1Nfa_svuxmgMNUlRUH-lsw.roa
File:                     d_2pG1Nfa_svuxmgMNUlRUH-lsw.roa (raw, json)
Hash identifier:          4lV3x4yeoEi49+IZlyBP1tDBNJdcf37B6yTNUurNYcI=
Subject key identifier:   77:FD:A9:1B:53:5F:6B:FB:2F:BB:19:A0:30:D5:25:45:41:FE:96:CC
Certificate issuer:       /CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
Certificate serial:       097E
Authority key identifier: 9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/d_2pG1Nfa_svuxmgMNUlRUH-lsw.roa
Signing time:             Wed 29 Sep 2021 02:53:08 +0000
ROA not before:           Wed 29 Sep 2021 02:53:08 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     18018
IP address blocks:        122.255.93.112/28 maxlen: 28

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2430 (0x97e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=9E2697FA70252F83F41D121EC0B5CB458B6FF214
        Validity
            Not Before: Sep 29 02:53:08 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=77FDA91B535F6BFB2FBB19A030D5254541FE96CC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c1:a9:83:7a:5e:6f:4e:c8:fa:b1:f8:8b:db:37:
                    90:c0:e4:f2:a2:a3:ed:77:6f:8b:61:0f:7a:0d:6a:
                    90:a8:ca:04:bc:be:c8:d7:87:62:fc:49:17:2e:5f:
                    ed:78:49:f7:c0:6c:7c:4e:da:b8:40:b8:16:06:a8:
                    d9:16:e7:25:22:02:56:14:75:6c:1c:a5:10:a2:cc:
                    f7:8b:65:9a:83:83:af:42:e9:bc:a2:64:79:61:ca:
                    c7:c3:fd:0a:2b:97:95:00:74:44:4b:ce:71:02:e9:
                    da:31:d5:0f:11:74:0a:08:40:2a:77:2c:c7:32:60:
                    bc:3d:95:0f:e2:66:33:06:d3:9f:3a:7e:67:51:31:
                    d5:f6:f1:b3:e4:ed:b5:f0:49:74:79:7a:af:b5:b1:
                    90:ab:be:3d:ef:1e:d6:97:8f:00:82:1b:e6:68:5c:
                    78:b4:d7:c9:27:64:86:d8:2f:1b:fc:c5:73:b2:14:
                    2e:ae:ad:99:4e:d1:9d:52:45:42:b2:46:85:ca:1c:
                    f7:b1:2f:28:16:3d:97:ed:3f:5e:fe:c7:fd:de:30:
                    9f:36:6d:cd:66:0d:0b:ea:b2:27:c4:bd:c1:90:21:
                    b7:d6:b7:b4:3e:cc:75:d3:30:2d:5c:94:36:67:a7:
                    86:97:00:6b:56:14:91:c9:94:06:66:c7:11:d2:df:
                    5c:e9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                77:FD:A9:1B:53:5F:6B:FB:2F:BB:19:A0:30:D5:25:45:41:FE:96:CC
            X509v3 Authority Key Identifier:
                keyid:9E:26:97:FA:70:25:2F:83:F4:1D:12:1E:C0:B5:CB:45:8B:6F:F2:14

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/niaX-nAlL4P0HRIewLXLRYtv8hQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/niaX-nAlL4P0HRIewLXLRYtv8hQ.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNTT/d_2pG1Nfa_svuxmgMNUlRUH-lsw.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  122.255.93.112/28

    Signature Algorithm: sha256WithRSAEncryption
         80:0e:00:2b:39:5d:8f:b6:c0:48:d2:c7:36:a3:26:40:ff:b3:
         d5:6d:a1:8e:8b:f1:56:ef:22:05:51:65:9e:7c:61:f7:6e:3d:
         f2:2e:d3:4a:ca:ed:66:a9:34:15:f9:2f:ce:c6:30:bd:6c:05:
         ee:00:ce:37:d6:94:37:70:4d:1a:69:9e:56:7a:b3:91:58:54:
         7d:37:e3:cb:99:c6:ea:d3:88:d1:fc:62:7c:19:06:7b:6f:c5:
         fc:ab:7a:bd:85:40:1e:05:db:2c:d6:16:c9:24:09:f0:20:4f:
         88:77:a6:0b:8c:13:de:27:0f:c8:2d:27:a8:86:8d:41:66:38:
         df:b5:b2:28:1c:c0:07:d6:90:c3:54:c5:e8:cf:51:d4:56:d3:
         bd:fb:71:bf:4c:4e:c4:a0:17:5d:16:e7:03:27:51:82:fb:66:
         97:7c:7d:84:6b:a8:fd:f1:1e:8a:30:78:f8:be:c3:23:7f:9b:
         3b:d4:bf:29:99:ee:34:3f:d3:c8:53:be:fd:f6:ff:9c:22:dd:
         56:51:01:3c:a0:a8:a5:fe:ac:0c:02:85:0f:c5:e8:d0:61:a5:
         46:45:9c:70:a4:a4:ba:0a:e3:71:0a:de:cc:ec:ab:df:74:4c:
         63:ba:f9:56:2a:5c:e7:6d:2b:cd:fc:73:72:3a:e5:98:9b:f9:
         1b:a5:08:66
-----BEGIN CERTIFICATE-----
MIIE0TCCA7mgAwIBAgICCX4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUUy
Njk3RkE3MDI1MkY4M0Y0MUQxMjFFQzBCNUNCNDU4QjZGRjIxNDAeFw0yMTA5Mjkw
MjUzMDhaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDc3RkRBOTFCNTM1RjZC
RkIyRkJCMTlBMDMwRDUyNTQ1NDFGRTk2Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDBqYN6Xm9OyPqx+IvbN5DA5PKio+13b4thD3oNapCoygS8vsjX
h2L8SRcuX+14SffAbHxO2rhAuBYGqNkW5yUiAlYUdWwcpRCizPeLZZqDg69C6byi
ZHlhysfD/Qorl5UAdERLznEC6dox1Q8RdAoIQCp3LMcyYLw9lQ/iZjMG0586fmdR
MdX28bPk7bXwSXR5eq+1sZCrvj3vHtaXjwCCG+ZoXHi018knZIbYLxv8xXOyFC6u
rZlO0Z1SRUKyRoXKHPexLygWPZftP17+x/3eMJ82bc1mDQvqsifEvcGQIbfWt7Q+
zHXTMC1clDZnp4aXAGtWFJHJlAZmxxHS31zpAgMBAAGjggHtMIIB6TAdBgNVHQ4E
FgQUd/2pG1Nfa/svuxmgMNUlRUH+lswwHwYDVR0jBBgwFoAUniaX+nAlL4P0HRIe
wLXLRYtv8hQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg
TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOVFQv
bmlhWC1uQWxMNFAwSFJJZXdMWExSWXR2OGhRLmNybDBgBggrBgEFBQcBAQRUMFIw
UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND
QS9uaWFYLW5BbEw0UDBIUklld0xYTFJZdHY4aFEuY2VyMA4GA1UdDwEB/wQEAwIH
gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh
LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05UVC9kXzJwRzFOZmFfc3Z1eG1nTU5V
bFJVSC1sc3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv
cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUEev9d
cDANBgkqhkiG9w0BAQsFAAOCAQEAgA4AKzldj7bASNLHNqMmQP+z1W2hjovxVu8i
BVFlnnxh92498i7TSsrtZqk0FfkvzsYwvWwF7gDON9aUN3BNGmmeVnqzkVhUfTfj
y5nG6tOI0fxifBkGe2/F/Kt6vYVAHgXbLNYWySQJ8CBPiHemC4wT3icPyC0nqIaN
QWY437WyKBzAB9aQw1TF6M9R1FbTvftxv0xOxKAXXRbnAydRgvtml3x9hGuo/fEe
ijB4+L7DI3+bO9S/KZnuND/TyFO+/fb/nCLdVlEBPKCopf6sDAKFD8Xo0GGlRkWc
cKSkugrjcQrezOyr33RMY7r5Vipc520rzfxzcjrlmJv5G6UIZg==
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:44 2024 by rpki-client on console-ams.rpki-client.org