Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5yDuDOSQvj-rDL5bekudfumG2B4.roa
File:                     5yDuDOSQvj-rDL5bekudfumG2B4.roa (raw, json)
Hash identifier:          /s7qvxC6wRVAm2kjcMG9iwpn4T42TDM9XsxqOYP48N8=
Subject key identifier:   E7:20:EE:0C:E4:90:BE:3F:AB:0C:BE:5B:7A:4B:9D:7E:E9:86:D8:1E
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       14D0
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5yDuDOSQvj-rDL5bekudfumG2B4.roa
Signing time:             Thu 08 Sep 2022 03:56:25 +0000
ROA not before:           Thu 08 Sep 2022 03:56:25 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24164
IP address blocks:        119.77.144.0/20 maxlen: 23

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5328 (0x14d0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep  8 03:56:25 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=E720EE0CE490BE3FAB0CBE5B7A4B9D7EE986D81E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bd:36:35:d0:1d:78:61:b2:8e:26:24:b7:5e:25:
                    2d:6f:2c:02:11:5a:5a:11:93:4e:2e:83:94:02:a0:
                    ce:f2:3e:c4:f1:76:9c:ea:b5:8e:da:27:76:94:5c:
                    da:dc:e6:bf:1d:42:cb:f9:7f:61:29:ca:50:ea:e7:
                    59:80:09:d7:23:57:98:66:0b:93:03:87:94:6f:7d:
                    3a:46:d1:16:40:6f:e6:df:01:b1:58:57:59:b0:9e:
                    68:03:4c:9f:22:fa:f0:6f:2c:95:e2:04:6c:2b:46:
                    dc:f1:3a:1a:1c:e3:98:9d:dc:f5:6f:d8:be:fe:44:
                    7b:03:ae:73:4e:9d:f5:31:32:d4:d8:e8:62:be:e6:
                    22:c4:34:5d:13:99:1c:82:79:19:c2:14:56:38:d0:
                    3a:5d:7e:4f:f6:5e:a2:73:6e:f2:f7:a0:c8:40:4c:
                    cc:58:87:93:c3:07:bc:52:37:a7:9f:73:ae:92:4b:
                    64:db:75:0e:06:48:3b:0d:e9:a4:ca:64:fd:fd:99:
                    cf:18:99:51:e1:ac:c4:cc:ca:c9:11:b9:28:8c:d2:
                    85:1e:2a:5a:ca:f4:89:3c:92:19:de:9a:07:c5:b1:
                    d5:5c:d1:93:fe:8d:41:7c:c6:73:5d:5b:b7:ca:ed:
                    26:33:66:17:f5:14:e2:45:1e:c2:b6:e0:bc:04:36:
                    61:03
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E7:20:EE:0C:E4:90:BE:3F:AB:0C:BE:5B:7A:4B:9D:7E:E9:86:D8:1E
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5yDuDOSQvj-rDL5bekudfumG2B4.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  119.77.144.0/20

    Signature Algorithm: sha256WithRSAEncryption
         06:42:d8:06:17:84:f0:82:78:8f:b5:93:81:41:b9:2a:9f:d2:
         75:71:3a:9a:27:2e:c7:01:d1:79:d5:52:0a:35:38:c6:41:18:
         4c:ff:6c:66:87:f3:bc:c1:65:e9:51:88:9a:09:49:33:23:23:
         d8:cd:06:ef:9b:b0:41:bb:90:42:a1:53:b2:13:a1:80:16:80:
         8c:a6:20:7a:8e:a2:66:d5:40:c2:78:7e:93:03:7f:40:0c:2f:
         f5:ef:d7:99:d9:f9:77:e8:b7:cb:a4:9b:a8:13:2b:9b:4d:9c:
         28:5b:08:1f:b9:f8:8e:97:0f:99:26:87:46:c2:7a:9d:58:cc:
         66:0c:9a:5c:9f:d1:bf:c9:20:85:f5:27:a7:ec:2d:35:bc:f7:
         3e:60:62:a6:73:e4:54:2d:45:7e:03:be:2a:29:c8:79:b3:e6:
         f0:ec:fd:3c:5b:a0:80:32:33:9a:c2:e9:25:73:73:77:6b:15:
         9f:1a:d4:25:ea:79:81:70:4b:7a:93:37:56:f5:d9:c9:a7:12:
         af:34:12:e6:53:43:ac:72:f7:cf:3a:fe:25:ef:e2:03:cf:58:
         b7:84:18:69:1a:e0:2b:d4:00:1d:7c:9e:64:15:ba:3b:ee:e9:
         13:c1:86:f3:5c:aa:fa:b8:4d:17:11:3f:5e:79:1f:3d:bf:e1:
         62:86:b6:c0
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFNAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA5MDgw
MzU2MjVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEU3MjBFRTBDRTQ5MEJF
M0ZBQjBDQkU1QjdBNEI5RDdFRTk4NkQ4MUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC9NjXQHXhhso4mJLdeJS1vLAIRWloRk04ug5QCoM7yPsTxdpzq
tY7aJ3aUXNrc5r8dQsv5f2EpylDq51mACdcjV5hmC5MDh5RvfTpG0RZAb+bfAbFY
V1mwnmgDTJ8i+vBvLJXiBGwrRtzxOhoc45id3PVv2L7+RHsDrnNOnfUxMtTY6GK+
5iLENF0TmRyCeRnCFFY40Dpdfk/2XqJzbvL3oMhATMxYh5PDB7xSN6efc66SS2Tb
dQ4GSDsN6aTKZP39mc8YmVHhrMTMyskRuSiM0oUeKlrK9Ik8khnemgfFsdVc0ZP+
jUF8xnNdW7fK7SYzZhf1FOJFHsK24LwENmEDAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQU5yDuDOSQvj+rDL5bekudfumG2B4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzV5RHVET1NRdmotckRMNWJl
a3VkZnVtRzJCNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR3
TZAwDQYJKoZIhvcNAQELBQADggEBAAZC2AYXhPCCeI+1k4FBuSqf0nVxOponLscB
0XnVUgo1OMZBGEz/bGaH87zBZelRiJoJSTMjI9jNBu+bsEG7kEKhU7IToYAWgIym
IHqOombVQMJ4fpMDf0AML/Xv15nZ+Xfot8ukm6gTK5tNnChbCB+5+I6XD5kmh0bC
ep1YzGYMmlyf0b/JIIX1J6fsLTW89z5gYqZz5FQtRX4DviopyHmz5vDs/TxboIAy
M5rC6SVzc3drFZ8a1CXqeYFwS3qTN1b12cmnEq80EuZTQ6xy9886/iXv4gPPWLeE
GGka4CvUAB18nmQVujvu6RPBhvNcqvq4TRcRP155Hz2/4WKGtsA=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:45 2024 by rpki-client on console-ams.rpki-client.org