Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GEPN7HXsKaPyrjZ9AF6da4jMEis.roa
File:                     GEPN7HXsKaPyrjZ9AF6da4jMEis.roa (raw, json)
Hash identifier:          sHgAuaJKwScN9gY0ln1cHRGWtUE3pt+Zyel+zViXdPY=
Subject key identifier:   18:43:CD:EC:75:EC:29:A3:F2:AE:36:7D:00:5E:9D:6B:88:CC:12:2B
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1213
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GEPN7HXsKaPyrjZ9AF6da4jMEis.roa
Signing time:             Wed 29 Sep 2021 02:54:11 +0000
ROA not before:           Wed 29 Sep 2021 02:54:11 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     24164
IP address blocks:        119.77.144.0/20 maxlen: 20

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4627 (0x1213)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 29 02:54:11 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=1843CDEC75EC29A3F2AE367D005E9D6B88CC122B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e5:b4:3d:59:5d:4b:1f:30:df:b9:07:4b:c7:0e:
                    00:ae:8d:4c:4f:cd:54:d0:12:f6:ed:ac:20:45:6a:
                    58:81:2d:40:34:ba:36:d9:cd:a9:f9:60:fd:42:67:
                    42:39:97:56:e4:51:da:1c:03:f7:cd:1e:a5:94:57:
                    77:00:86:d4:be:40:18:59:92:01:a1:b8:84:f2:65:
                    5f:41:61:a2:5e:34:34:3a:5a:59:08:10:75:4c:6d:
                    9b:0a:14:60:ff:13:a4:4c:f2:73:0b:2a:87:54:e9:
                    37:a6:6b:4c:9a:dc:62:a9:65:c3:d5:03:b6:78:50:
                    62:bd:93:e6:e5:ef:b7:be:18:92:31:6f:d4:15:43:
                    7b:28:bc:85:cd:cd:b5:b4:57:2d:6e:82:e9:24:0c:
                    61:d2:31:2d:c4:b8:f2:fb:5f:57:51:e0:2f:b0:bd:
                    99:25:4a:1d:8f:4d:83:cb:db:f0:cf:bf:fe:5d:37:
                    48:26:9a:70:85:d4:1d:7c:1a:a1:8f:0f:6c:a1:0b:
                    23:4d:4c:3d:7c:7e:a9:cc:ad:7a:37:86:27:de:e3:
                    62:3f:fb:ca:ab:6c:fb:0d:e5:e1:4c:20:a7:e2:59:
                    39:0c:d8:4c:e0:1a:4e:8e:cf:79:d4:7d:95:4a:a6:
                    14:5e:2d:c0:22:44:86:f5:05:47:d8:02:39:25:82:
                    a3:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                18:43:CD:EC:75:EC:29:A3:F2:AE:36:7D:00:5E:9D:6B:88:CC:12:2B
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GEPN7HXsKaPyrjZ9AF6da4jMEis.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  119.77.144.0/20

    Signature Algorithm: sha256WithRSAEncryption
         65:ea:b7:4d:71:06:5d:4e:6c:05:6e:b8:13:ca:cd:c7:c7:d0:
         ba:36:40:fa:8b:e9:65:f8:5a:09:9a:9b:01:83:16:42:be:e3:
         52:25:4e:80:05:e6:21:ac:d9:2f:57:8c:de:2b:3f:a5:37:d7:
         7a:b4:59:31:23:d1:f8:99:50:bc:d0:4b:46:be:ba:9a:a0:30:
         bc:62:09:bd:0d:38:1a:a7:0a:6c:74:48:e5:09:3f:83:e2:b2:
         31:15:79:52:30:22:95:23:1a:39:5f:00:8b:b8:b7:9c:a9:98:
         ec:14:21:fd:72:c0:9b:bb:e0:c1:ed:ff:0f:5a:5f:20:c3:fc:
         b4:7f:2e:22:44:e4:a6:cd:7b:6f:7c:61:ca:9f:ef:3c:e4:8b:
         ff:eb:aa:c1:89:5d:06:52:2a:1a:b5:3b:7f:87:e7:eb:27:ef:
         61:b1:3a:ba:16:5f:4a:33:eb:20:95:43:1c:3b:90:de:f2:cc:
         df:6e:84:f4:76:79:40:54:19:34:69:61:14:de:5e:58:86:b9:
         e6:4a:a8:8f:71:94:f7:30:73:bb:14:d9:df:5a:cc:05:14:98:
         3c:cd:43:f2:cc:d6:83:25:fb:5f:ed:1a:27:b6:da:bd:b5:38:
         64:67:a8:aa:c3:ac:1b:7f:ed:ac:76:9a:d3:ae:b3:9e:b3:22:
         82:57:9c:48
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEhMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0MTFaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKDE4NDNDREVDNzVFQzI5
QTNGMkFFMzY3RDAwNUU5RDZCODhDQzEyMkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDltD1ZXUsfMN+5B0vHDgCujUxPzVTQEvbtrCBFaliBLUA0ujbZ
zan5YP1CZ0I5l1bkUdocA/fNHqWUV3cAhtS+QBhZkgGhuITyZV9BYaJeNDQ6WlkI
EHVMbZsKFGD/E6RM8nMLKodU6Tema0ya3GKpZcPVA7Z4UGK9k+bl77e+GJIxb9QV
Q3sovIXNzbW0Vy1ugukkDGHSMS3EuPL7X1dR4C+wvZklSh2PTYPL2/DPv/5dN0gm
mnCF1B18GqGPD2yhCyNNTD18fqnMrXo3hife42I/+8qrbPsN5eFMIKfiWTkM2Ezg
Gk6Oz3nUfZVKphReLcAiRIb1BUfYAjklgqM1AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUGEPN7HXsKaPyrjZ9AF6da4jMEiswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0dFUE43SFhzS2FQeXJqWjlB
RjZkYTRqTUVpcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR3
TZAwDQYJKoZIhvcNAQELBQADggEBAGXqt01xBl1ObAVuuBPKzcfH0Lo2QPqL6WX4
WgmamwGDFkK+41IlToAF5iGs2S9XjN4rP6U313q0WTEj0fiZULzQS0a+upqgMLxi
Cb0NOBqnCmx0SOUJP4PisjEVeVIwIpUjGjlfAIu4t5ypmOwUIf1ywJu74MHt/w9a
XyDD/LR/LiJE5KbNe298Ycqf7zzki//rqsGJXQZSKhq1O3+H5+sn72GxOroWX0oz
6yCVQxw7kN7yzN9uhPR2eUBUGTRpYRTeXliGueZKqI9xlPcwc7sU2d9azAUUmDzN
Q/LM1oMl+1/tGie22r21OGRnqKrDrBt/7ax2mtOus56zIoJXnEg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:02 2024 by rpki-client on console-fra.rpki-client.org