Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GoKoc35Y9xhWYfbPZeNwPSgchuo.roa
File:                     GoKoc35Y9xhWYfbPZeNwPSgchuo.roa (raw, json)
Hash identifier:          G5a4QdSfDrJnW67cCFkK3VYaikILUEsMyKhZIsIlZxk=
Subject key identifier:   1A:82:A8:73:7E:58:F7:18:56:61:F6:CF:65:E3:70:3D:28:1C:86:EA
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       14FE
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GoKoc35Y9xhWYfbPZeNwPSgchuo.roa
Signing time:             Thu 15 Sep 2022 02:36:05 +0000
ROA not before:           Thu 15 Sep 2022 02:36:05 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24163
IP address blocks:        49.158.212.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 5374 (0x14fe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 15 02:36:05 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=1A82A8737E58F7185661F6CF65E3703D281C86EA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c2:4f:ac:f9:3b:62:34:61:6c:11:f6:b2:c7:29:
                    6a:08:b2:95:5b:3e:2b:26:87:f1:b5:22:ef:f0:05:
                    c6:28:b8:dc:ed:06:78:c1:e9:5e:32:01:c8:5f:61:
                    ad:9b:55:85:a4:a8:00:79:b9:e9:d2:99:46:df:04:
                    af:c7:50:27:51:07:e5:8f:6d:ef:da:32:ee:e7:1c:
                    a8:ea:9f:b7:ec:c9:10:0e:e3:9b:87:a9:08:0c:2b:
                    f5:50:11:b1:e0:38:f8:69:a7:08:5c:39:9a:8f:69:
                    44:80:a7:f1:a5:b6:ec:01:e8:09:07:3c:e2:e0:7f:
                    b7:0e:f2:d1:93:e3:70:d0:a5:60:14:b2:19:0d:e8:
                    dc:71:3e:aa:b3:78:58:5d:ad:fd:2e:a8:93:d2:4a:
                    60:ba:9c:97:e6:42:c0:da:02:d9:51:59:04:7d:e0:
                    c7:91:39:86:c7:e8:ea:70:ba:51:9a:b3:0b:b2:a0:
                    14:e2:42:f9:b1:9f:b1:40:c6:04:68:89:fe:fd:3f:
                    cb:5f:16:2e:60:d6:de:66:31:62:b5:9f:24:ea:d2:
                    6e:a4:2b:d6:76:37:93:50:ea:cd:e2:95:82:9e:ae:
                    c7:a9:65:57:92:90:4b:83:55:52:43:a7:2a:b1:b8:
                    32:c4:3c:13:11:c1:8f:a6:56:48:9e:da:2d:e1:d6:
                    b2:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1A:82:A8:73:7E:58:F7:18:56:61:F6:CF:65:E3:70:3D:28:1C:86:EA
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GoKoc35Y9xhWYfbPZeNwPSgchuo.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  49.158.212.0/22

    Signature Algorithm: sha256WithRSAEncryption
         95:e3:7a:5c:31:c6:d0:3d:41:12:dc:c2:89:1c:f6:e0:f9:67:
         21:1d:cf:ab:d1:12:60:39:87:1b:ed:71:dd:75:56:f8:04:a4:
         41:c5:e0:07:6f:80:bd:e1:3e:ff:bf:d2:bb:f9:10:ab:c6:72:
         47:ea:f4:32:ac:b7:46:6f:5d:08:02:33:4f:46:2e:b5:3a:2f:
         37:77:3b:4e:15:3a:70:22:2b:b3:c5:21:57:2e:ac:28:37:03:
         d0:ac:68:94:c2:70:a6:42:b0:b0:f9:46:7e:01:65:c7:9c:f8:
         03:d2:be:c1:32:a0:71:86:d3:1b:3c:9c:d6:75:be:f0:7a:d1:
         85:0c:52:c7:f0:ad:a8:65:29:05:7d:8a:d2:cd:6c:91:db:3d:
         2e:94:73:2c:a3:c5:f8:39:6d:ec:76:5a:99:9d:e8:d3:57:1f:
         5e:62:87:e3:2f:29:3d:8b:17:65:1c:43:06:8a:7e:fa:02:8f:
         39:77:e1:5e:51:bf:85:47:29:b9:f1:12:5e:eb:01:5e:52:b0:
         0e:bc:ef:4d:76:df:dd:e1:9d:96:f6:ca:df:43:17:d7:85:7c:
         18:b2:99:47:4e:84:83:ce:01:13:16:ae:02:5e:a9:94:0e:8f:
         cf:25:1e:df:86:92:91:8a:e0:60:10:11:65:e8:12:34:3e:73:
         b8:a6:31:0b
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICFP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjA5MTUw
MjM2MDVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDFBODJBODczN0U1OEY3
MTg1NjYxRjZDRjY1RTM3MDNEMjgxQzg2RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDCT6z5O2I0YWwR9rLHKWoIspVbPismh/G1Iu/wBcYouNztBnjB
6V4yAchfYa2bVYWkqAB5uenSmUbfBK/HUCdRB+WPbe/aMu7nHKjqn7fsyRAO45uH
qQgMK/VQEbHgOPhppwhcOZqPaUSAp/GltuwB6AkHPOLgf7cO8tGT43DQpWAUshkN
6NxxPqqzeFhdrf0uqJPSSmC6nJfmQsDaAtlRWQR94MeROYbH6OpwulGaswuyoBTi
Qvmxn7FAxgRoif79P8tfFi5g1t5mMWK1nyTq0m6kK9Z2N5NQ6s3ilYKersepZVeS
kEuDVVJDpyqxuDLEPBMRwY+mVkie2i3h1rK9AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUGoKoc35Y9xhWYfbPZeNwPSgchuowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0dvS29jMzVZOXhoV1lmYlBa
ZU53UFNnY2h1by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx
ntQwDQYJKoZIhvcNAQELBQADggEBAJXjelwxxtA9QRLcwokc9uD5ZyEdz6vREmA5
hxvtcd11VvgEpEHF4AdvgL3hPv+/0rv5EKvGckfq9DKst0ZvXQgCM09GLrU6Lzd3
O04VOnAiK7PFIVcurCg3A9CsaJTCcKZCsLD5Rn4BZcec+APSvsEyoHGG0xs8nNZ1
vvB60YUMUsfwrahlKQV9itLNbJHbPS6Ucyyjxfg5bex2Wpmd6NNXH15ih+MvKT2L
F2UcQwaKfvoCjzl34V5Rv4VHKbnxEl7rAV5SsA687012393hnZb2yt9DF9eFfBiy
mUdOhIPOARMWrgJeqZQOj88lHt+GkpGK4GAQEWXoEjQ+c7imMQs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:46 2024 by rpki-client on console-ams.rpki-client.org