Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PhK5vyxxvkU46Gw8oQ0Dl0dpOQs.roa
File:                     PhK5vyxxvkU46Gw8oQ0Dl0dpOQs.roa (raw, json)
Hash identifier:          DNj5EAjnFPSGXHGy8msgarYHN7NxAdGxvqEtnlsyuy4=
Subject key identifier:   3E:12:B9:BF:2C:71:BE:45:38:E8:6C:3C:A1:0D:03:97:47:69:39:0B
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       17F8
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PhK5vyxxvkU46Gw8oQ0Dl0dpOQs.roa
Signing time:             Sat 22 Oct 2022 05:47:55 +0000
ROA not before:           Sat 22 Oct 2022 05:47:55 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     24164
IP address blocks:        180.218.64.0/21 maxlen: 21

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 6136 (0x17f8)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Oct 22 05:47:55 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=3E12B9BF2C71BE4538E86C3CA10D03974769390B
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9d:87:80:e9:a8:d1:02:ed:80:03:7e:b1:34:92:
                    ac:a0:6d:e8:12:e4:82:cf:b0:89:c9:c5:c0:68:dc:
                    75:eb:bd:fa:97:40:27:b2:7f:75:4f:09:c3:cb:db:
                    b9:61:fd:7b:56:de:c7:32:6e:20:54:cc:24:6e:cf:
                    cb:57:a5:41:d2:b9:ba:eb:d9:fb:69:5f:f3:d6:19:
                    bd:59:7b:dc:89:0f:a7:21:7d:8f:b7:b0:e3:26:28:
                    cf:d1:58:c7:da:08:06:b6:bb:72:80:b1:1c:d2:16:
                    b1:01:47:79:3d:00:33:b8:05:15:84:fd:e9:6c:53:
                    eb:3e:d0:b3:ea:f4:25:bf:62:d5:31:cf:f4:7d:e0:
                    06:a5:12:8d:86:d4:46:92:3e:a3:a5:64:e6:9a:d1:
                    d2:2b:42:47:e4:0a:32:20:6d:22:14:70:8e:be:dd:
                    df:33:c6:32:b8:5b:5f:d1:ef:c8:cc:7b:d0:73:9f:
                    3f:84:5f:e1:32:f0:48:11:78:b7:c7:b6:1a:09:97:
                    57:f6:3f:83:71:8b:de:af:4d:b3:76:9e:4f:61:b9:
                    99:7c:1d:c2:ce:a9:60:dc:68:69:31:c6:0d:21:03:
                    c4:f2:e5:8f:b7:d2:66:16:95:23:bb:09:e3:89:84:
                    d3:27:d9:cf:cc:e0:8d:87:d8:e4:8c:cd:d0:d1:ba:
                    82:e7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3E:12:B9:BF:2C:71:BE:45:38:E8:6C:3C:A1:0D:03:97:47:69:39:0B
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PhK5vyxxvkU46Gw8oQ0Dl0dpOQs.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  180.218.64.0/21

    Signature Algorithm: sha256WithRSAEncryption
         94:1f:9f:e2:47:ea:f4:4e:94:d7:6b:11:c7:d4:7f:44:48:81:
         79:28:c0:3a:39:f1:73:28:8c:13:97:67:39:3f:d3:51:16:a2:
         8b:aa:d1:8e:94:4b:0d:41:8c:a2:2b:1c:0c:f1:b9:c1:22:1f:
         44:40:f6:0e:bb:ab:92:5d:ce:9e:82:e5:5c:ad:e9:40:ab:f5:
         5e:0f:82:66:6f:e4:cc:c7:da:2f:e5:0f:53:a7:2d:80:1d:99:
         01:0a:d8:19:0b:d3:b5:d9:43:eb:b0:ef:68:c1:d0:7c:f0:cd:
         3b:b9:1e:fc:2d:12:a1:ed:1b:68:44:bc:ea:36:40:cb:6d:39:
         c7:d5:c4:a0:84:ac:fa:bf:9d:67:ba:55:c3:f3:96:59:0f:93:
         d2:6c:10:f1:c6:03:d2:2e:f5:57:bd:80:de:de:a0:4b:38:96:
         4f:f8:b6:40:ba:5b:7c:91:e7:c7:c5:75:df:41:9e:bc:2c:79:
         69:66:bf:41:dc:50:d4:f5:dc:aa:32:ba:c4:56:40:16:f3:52:
         09:62:8c:3f:69:6c:90:f2:f0:59:d2:bb:6a:3c:6c:6f:e6:79:
         36:b2:7f:11:ff:2d:9e:ac:2e:07:89:5f:98:c8:22:44:7e:37:
         4a:85:f5:ea:28:50:05:15:27:34:16:70:df:a6:c6:02:79:26:
         0a:12:3e:0b
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICF/gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMjEwMjIw
NTQ3NTVaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDNFMTJCOUJGMkM3MUJF
NDUzOEU4NkMzQ0ExMEQwMzk3NDc2OTM5MEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCdh4DpqNEC7YADfrE0kqygbegS5ILPsInJxcBo3HXrvfqXQCey
f3VPCcPL27lh/XtW3scybiBUzCRuz8tXpUHSubrr2ftpX/PWGb1Ze9yJD6chfY+3
sOMmKM/RWMfaCAa2u3KAsRzSFrEBR3k9ADO4BRWE/elsU+s+0LPq9CW/YtUxz/R9
4AalEo2G1EaSPqOlZOaa0dIrQkfkCjIgbSIUcI6+3d8zxjK4W1/R78jMe9Bznz+E
X+Ey8EgReLfHthoJl1f2P4Nxi96vTbN2nk9huZl8HcLOqWDcaGkxxg0hA8Ty5Y+3
0mYWlSO7CeOJhNMn2c/M4I2H2OSMzdDRuoLnAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUPhK5vyxxvkU46Gw8oQ0Dl0dpOQswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1BoSzV2eXh4dmtVNDZHdzhv
UTBEbDBkcE9Rcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0
2kAwDQYJKoZIhvcNAQELBQADggEBAJQfn+JH6vROlNdrEcfUf0RIgXkowDo58XMo
jBOXZzk/01EWoouq0Y6USw1BjKIrHAzxucEiH0RA9g67q5Jdzp6C5Vyt6UCr9V4P
gmZv5MzH2i/lD1OnLYAdmQEK2BkL07XZQ+uw72jB0HzwzTu5HvwtEqHtG2hEvOo2
QMttOcfVxKCErPq/nWe6VcPzllkPk9JsEPHGA9Iu9Ve9gN7eoEs4lk/4tkC6W3yR
58fFdd9BnrwseWlmv0HcUNT13KoyusRWQBbzUglijD9pbJDy8FnSu2o8bG/meTay
fxH/LZ6sLgeJX5jIIkR+N0qF9eooUAUVJzQWcN+mxgJ5JgoSPgs=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:47 2024 by rpki-client on console-ams.rpki-client.org