Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/shgIfWf8q3XUTQqLZgPL85oS_tI.roa
File:                     shgIfWf8q3XUTQqLZgPL85oS_tI.roa (raw, json)
Hash identifier:          wf07d//lFavgPk7dWJCa6qElyegUwGLfX14CizyOXTY=
Subject key identifier:   B2:18:08:7D:67:FC:AB:75:D4:4D:0A:8B:66:03:CB:F3:9A:12:FE:D2
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1250
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/shgIfWf8q3XUTQqLZgPL85oS_tI.roa
Signing time:             Wed 29 Sep 2021 02:54:26 +0000
ROA not before:           Wed 29 Sep 2021 02:54:26 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     24163
IP address blocks:        119.77.132.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4688 (0x1250)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 29 02:54:26 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=B218087D67FCAB75D44D0A8B6603CBF39A12FED2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b3:e9:fc:42:40:59:aa:36:00:84:81:57:6d:94:
                    47:e6:21:53:55:57:40:8d:32:9f:02:2d:16:91:be:
                    db:86:da:4a:01:72:43:79:ec:f2:cb:65:3c:37:76:
                    52:ed:47:ca:f2:41:b0:b4:0a:ec:d0:22:b8:e3:b0:
                    97:01:22:d2:fb:03:a8:18:fa:56:43:cc:a2:cd:d9:
                    ec:61:84:dc:70:d1:b3:db:d8:9b:2d:6a:22:77:aa:
                    b3:e5:fc:b0:36:83:25:70:88:6b:50:07:bc:46:e8:
                    fe:70:41:ec:49:78:83:19:3c:73:5b:2f:8b:21:88:
                    84:e4:bc:ce:18:c8:f2:73:58:1e:76:04:f0:5d:a6:
                    9c:a5:10:0f:cc:84:2d:d3:f5:06:c6:eb:ae:98:f9:
                    a1:31:2b:d8:ab:36:d4:35:7a:d4:26:9f:3b:42:1e:
                    51:09:1b:46:1b:c8:e2:0d:26:49:ec:fd:3e:aa:55:
                    67:1f:d2:a3:d3:9d:e7:d3:a9:6d:44:89:6b:fc:09:
                    03:02:ac:eb:1a:6a:f1:b6:71:42:bb:83:0a:63:e2:
                    aa:a4:cc:eb:e0:40:d0:84:7a:5d:f8:7c:20:3d:e6:
                    9a:16:c1:d4:b8:0d:50:fc:4d:fc:08:53:ad:5c:57:
                    93:37:a6:93:f6:eb:f6:83:e8:ba:72:39:30:b5:77:
                    42:b7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B2:18:08:7D:67:FC:AB:75:D4:4D:0A:8B:66:03:CB:F3:9A:12:FE:D2
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/shgIfWf8q3XUTQqLZgPL85oS_tI.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  119.77.132.0/22

    Signature Algorithm: sha256WithRSAEncryption
         08:27:e6:9d:b1:ee:9a:83:9d:10:02:ef:5e:bd:05:6d:b8:c2:
         77:ef:bb:4f:a1:70:bb:c4:d3:7c:68:19:9a:a1:78:cd:c4:6c:
         86:e5:82:d4:c8:6c:47:79:c9:af:8a:ee:23:0b:50:24:8d:bd:
         0f:4f:ba:81:26:49:92:5d:92:d9:94:9c:aa:e4:ba:29:ce:3d:
         44:24:d2:64:18:8c:a6:e8:2a:d7:fd:94:aa:cc:0e:b7:e3:41:
         65:6d:38:fd:38:f4:63:c7:7a:b2:6e:fb:e1:3a:5f:cb:96:b6:
         d5:82:de:c5:0d:1a:8d:92:ed:99:bd:68:57:9f:f3:e1:d6:dd:
         7a:3d:a3:53:b1:03:f7:ac:5b:c5:07:a7:3d:fb:29:41:39:32:
         ea:75:4f:40:6e:a9:87:9c:99:7b:c5:c3:03:4a:5a:fa:1a:1b:
         f5:d0:5b:f5:fe:df:8b:73:98:4b:14:4c:6b:88:74:a1:19:41:
         88:83:d5:24:4e:d5:c0:0a:5f:e2:0c:15:78:80:ed:3a:be:34:
         6d:1c:84:d4:53:91:b1:34:fb:f1:dc:10:b7:1d:93:bc:6e:91:
         51:21:0a:b7:45:55:ee:94:a0:f8:ba:88:33:81:39:af:33:ed:
         90:b3:49:9e:42:7e:7f:3b:88:46:e0:16:bc:ad:6a:b2:71:a9:
         f5:b6:57:ea
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICElAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0MjZaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEIyMTgwODdENjdGQ0FC
NzVENDREMEE4QjY2MDNDQkYzOUExMkZFRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCz6fxCQFmqNgCEgVdtlEfmIVNVV0CNMp8CLRaRvtuG2koBckN5
7PLLZTw3dlLtR8ryQbC0CuzQIrjjsJcBItL7A6gY+lZDzKLN2exhhNxw0bPb2Jst
aiJ3qrPl/LA2gyVwiGtQB7xG6P5wQexJeIMZPHNbL4shiITkvM4YyPJzWB52BPBd
ppylEA/MhC3T9QbG666Y+aExK9irNtQ1etQmnztCHlEJG0YbyOINJkns/T6qVWcf
0qPTnefTqW1EiWv8CQMCrOsaavG2cUK7gwpj4qqkzOvgQNCEel34fCA95poWwdS4
DVD8TfwIU61cV5M3ppP26/aD6LpyOTC1d0K3AgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUshgIfWf8q3XUTQqLZgPL85oS/tIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3NoZ0lmV2Y4cTNYVVRRcUxa
Z1BMODVvU190SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ3
TYQwDQYJKoZIhvcNAQELBQADggEBAAgn5p2x7pqDnRAC7169BW24wnfvu0+hcLvE
03xoGZqheM3EbIblgtTIbEd5ya+K7iMLUCSNvQ9PuoEmSZJdktmUnKrkuinOPUQk
0mQYjKboKtf9lKrMDrfjQWVtOP049GPHerJu++E6X8uWttWC3sUNGo2S7Zm9aFef
8+HW3Xo9o1OxA/esW8UHpz37KUE5Mup1T0BuqYecmXvFwwNKWvoaG/XQW/X+34tz
mEsUTGuIdKEZQYiD1SRO1cAKX+IMFXiA7Tq+NG0chNRTkbE0+/HcELcdk7xukVEh
CrdFVe6UoPi6iDOBOa8z7ZCzSZ5Cfn87iEbgFrytarJxqfW2V+o=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:50 2024 by rpki-client on console-ams.rpki-client.org