Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/swyS0FVI64J4KZFWnupSQoBIHOY.roa
File:                     swyS0FVI64J4KZFWnupSQoBIHOY.roa (raw, json)
Hash identifier:          S4D9FhabvOa47804/AIShikuIji98PEUd9teEpaBu0s=
Subject key identifier:   B3:0C:92:D0:55:48:EB:82:78:29:91:56:9E:EA:52:42:80:48:1C:E6
Certificate issuer:       /CN=08469E113701815993013E13E548A2B340E44E0A
Certificate serial:       1280
Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/swyS0FVI64J4KZFWnupSQoBIHOY.roa
Signing time:             Wed 29 Sep 2021 02:54:39 +0000
ROA not before:           Wed 29 Sep 2021 02:54:39 +0000
ROA not after:            Thu 29 Sep 2022 02:36:22 +0000
asID:                     24163
IP address blocks:        211.76.72.0/22 maxlen: 22

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4736 (0x1280)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=08469E113701815993013E13E548A2B340E44E0A
        Validity
            Not Before: Sep 29 02:54:39 2021 GMT
            Not After : Sep 29 02:36:22 2022 GMT
        Subject: CN=B30C92D05548EB82782991569EEA524280481CE6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d5:1c:fe:37:e3:5f:57:a0:8a:c9:f5:aa:87:55:
                    78:d2:24:f4:f4:b3:69:27:71:ba:2a:45:64:fe:83:
                    14:f6:a0:25:f9:ae:8e:40:28:8b:44:04:8c:2b:ad:
                    18:19:7a:d2:6a:a2:e8:28:e5:9f:8c:d0:7d:38:1d:
                    db:f5:29:b5:61:7a:01:53:b4:d3:cc:fb:e0:dd:4e:
                    75:a4:9c:0a:97:a7:2d:a8:e7:57:49:1e:4b:30:31:
                    41:f5:cc:d0:ce:88:20:ff:71:b5:da:b8:dc:f2:d0:
                    9c:00:a5:09:b8:12:d3:89:7a:6e:27:d7:63:a4:a1:
                    77:f8:34:6c:0f:aa:19:dd:11:4b:77:59:dc:44:75:
                    4f:29:40:0d:4d:1a:73:cc:43:54:23:b4:c6:0d:05:
                    76:73:eb:a5:b5:0f:af:25:78:97:31:13:3c:51:ff:
                    8e:64:3b:b9:75:30:37:76:05:0e:68:b3:b1:b4:79:
                    2d:bb:5a:5a:1f:64:a2:46:04:03:2f:ad:48:78:bf:
                    b9:68:76:31:14:7a:be:72:ba:95:d3:de:b4:b0:c3:
                    32:ff:5f:d1:79:8d:9c:56:26:78:24:36:87:2a:b8:
                    73:dc:cd:04:6d:2b:3e:62:01:3e:0e:f4:63:64:35:
                    6f:5b:e3:4d:a6:84:0e:ea:19:8d:04:d5:fe:f7:20:
                    37:d3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B3:0C:92:D0:55:48:EB:82:78:29:91:56:9E:EA:52:42:80:48:1C:E6
            X509v3 Authority Key Identifier:
                keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/swyS0FVI64J4KZFWnupSQoBIHOY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  211.76.72.0/22

    Signature Algorithm: sha256WithRSAEncryption
         39:26:60:43:9d:28:78:f2:3d:ae:b6:69:9c:26:d1:e5:76:35:
         47:30:67:db:fb:be:8f:0a:65:51:a7:b4:bc:75:c5:89:bb:09:
         96:69:b6:c2:bd:8b:6f:b5:b6:81:94:d7:87:8d:8a:60:86:4e:
         6d:57:a0:67:40:c5:62:a0:66:79:d1:0c:32:4c:3e:69:fb:ce:
         99:fa:80:b1:de:0a:e7:6b:e1:c2:7c:27:21:48:54:6b:c7:0a:
         de:4b:9b:d6:13:ed:e0:f2:b0:93:28:da:22:b7:62:5a:c1:06:
         6a:3c:55:b0:bb:bb:45:48:8b:2b:50:d5:e6:22:25:cc:39:ae:
         07:03:ab:8d:2e:13:90:b4:87:ab:36:9b:97:e1:bc:7d:51:17:
         4e:47:3f:40:43:95:b8:8a:99:23:f4:dc:c2:f0:f2:d3:cc:72:
         11:f8:1b:3b:09:d7:04:bd:ac:f7:ff:a7:56:f5:b3:ea:55:f9:
         4d:73:fe:db:2f:ab:92:2f:bc:de:65:81:38:1e:37:65:95:15:
         fe:c7:bd:0c:a3:1d:68:bc:10:06:e9:f9:38:8c:b2:ff:45:f0:
         28:84:3f:c6:28:63:aa:6b:0d:a7:ea:24:c2:a9:b5:ab:b1:c8:
         2c:70:44:25:ef:82:e3:14:e5:c1:f7:c4:3b:bb:5f:c0:42:3f:
         f1:c5:f4:53
-----BEGIN CERTIFICATE-----
MIIE0jCCA7qgAwIBAgICEoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0
NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMTA5Mjkw
MjU0MzlaFw0yMjA5MjkwMjM2MjJaMDMxMTAvBgNVBAMTKEIzMEM5MkQwNTU0OEVC
ODI3ODI5OTE1NjlFRUE1MjQyODA0ODFDRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDVHP43419XoIrJ9aqHVXjSJPT0s2kncboqRWT+gxT2oCX5ro5A
KItEBIwrrRgZetJqougo5Z+M0H04Hdv1KbVhegFTtNPM++DdTnWknAqXpy2o51dJ
HkswMUH1zNDOiCD/cbXauNzy0JwApQm4EtOJem4n12OkoXf4NGwPqhndEUt3WdxE
dU8pQA1NGnPMQ1QjtMYNBXZz66W1D68leJcxEzxR/45kO7l1MDd2BQ5os7G0eS27
WlofZKJGBAMvrUh4v7lodjEUer5yupXT3rSwwzL/X9F5jZxWJngkNocquHPczQRt
Kz5iAT4O9GNkNW9b402mhA7qGY0E1f73IDfTAgMBAAGjggHuMIIB6jAdBgNVHQ4E
FgQUswyS0FVI64J4KZFWnupSQoBIHOYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T
5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU
L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3N3eVMwRlZJNjRKNEtaRldu
dXBTUW9CSUhPWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALT
TEgwDQYJKoZIhvcNAQELBQADggEBADkmYEOdKHjyPa62aZwm0eV2NUcwZ9v7vo8K
ZVGntLx1xYm7CZZptsK9i2+1toGU14eNimCGTm1XoGdAxWKgZnnRDDJMPmn7zpn6
gLHeCudr4cJ8JyFIVGvHCt5Lm9YT7eDysJMo2iK3YlrBBmo8VbC7u0VIiytQ1eYi
Jcw5rgcDq40uE5C0h6s2m5fhvH1RF05HP0BDlbiKmSP03MLw8tPMchH4GzsJ1wS9
rPf/p1b1s+pV+U1z/tsvq5IvvN5lgTgeN2WVFf7HvQyjHWi8EAbp+TiMsv9F8CiE
P8YoY6prDafqJMKptauxyCxwRCXvguMU5cH3xDu7X8BCP/HF9FM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:06 2024 by rpki-client on console-fra.rpki-client.org