Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Bg-uZRJqpfjLZk2XBpj1Wqd5QX0.roa
File:                     Bg-uZRJqpfjLZk2XBpj1Wqd5QX0.roa (raw, json)
Hash identifier:          zXlp9o+I2U4EaVPTvfIkxUL/lQbET8frLuIpJYd+ghk=
Subject key identifier:   06:0F:AE:65:12:6A:A5:F8:CB:66:4D:97:06:98:F5:5A:A7:79:41:7D
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       0986
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Bg-uZRJqpfjLZk2XBpj1Wqd5QX0.roa
Signing time:             Wed 17 Feb 2021 16:09:55 +0000
ROA not before:           Wed 17 Feb 2021 16:09:55 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     18424
IP address blocks:        121.50.151.0/24 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2438 (0x986)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Feb 17 16:09:55 2021 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=060FAE65126AA5F8CB664D970698F55AA779417D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:1c:2d:06:42:bf:d7:0f:b6:ee:e9:d0:6f:c8:
                    f7:0c:ff:78:22:11:78:fc:b1:01:d5:14:72:43:22:
                    34:04:8b:53:46:db:2d:17:7e:86:cf:05:c3:6f:87:
                    fb:73:40:88:84:bb:fb:ca:a4:4b:cd:c3:52:3e:d2:
                    bc:f5:98:f5:ae:44:d9:ab:cf:e5:fa:d2:22:3d:76:
                    bb:2e:e3:46:db:b4:92:e5:28:92:2b:04:8a:b5:92:
                    bf:db:ea:3c:e6:e3:aa:35:44:5b:53:6f:36:bb:d0:
                    1a:9d:a7:23:22:bc:3e:5c:0d:86:77:f8:88:50:cb:
                    81:d4:4c:59:6a:5a:ef:29:91:ca:a3:08:1c:dd:dc:
                    fc:ce:1c:ba:ee:c1:87:91:db:3c:ce:42:f6:b2:7d:
                    0c:2d:84:2d:7c:43:7e:5f:c5:52:47:83:62:c6:78:
                    98:24:0a:17:12:e1:1c:e8:bb:26:e2:ae:95:01:b0:
                    16:46:41:3e:2e:cd:70:64:b2:36:8d:5d:f6:35:73:
                    1f:60:05:40:64:45:65:b7:6b:bb:8d:a3:93:99:56:
                    b5:f7:06:9a:9f:42:0f:f3:40:85:15:1b:cc:5b:03:
                    bc:80:61:a6:8f:3f:1f:df:93:1a:f6:3b:78:fb:4e:
                    58:76:3a:b7:c8:b2:18:8b:69:26:ab:01:85:de:6f:
                    3d:17
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                06:0F:AE:65:12:6A:A5:F8:CB:66:4D:97:06:98:F5:5A:A7:79:41:7D
            X509v3 Authority Key Identifier:
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Bg-uZRJqpfjLZk2XBpj1Wqd5QX0.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  121.50.151.0/24

    Signature Algorithm: sha256WithRSAEncryption
         3e:3e:15:94:ff:4d:4d:2e:a9:69:e4:b5:a7:83:1f:85:f4:a7:
         7a:6c:f6:fd:59:8d:19:f6:ff:c3:ab:b0:39:f1:a5:76:13:c0:
         10:81:ef:c4:a3:b4:cb:cf:cb:a9:61:aa:c0:6d:dc:c5:c4:93:
         99:c5:1c:af:f0:b0:61:e3:4b:4c:ab:48:97:e7:bf:29:c8:bd:
         4b:0e:e4:d3:c0:bb:33:d0:58:76:a3:41:c1:26:b4:67:17:8f:
         2f:6c:40:44:36:e9:90:a4:e8:61:eb:07:cc:f8:ab:01:03:bc:
         6f:9b:d9:da:62:d3:bb:78:c5:1e:3c:dd:ad:bf:b4:0b:e2:57:
         82:47:ce:eb:5a:32:16:c0:78:86:d1:e3:d3:1f:fc:3e:60:72:
         76:dc:ef:8f:a6:74:44:c2:ef:75:f0:39:ce:04:a1:bb:c8:10:
         93:40:f2:ee:0b:ca:a2:68:b4:95:24:a1:9b:9e:cf:c7:e2:0f:
         04:27:70:99:ad:02:ae:b4:94:da:f2:b2:e4:57:8f:59:e6:dd:
         26:a3:42:f5:15:c6:93:4c:b0:f6:28:6e:06:41:23:be:75:50:
         bd:2f:ee:bb:73:ef:14:b3:c9:c1:9e:f0:1b:56:2d:9b:b6:8e:
         e0:bd:59:b9:0a:5a:66:5c:d1:15:9b:36:d7:6f:4d:75:79:35:
         28:db:96:83
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCYYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3
RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMTAyMTcx
NjA5NTVaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA2MEZBRTY1MTI2QUE1
RjhDQjY2NEQ5NzA2OThGNTVBQTc3OTQxN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDQHC0GQr/XD7bu6dBvyPcM/3giEXj8sQHVFHJDIjQEi1NG2y0X
fobPBcNvh/tzQIiEu/vKpEvNw1I+0rz1mPWuRNmrz+X60iI9drsu40bbtJLlKJIr
BIq1kr/b6jzm46o1RFtTbza70BqdpyMivD5cDYZ3+IhQy4HUTFlqWu8pkcqjCBzd
3PzOHLruwYeR2zzOQvayfQwthC18Q35fxVJHg2LGeJgkChcS4RzouybirpUBsBZG
QT4uzXBksjaNXfY1cx9gBUBkRWW3a7uNo5OZVrX3BpqfQg/zQIUVG8xbA7yAYaaP
Px/fkxr2O3j7Tlh2OrfIshiLaSarAYXebz0XAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUBg+uZRJqpfjLZk2XBpj1Wqd5QX0wHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN
caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ
V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL0JnLXVaUkpxcGZq
TFprMlhCcGoxV3FkNVFYMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAB5MpcwDQYJKoZIhvcNAQELBQADggEBAD4+FZT/TU0uqWnktaeDH4X0p3ps
9v1ZjRn2/8OrsDnxpXYTwBCB78SjtMvPy6lhqsBt3MXEk5nFHK/wsGHjS0yrSJfn
vynIvUsO5NPAuzPQWHajQcEmtGcXjy9sQEQ26ZCk6GHrB8z4qwEDvG+b2dpi07t4
xR483a2/tAviV4JHzutaMhbAeIbR49Mf/D5gcnbc74+mdETC73XwOc4EobvIEJNA
8u4LyqJotJUkoZuez8fiDwQncJmtAq60lNrysuRXj1nm3SajQvUVxpNMsPYobgZB
I751UL0v7rtz7xSzycGe8BtWLZu2juC9WbkKWmZc0RWbNtdvTXV5NSjbloM=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org