Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Ch0GzSKiEPkPonu_R5Vos9RmneI.roa
File:                     Ch0GzSKiEPkPonu_R5Vos9RmneI.roa (raw, json)
Hash identifier:          lAtEAKjleTHZITWETWJ9BJ2YeDvHVLfEq6Zrt3GMDf8=
Subject key identifier:   0A:1D:06:CD:22:A2:10:F9:0F:A2:7B:BF:47:95:68:B3:D4:66:9D:E2
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       0BD3
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Ch0GzSKiEPkPonu_R5Vos9RmneI.roa
Signing time:             Mon 27 Mar 2023 23:14:09 +0000
ROA not before:           Mon 27 Mar 2023 23:14:09 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     18424
IP address blocks:        103.30.46.0/23 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3027 (0xbd3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Mar 27 23:14:09 2023 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=0A1D06CD22A210F90FA27BBF479568B3D4669DE2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bf:bf:1d:9b:d4:bf:c1:59:14:8a:dd:96:07:23:
                    90:d7:f1:45:7d:27:86:ae:33:1e:68:0f:c5:d0:6a:
                    47:7b:1f:a1:68:e7:d3:2f:7a:fc:a7:27:7d:eb:2b:
                    40:e5:4c:ea:de:7b:d3:aa:42:5a:0d:8f:df:41:ee:
                    7a:ca:08:3b:8d:89:2d:e9:c0:63:ac:ce:2b:a6:dd:
                    c8:30:2f:df:bf:47:f0:4e:fe:41:a9:fe:49:a1:75:
                    dd:f9:fd:36:99:32:d3:37:c3:3f:df:ba:72:6d:a5:
                    ca:ae:86:5d:64:14:9a:3e:58:9a:ef:d2:87:84:e0:
                    55:3f:6f:37:4f:2a:0a:ca:f9:2b:85:6c:f2:94:56:
                    da:5c:17:bc:e6:ea:15:17:5f:2d:eb:a2:38:7b:7f:
                    79:bd:8c:57:17:30:8a:aa:31:7f:fb:e4:b2:f3:43:
                    a0:77:ea:6e:64:7d:56:bd:83:5e:4c:8a:9d:f4:5b:
                    00:cc:3d:91:0d:69:f9:ed:c5:b6:88:f8:08:ed:50:
                    0e:5e:c7:f7:24:6b:e7:e9:e9:a0:4a:88:c4:dd:19:
                    f0:79:b6:86:91:3e:e0:bb:ec:5b:11:cc:96:d5:bd:
                    86:7a:53:cc:86:5b:bc:57:73:e2:ef:73:a4:18:3b:
                    76:16:b2:29:32:f8:67:fc:7c:71:e9:52:f6:25:fb:
                    c2:a5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0A:1D:06:CD:22:A2:10:F9:0F:A2:7B:BF:47:95:68:B3:D4:66:9D:E2
            X509v3 Authority Key Identifier:
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/Ch0GzSKiEPkPonu_R5Vos9RmneI.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.30.46.0/23

    Signature Algorithm: sha256WithRSAEncryption
         7c:a2:39:ed:03:23:3d:39:9e:6e:78:50:e6:85:48:43:03:90:
         0d:94:c2:bb:4c:2c:32:1c:15:bb:f6:9d:f1:c7:2c:a7:df:7b:
         b2:35:87:d1:61:ac:88:30:17:e6:4b:92:c8:65:e9:0f:33:28:
         e7:4e:c6:7a:f6:d2:bd:5d:63:c1:b4:e5:03:ac:0e:e2:8c:b8:
         bb:da:0f:3e:c3:dc:d8:1e:d5:c3:57:89:a0:f2:d9:aa:77:e3:
         b8:42:bf:71:68:61:8d:16:52:a5:8b:76:c8:66:4b:8b:07:2b:
         43:9d:4e:dc:7d:35:41:39:eb:55:46:4b:f1:95:81:f0:4b:50:
         a5:83:13:b0:93:4b:e2:63:29:75:8f:40:ce:6a:9d:26:6b:1c:
         9d:65:87:95:f4:a8:ff:18:f9:05:75:70:2c:14:0a:e9:66:c6:
         31:29:f8:aa:b1:99:be:eb:97:c6:d3:b5:41:9f:0e:51:50:d7:
         80:f9:44:f1:4c:e0:96:6b:67:da:e0:ae:0d:42:8c:33:6a:d4:
         e2:60:60:b8:21:9a:43:0b:6e:76:a6:58:11:6b:89:0d:85:2a:
         0a:20:e9:9c:54:e1:c5:5f:38:28:cc:b5:7e:55:68:e7:8a:09:
         e6:a7:48:b9:c2:1f:46:ef:f1:9f:6f:b6:27:b4:e1:bb:6e:69:
         49:36:3a:09
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICC9MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3
RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMzAzMjcy
MzE0MDlaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDBBMUQwNkNEMjJBMjEw
RjkwRkEyN0JCRjQ3OTU2OEIzRDQ2NjlERTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC/vx2b1L/BWRSK3ZYHI5DX8UV9J4auMx5oD8XQakd7H6Fo59Mv
evynJ33rK0DlTOree9OqQloNj99B7nrKCDuNiS3pwGOszium3cgwL9+/R/BO/kGp
/kmhdd35/TaZMtM3wz/funJtpcquhl1kFJo+WJrv0oeE4FU/bzdPKgrK+SuFbPKU
VtpcF7zm6hUXXy3rojh7f3m9jFcXMIqqMX/75LLzQ6B36m5kfVa9g15Mip30WwDM
PZENafntxbaI+AjtUA5ex/cka+fp6aBKiMTdGfB5toaRPuC77FsRzJbVvYZ6U8yG
W7xXc+Lvc6QYO3YWsiky+Gf8fHHpUvYl+8KlAgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUCh0GzSKiEPkPonu/R5Vos9RmneIwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN
caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ
V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL0NoMEd6U0tpRVBr
UG9udV9SNVZvczlSbW5lSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAFnHi4wDQYJKoZIhvcNAQELBQADggEBAHyiOe0DIz05nm54UOaFSEMDkA2U
wrtMLDIcFbv2nfHHLKffe7I1h9FhrIgwF+ZLkshl6Q8zKOdOxnr20r1dY8G05QOs
DuKMuLvaDz7D3Nge1cNXiaDy2ap347hCv3FoYY0WUqWLdshmS4sHK0OdTtx9NUE5
61VGS/GVgfBLUKWDE7CTS+JjKXWPQM5qnSZrHJ1lh5X0qP8Y+QV1cCwUCulmxjEp
+Kqxmb7rl8bTtUGfDlFQ14D5RPFM4JZrZ9rgrg1CjDNq1OJgYLghmkMLbnamWBFr
iQ2FKgog6ZxU4cVfOCjMtX5VaOeKCeanSLnCH0bv8Z9vtie04btuaUk2Ogk=
-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:51 2024 by rpki-client on console-ams.rpki-client.org