Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/UDrANoUgq_157tdPVjWhGJb0w-E.roa
File:                     UDrANoUgq_157tdPVjWhGJb0w-E.roa (raw, json)
Hash identifier:          v1DJUkhKSthf0QfJcXs2yCQvCi930C6NTo0uymTQa+s=
Subject key identifier:   50:3A:C0:36:85:20:AB:FD:79:EE:D7:4F:56:35:A1:18:96:F4:C3:E1
Certificate issuer:       /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
Certificate serial:       0A51
Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/UDrANoUgq_157tdPVjWhGJb0w-E.roa
Signing time:             Thu 15 Sep 2022 02:42:21 +0000
ROA not before:           Thu 15 Sep 2022 02:42:21 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     131149
IP address blocks:        103.1.220.0/22 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2641 (0xa51)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05
        Validity
            Not Before: Sep 15 02:42:21 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=503AC0368520ABFD79EED74F5635A11896F4C3E1
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bc:e6:86:97:9d:75:67:ba:17:e3:48:94:80:f5:
                    ed:f8:3d:4e:d2:c0:2a:1c:70:27:a4:14:35:e9:07:
                    20:59:7b:17:fd:86:b3:43:0e:ab:ff:5d:a3:53:d0:
                    bf:75:ee:94:14:1f:1a:15:47:14:4d:c7:47:c4:ad:
                    88:23:09:96:df:a9:c2:43:09:2d:f5:b8:18:62:dd:
                    ab:0e:06:ae:cf:c6:b8:0b:0f:8e:ce:bd:72:c1:40:
                    02:00:c2:8b:d0:66:8a:7e:57:70:bd:84:41:fb:ab:
                    55:81:3c:4e:0c:5b:73:af:7e:22:d3:8a:6e:ed:af:
                    6e:e3:3a:99:4b:bf:e3:29:a0:b5:1a:71:87:db:68:
                    15:b5:ce:36:0d:2e:d5:c2:e2:30:18:1f:d2:fb:cd:
                    24:3a:fb:e2:76:4c:67:87:f0:97:00:01:33:8f:2b:
                    53:d0:63:c0:ae:c3:61:41:a5:3f:ef:9c:a1:ae:32:
                    65:6e:b0:6a:da:8e:b4:24:c0:87:ad:a0:d5:e0:5f:
                    36:ac:a4:83:ec:31:86:91:ff:13:b3:5d:3f:c7:f4:
                    96:4a:8b:8d:ee:61:64:61:32:0d:ae:0f:e0:25:34:
                    87:b7:38:59:5a:d2:e0:24:12:95:c1:4e:e9:96:ff:
                    4a:a9:5b:45:4c:a2:6f:91:b4:71:e0:82:a8:55:24:
                    a0:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                50:3A:C0:36:85:20:AB:FD:79:EE:D7:4F:56:35:A1:18:96:F4:C3:E1
            X509v3 Authority Key Identifier:
                keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/UDrANoUgq_157tdPVjWhGJb0w-E.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.1.220.0/22

    Signature Algorithm: sha256WithRSAEncryption
         6b:f9:37:8a:1b:45:c3:12:9f:67:5b:1c:36:ba:4e:c8:df:c2:
         0c:ad:4b:a6:c3:75:2a:d5:ed:21:39:aa:0b:4a:47:0a:e6:26:
         7c:81:76:1a:3e:99:ca:56:f9:34:4d:39:0c:d2:ea:7a:e4:d9:
         af:97:69:a7:23:b6:fa:79:0c:e6:8a:64:e0:8e:dd:27:bc:58:
         b9:5f:a8:0b:86:84:1b:c5:46:98:bd:c3:41:37:19:fc:24:d4:
         43:fa:1f:58:f1:b2:b6:05:5c:85:41:82:a9:33:cd:f3:58:fb:
         91:f5:20:53:d7:92:55:3d:37:0e:69:75:47:67:bd:88:d7:bb:
         b3:dd:e2:d5:1a:00:07:41:54:40:ed:fa:53:94:a2:5e:e9:96:
         0b:f6:ce:3b:11:d6:c0:ff:8d:5b:c0:59:84:49:3e:fd:c6:5a:
         29:c7:8c:4d:d9:4e:14:8f:6c:bc:6a:46:1e:8d:d4:62:05:0d:
         6c:5f:5d:39:6e:42:67:98:34:9a:9a:31:e4:50:66:18:ca:26:
         cb:07:d1:df:2d:b7:9a:4f:2b:d0:5e:ee:70:53:dc:f5:dd:2e:
         5e:fc:e8:f7:10:aa:a9:1b:92:08:45:49:8f:b9:71:e3:b3:6a:
         a3:3b:fa:a7:58:d6:9e:17:70:ed:7b:83:a7:a5:0b:64:b9:52:
         8c:00:23:cd
-----BEGIN CERTIFICATE-----
MIIE1jCCA76gAwIBAgICClEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB
NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yMjA5MTUw
MjQyMjFaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKDUwM0FDMDM2ODUyMEFC
RkQ3OUVFRDc0RjU2MzVBMTE4OTZGNEMzRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC85oaXnXVnuhfjSJSA9e34PU7SwCoccCekFDXpByBZexf9hrND
Dqv/XaNT0L917pQUHxoVRxRNx0fErYgjCZbfqcJDCS31uBhi3asOBq7PxrgLD47O
vXLBQAIAwovQZop+V3C9hEH7q1WBPE4MW3OvfiLTim7tr27jOplLv+MpoLUacYfb
aBW1zjYNLtXC4jAYH9L7zSQ6++J2TGeH8JcAATOPK1PQY8Cuw2FBpT/vnKGuMmVu
sGrajrQkwIetoNXgXzaspIPsMYaR/xOzXT/H9JZKi43uYWRhMg2uD+AlNIe3OFla
0uAkEpXBTumW/0qpW0VMom+RtHHggqhVJKDvAgMBAAGjggHyMIIB7jAdBgNVHQ4E
FgQUUDrANoUgq/157tdPVjWhGJb0w+EwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe
Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg
UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI
RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU
MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO
SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE
AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr
aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9VRHJBTm9VZ3FfMTU3
dGRQVmpXaEdKYjB3LUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu
aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG
AwQCZwHcMA0GCSqGSIb3DQEBCwUAA4IBAQBr+TeKG0XDEp9nWxw2uk7I38IMrUum
w3Uq1e0hOaoLSkcK5iZ8gXYaPpnKVvk0TTkM0up65Nmvl2mnI7b6eQzmimTgjt0n
vFi5X6gLhoQbxUaYvcNBNxn8JNRD+h9Y8bK2BVyFQYKpM83zWPuR9SBT15JVPTcO
aXVHZ72I17uz3eLVGgAHQVRA7fpTlKJe6ZYL9s47EdbA/41bwFmEST79xlopx4xN
2U4Uj2y8akYejdRiBQ1sX105bkJnmDSamjHkUGYYyibLB9HfLbeaTyvQXu5wU9z1
3S5e/Oj3EKqpG5IIRUmPuXHjs2qjO/qnWNaeF3Dte4OnpQtkuVKMACPN
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:07 2024 by rpki-client on console-fra.rpki-client.org