Route Origin Authorization

$ rpki-client -vvf dev.tw/rpki/August/12/3130342e33372e34332e302f32342d3234203d3e20313334383233.roa
File:                     3130342e33372e34332e302f32342d3234203d3e20313334383233.roa (raw, json)
Hash identifier:          n9tRHYV6uLOcVb/FzsOa4Mk2zl3zBFC09EHJ2kjhQR4=
Subject key identifier:   D4:68:42:E2:FC:8A:51:63:6D:0C:73:F3:48:A7:D6:28:AB:88:AD:61
Certificate issuer:       /CN=64EF7C64F4E72CC0730DD0DA80D3C367CB785E67
Certificate serial:       16B368A4EA394C319AF82DAB6C40BB905EEDC28C
Authority key identifier: 64:EF:7C:64:F4:E7:2C:C0:73:0D:D0:DA:80:D3:C3:67:CB:78:5E:67
Authority info access:    rsync://repo.kagl.me/rpki/KeatonAGLair/0/64EF7C64F4E72CC0730DD0DA80D3C367CB785E67.cer
Subject info access:      rsync://dev.tw/rpki/August/12/3130342e33372e34332e302f32342d3234203d3e20313334383233.roa
Signing time:             Sun 15 Oct 2023 04:00:40 +0000
ROA not before:           Sun 15 Oct 2023 03:55:40 +0000
ROA not after:            Sun 13 Oct 2024 04:00:40 +0000
asID:                     134823
IP address blocks:        104.37.43.0/24 maxlen: 24

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            16:b3:68:a4:ea:39:4c:31:9a:f8:2d:ab:6c:40:bb:90:5e:ed:c2:8c
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=64EF7C64F4E72CC0730DD0DA80D3C367CB785E67
        Validity
            Not Before: Oct 15 03:55:40 2023 GMT
            Not After : Oct 13 04:00:40 2024 GMT
        Subject: CN=D46842E2FC8A51636D0C73F348A7D628AB88AD61
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:29:dc:e9:59:e8:0d:c5:1a:40:45:06:cb:87:
                    3a:4f:86:02:45:36:6d:d7:38:aa:c7:ea:9c:ab:6a:
                    68:b7:ce:d7:48:56:33:96:24:9c:2b:f3:43:d0:ea:
                    c2:90:36:9f:12:bd:c6:a3:11:10:c3:58:a0:fd:8c:
                    6c:f1:ba:8f:4d:eb:28:8c:64:9f:ed:bc:b4:b0:ba:
                    e2:9b:89:bd:d5:4a:bb:af:d1:2d:c2:9c:46:0f:2d:
                    ac:37:15:7e:8d:69:cb:db:86:a2:e3:3a:76:44:5b:
                    2a:33:5e:c7:40:19:d2:e5:62:03:bc:da:cf:4a:1f:
                    1a:53:97:ec:93:29:19:fa:e0:59:c1:37:9f:f0:2b:
                    bb:fb:25:63:60:fe:4d:fe:e0:5c:f4:af:7b:5c:8e:
                    13:b6:57:e0:34:e3:f8:92:09:cb:b4:45:3e:e4:8a:
                    ba:a7:86:f8:ab:07:85:cd:b7:b9:91:51:bd:52:e9:
                    48:51:ff:4c:49:9b:07:9b:23:18:e0:ba:43:08:17:
                    e8:51:65:83:8a:aa:eb:2c:db:73:d8:2f:0e:4e:81:
                    a9:92:eb:84:c2:66:6d:06:85:28:83:e2:4f:6b:55:
                    05:9b:7f:32:a1:bc:00:28:a1:11:98:d0:6f:50:31:
                    56:05:c8:51:20:c3:c9:73:6d:a4:79:17:31:95:e5:
                    a4:35
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                D4:68:42:E2:FC:8A:51:63:6D:0C:73:F3:48:A7:D6:28:AB:88:AD:61
            X509v3 Authority Key Identifier:
                keyid:64:EF:7C:64:F4:E7:2C:C0:73:0D:D0:DA:80:D3:C3:67:CB:78:5E:67

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://dev.tw/rpki/August/12/64EF7C64F4E72CC0730DD0DA80D3C367CB785E67.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo.kagl.me/rpki/KeatonAGLair/0/64EF7C64F4E72CC0730DD0DA80D3C367CB785E67.cer

            Subject Information Access:
                Signed Object - URI:rsync://dev.tw/rpki/August/12/3130342e33372e34332e302f32342d3234203d3e20313334383233.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4:
                  104.37.43.0/24

    Signature Algorithm: sha256WithRSAEncryption
         32:b2:1d:7b:ef:50:c3:1f:0a:87:90:b0:c2:9b:76:cb:a8:42:
         59:2e:d1:e3:5f:14:ce:26:4e:73:91:d5:1d:62:1f:16:cf:6b:
         68:9b:e3:0a:f6:49:48:99:e4:3f:b4:19:c0:a3:f3:c1:8a:1e:
         7b:06:95:68:fe:36:66:6c:4d:13:e0:96:a2:8d:4b:80:8a:f3:
         4a:5d:99:56:40:4a:52:45:80:5a:c3:7c:25:49:ab:af:05:b1:
         a6:1e:60:79:f3:d7:9e:ec:42:54:96:d2:82:d3:aa:10:22:92:
         1f:3e:13:22:a7:23:ce:d8:8f:94:a2:df:26:1f:db:8b:96:bd:
         33:45:4f:f4:98:19:62:62:1d:fa:56:f1:be:2f:6d:5a:75:cd:
         14:5c:3a:ac:60:8a:23:0a:b6:88:c0:4b:1b:ba:42:f3:9a:23:
         88:b5:ee:5d:13:ca:e9:d0:41:49:ee:a3:db:99:a0:86:45:c5:
         9c:f7:51:91:23:55:7f:2e:81:30:aa:f5:06:98:99:6f:06:2a:
         d2:fd:59:ff:05:4f:1a:e8:78:fa:d6:d1:66:14:af:5c:0c:f4:
         2f:6e:e6:9d:d0:c9:46:7d:0d:b7:16:9c:b8:49:08:d6:46:6e:
         19:04:5e:36:55:33:e5:c8:91:85:c4:90:13:4d:53:68:bd:a6:
         d9:db:a9:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Nov 30 09:25:09 2023 by rpki-client on console-ams.rpki-client.org