Route Origin Authorization

$ rpki-client -vvf dev.tw/rpki/August/13/326130353a646663363a3a2f33322d3438203d3e20393435.roa
File:                     326130353a646663363a3a2f33322d3438203d3e20393435.roa (raw, json)
Hash identifier:          14PK23K6gIE+1/eVLQ0vBUH/JbYCzV7tuVASN/AYvKc=
Subject key identifier:   F5:B0:F3:C0:D9:9E:B5:FF:41:98:D6:DE:20:81:0B:2A:A7:8B:8C:73
Certificate issuer:       /CN=F4649896A70A20CD8ABB9644DE0C0399CEC6FBCE
Certificate serial:       63D471B90BAE4513537E146C24317B89BD97A34F
Authority key identifier: F4:64:98:96:A7:0A:20:CD:8A:BB:96:44:DE:0C:03:99:CE:C6:FB:CE
Authority info access:    rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/F4649896A70A20CD8ABB9644DE0C0399CEC6FBCE.cer
Subject info access:      rsync://dev.tw/rpki/August/13/326130353a646663363a3a2f33322d3438203d3e20393435.roa
Signing time:             Tue 17 Oct 2023 16:24:47 +0000
ROA not before:           Tue 17 Oct 2023 16:19:47 +0000
ROA not after:            Tue 15 Oct 2024 16:24:47 +0000
asID:                     945
IP address blocks:        2a05:dfc6::/32 maxlen: 48

Validation:               Failed, certificate revoked on Fri 21 Jun 2024 21:44:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            63:d4:71:b9:0b:ae:45:13:53:7e:14:6c:24:31:7b:89:bd:97:a3:4f
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=F4649896A70A20CD8ABB9644DE0C0399CEC6FBCE
        Validity
            Not Before: Oct 17 16:19:47 2023 GMT
            Not After : Oct 15 16:24:47 2024 GMT
        Subject: CN=F5B0F3C0D99EB5FF4198D6DE20810B2AA78B8C73
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:be:38:9c:69:c1:b0:ac:95:79:dd:dd:36:27:
                    55:9b:b4:9d:1f:51:3d:b6:0e:92:89:13:a9:38:fd:
                    95:db:65:33:ed:f3:6a:23:4c:b0:cc:99:ed:70:f5:
                    ec:86:72:9e:48:08:c3:ef:9f:06:07:93:56:2a:b0:
                    9c:8a:8a:87:ce:c9:f3:0d:32:23:d5:22:f9:8a:c0:
                    88:18:98:05:9d:56:e8:69:1a:a6:65:dc:30:c2:74:
                    63:c3:cb:91:2e:78:a2:22:04:df:ac:1f:c6:a8:0e:
                    1c:41:f8:3a:7f:9a:c3:00:97:b0:29:15:2b:8c:b2:
                    ad:00:78:e4:61:6f:5f:24:23:56:a3:18:92:ea:d3:
                    68:cc:d5:4f:89:ce:b0:70:e7:05:4f:c7:19:98:b3:
                    36:94:9a:cb:f6:77:c0:20:e1:66:af:9e:5c:30:98:
                    74:41:2b:61:c4:e4:a1:dc:ca:93:7a:75:e8:9f:14:
                    c1:d9:3d:51:0f:9e:00:c3:b7:43:3b:c7:1c:7f:75:
                    5c:e8:0f:a2:c5:17:66:3d:46:31:e5:e9:bc:ee:f2:
                    b0:ca:6b:93:11:dd:e5:41:32:74:44:44:95:76:eb:
                    64:12:2e:4f:e6:7e:6d:05:e5:4b:f9:a3:fb:b0:de:
                    43:b6:ce:c9:49:03:9c:95:be:0b:0c:c4:54:70:e3:
                    58:41
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F5:B0:F3:C0:D9:9E:B5:FF:41:98:D6:DE:20:81:0B:2A:A7:8B:8C:73
            X509v3 Authority Key Identifier:
                keyid:F4:64:98:96:A7:0A:20:CD:8A:BB:96:44:DE:0C:03:99:CE:C6:FB:CE

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://dev.tw/rpki/August/13/F4649896A70A20CD8ABB9644DE0C0399CEC6FBCE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-rps.arin.net/repository/8a848adf850d063e0185755c91be3f9d/2/F4649896A70A20CD8ABB9644DE0C0399CEC6FBCE.cer

            Subject Information Access:
                Signed Object - URI:rsync://dev.tw/rpki/August/13/326130353a646663363a3a2f33322d3438203d3e20393435.roa

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv6:
                  2a05:dfc6::/32

    Signature Algorithm: sha256WithRSAEncryption
         23:69:61:38:4c:18:3e:3d:90:cd:b6:e2:dc:9b:61:f9:b6:66:
         1d:5b:56:55:80:08:bb:75:e7:5a:b8:44:cd:97:3b:4b:38:c4:
         79:8b:a5:26:b5:c8:90:84:af:71:64:f3:d5:00:93:77:4a:b4:
         14:69:00:d3:6a:66:3c:a9:67:da:a3:c7:c0:ce:58:b8:75:5b:
         cd:b8:f8:71:eb:94:9e:9d:88:f9:af:74:ee:eb:26:91:c2:cc:
         0a:5a:9b:3e:fa:4d:ad:55:b8:c8:84:4c:34:96:90:59:24:f6:
         29:52:f1:fa:46:c2:93:ff:f7:7e:47:98:52:c6:f2:3f:2b:74:
         c2:3f:a2:e8:5b:82:19:18:73:59:2f:98:25:4b:39:ca:f3:85:
         19:b3:96:96:dd:3a:e1:a5:06:1c:26:8a:14:d3:9c:b8:07:55:
         01:3e:c9:2a:6f:53:b5:6e:ec:85:13:6d:a3:87:a1:3c:c8:8f:
         e9:f1:63:d0:32:70:38:e0:eb:63:d2:b3:fc:7d:bd:9b:61:f6:
         66:86:c3:fc:66:0f:57:64:3f:39:5f:f8:50:30:97:c5:c0:c6:
         d6:e2:92:d2:ef:28:ee:2c:2f:cb:2d:8b:f3:bc:72:72:74:e9:
         16:77:c3:3d:db:ad:1f:d1:9f:84:5b:32:44:b8:91:da:f3:4a:
         21:08:54:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 22 02:22:56 2024 by rpki-client on console-ams.rpki-client.org