Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/jwpH_h6e8ja8YLxRnJb8l6kVxYw.roa
File:                     jwpH_h6e8ja8YLxRnJb8l6kVxYw.roa (raw, json)
Hash identifier:          aKBfXuSrmkdotgUD8bDis0A+2cOViYgmWtVCdoTDolw=
Subject key identifier:   8F:0A:47:FE:1E:9E:F2:36:BC:60:BC:51:9C:96:FC:97:A9:15:C5:8C
Certificate issuer:       /CN=257DB7B9919975697366B7014F8CFE28EF364E73
Certificate serial:       06C3
Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/jwpH_h6e8ja8YLxRnJb8l6kVxYw.roa
Signing time:             Mon 26 Aug 2024 05:18:26 +0000
ROA not before:           Mon 26 Aug 2024 05:18:26 +0000
ROA not after:            Tue 26 Aug 2025 01:57:03 +0000
asID:                     20473
IP address blocks:        2406:48c0::/32 maxlen: 32
Validation:               Failed, certificate revoked on Mon 10 Feb 2025 20:33:31 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1731 (0x6c3)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73
        Validity
            Not Before: Aug 26 05:18:26 2024 GMT
            Not After : Aug 26 01:57:03 2025 GMT
        Subject: CN=8F0A47FE1E9EF236BC60BC519C96FC97A915C58C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:1a:4f:d0:8d:4a:38:50:40:b2:32:a4:f3:8e:
                    20:70:08:2f:9d:48:98:0b:bc:5b:5e:c7:a3:e0:99:
                    5f:4f:26:cc:21:27:04:2d:1d:37:d0:ce:bf:83:20:
                    9c:ac:ec:b6:27:4a:4d:27:a2:9a:1e:d3:cd:f6:e7:
                    6c:df:5c:2f:0e:60:e3:52:fd:ec:a6:d6:ad:dd:68:
                    da:ee:9a:a2:4e:e8:6a:66:a4:12:87:86:8a:1e:56:
                    b4:02:13:37:db:9a:37:7c:45:3c:7f:4e:57:63:8f:
                    ab:6b:e7:7e:75:d3:7d:2b:a0:f2:ff:1a:be:a4:d7:
                    6b:10:41:bf:ce:a4:b3:77:39:3b:a6:24:75:08:de:
                    bd:3f:e3:2c:7d:e0:fa:61:c0:0f:3b:1e:5d:d5:48:
                    3d:e9:14:c4:38:b4:c6:8f:23:57:d0:83:24:e6:83:
                    eb:ea:28:54:e5:10:43:bf:87:e9:ed:86:a0:b9:30:
                    95:a7:82:d0:a3:68:99:2e:6f:5a:d4:4a:23:d0:b0:
                    67:55:f2:c8:7f:25:9e:72:0b:ff:23:8b:41:aa:17:
                    26:3c:6d:1c:23:03:ff:d3:4e:54:6d:ef:8a:86:a3:
                    73:76:ca:9a:ce:04:10:93:44:be:a2:a7:3a:86:b4:
                    85:16:0d:2c:e8:69:71:c9:f9:c9:2f:79:f3:32:04:
                    f2:d9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                8F:0A:47:FE:1E:9E:F2:36:BC:60:BC:51:9C:96:FC:97:A9:15:C5:8C
            X509v3 Authority Key Identifier:
                keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/jwpH_h6e8ja8YLxRnJb8l6kVxYw.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2406:48c0::/32

    Signature Algorithm: sha256WithRSAEncryption
         34:48:54:d8:59:38:c3:09:44:39:3e:5b:6d:b9:2f:05:61:2d:
         7a:6c:03:3d:07:1e:95:62:1d:80:26:02:19:cf:4f:38:45:b1:
         b9:c2:07:be:53:32:49:a3:d2:6c:ad:93:ed:df:6f:e6:d9:ba:
         58:9b:c4:93:f1:59:5a:a0:0a:61:6c:6e:0f:d7:54:58:af:83:
         b3:5e:82:4e:7c:64:de:55:a7:7d:55:86:be:a1:50:76:b8:aa:
         f5:4d:85:71:03:85:35:7a:52:e5:0b:0a:19:2b:31:7b:8e:f8:
         2c:90:b4:46:90:c0:5d:b8:b6:be:c6:3d:8b:2b:a5:cc:30:6b:
         5c:1d:fa:f2:bc:82:97:10:53:d9:5c:31:cf:62:12:e4:3c:f2:
         94:33:19:aa:72:af:20:c0:2f:be:c9:83:8e:fd:e7:e6:80:5b:
         6d:4a:f3:9f:81:45:16:8f:02:b0:ba:11:0a:12:bc:d1:f0:0f:
         3d:34:75:25:09:1c:f9:63:05:9e:4c:34:7f:d6:aa:65:a6:ee:
         63:0c:d2:da:25:58:f7:88:46:49:f3:18:de:74:8f:ec:f3:6a:
         da:15:30:5d:36:f3:aa:7c:cf:d0:6f:2e:2d:f3:27:c6:2e:3e:
         96:ba:4a:ca:f0:02:a8:05:92:dd:0c:1d:00:38:51:af:02:93:
         39:e7:f7:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 15:45:24 2025 by rpki-client