Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/J50eW8xPG7vxjW9nEdSPq0D95MQ.roa
File:                     J50eW8xPG7vxjW9nEdSPq0D95MQ.roa (raw, json)
Hash identifier:          oc3NJIwQ4KIcVv6hwF/wmbpxdcn4nmEPAHLLA6/xDug=
Subject key identifier:   27:9D:1E:5B:CC:4F:1B:BB:F1:8D:6F:67:11:D4:8F:AB:40:FD:E4:C4
Certificate issuer:       /CN=53AB025E558614A6AC89DCA0302DD23BD596A256
Certificate serial:       F0
Authority key identifier: 53:AB:02:5E:55:86:14:A6:AC:89:DC:A0:30:2D:D2:3B:D5:96:A2:56
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/J50eW8xPG7vxjW9nEdSPq0D95MQ.roa
Signing time:             Wed 04 Sep 2024 09:16:40 +0000
ROA not before:           Wed 04 Sep 2024 09:16:40 +0000
ROA not after:            Tue 26 Aug 2025 01:57:03 +0000
asID:                     131642
IP address blocks:        2401:3960::/32 maxlen: 64

Validation:               Failed, certificate revoked on Sun 22 Sep 2024 18:09:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 240 (0xf0)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=53AB025E558614A6AC89DCA0302DD23BD596A256
        Validity
            Not Before: Sep  4 09:16:40 2024 GMT
            Not After : Aug 26 01:57:03 2025 GMT
        Subject: CN=279D1E5BCC4F1BBBF18D6F6711D48FAB40FDE4C4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:96:85:c2:59:72:25:bf:77:37:7b:da:39:b8:
                    96:11:ce:7d:f9:63:01:cc:ab:37:76:21:5e:e3:f8:
                    84:c2:2f:14:ef:b0:37:44:ba:6c:d8:0b:d3:56:40:
                    14:24:f4:82:7b:11:f1:87:ad:01:e8:7b:9c:25:51:
                    29:e6:61:7e:f2:40:c0:f6:41:8a:42:cc:af:47:64:
                    26:11:9e:1f:05:20:f7:79:09:98:84:cb:7f:bf:5b:
                    66:31:d1:b7:e4:34:7b:f1:30:29:03:4d:2e:d6:42:
                    fb:98:34:48:ba:7c:d7:9a:de:62:97:f0:7a:fa:2d:
                    1b:31:0d:1c:0f:89:c9:3a:36:7a:ed:50:f5:be:02:
                    a5:84:72:69:98:c7:2c:85:36:44:84:77:63:4b:52:
                    31:7c:cd:89:61:a9:2e:57:cd:ef:81:6a:7b:11:94:
                    94:41:f0:7c:83:10:18:11:95:74:e3:db:8e:11:0a:
                    6c:87:ed:9c:96:8b:de:1c:58:a9:fa:9f:f0:07:e6:
                    a9:c9:bb:64:d0:61:a1:af:d4:2e:3b:2b:dd:14:d6:
                    61:47:a6:d7:e8:ec:a2:50:1b:34:57:62:38:d7:53:
                    4f:2b:2e:2c:00:00:b0:f3:5c:5c:97:49:7e:64:ef:
                    39:4c:b6:5f:54:e2:89:d8:91:41:37:38:c0:09:b1:
                    05:f1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                27:9D:1E:5B:CC:4F:1B:BB:F1:8D:6F:67:11:D4:8F:AB:40:FD:E4:C4
            X509v3 Authority Key Identifier:
                keyid:53:AB:02:5E:55:86:14:A6:AC:89:DC:A0:30:2D:D2:3B:D5:96:A2:56

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/U6sCXlWGFKasidygMC3SO9WWolY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U6sCXlWGFKasidygMC3SO9WWolY.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEICHANG/J50eW8xPG7vxjW9nEdSPq0D95MQ.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2401:3960::/32

    Signature Algorithm: sha256WithRSAEncryption
         95:91:82:4c:4b:3b:55:a7:55:b2:21:4c:a9:d0:9c:f8:ca:c6:
         70:e0:89:c4:b4:74:94:5f:fe:5f:74:0a:d4:d6:d6:0d:82:ae:
         e1:72:e1:25:19:da:7d:5a:8d:8a:68:da:3c:19:09:fd:8a:ea:
         1b:6c:80:25:eb:5a:64:06:ae:d4:20:49:e4:4c:e9:e4:1a:91:
         37:a8:b3:8b:4c:d7:be:63:9f:19:3b:31:9d:ed:33:31:0c:5d:
         e9:2a:c3:9c:68:fe:5a:07:cb:44:58:04:a4:6b:d9:39:34:a2:
         5d:a4:d8:0a:34:11:56:7a:a5:56:9b:39:67:70:f1:c5:90:92:
         40:7c:7a:ea:82:41:e0:41:a7:5d:3c:47:b3:4f:7b:45:94:1f:
         9d:03:b3:72:57:70:5a:46:4a:d9:29:f1:78:c9:e7:d1:b5:15:
         1f:ec:30:98:24:ca:55:1e:b4:81:bf:0d:6b:36:9d:42:7b:66:
         44:db:ea:55:b5:52:8d:13:23:bc:8c:08:97:52:32:4a:80:34:
         9a:4f:7e:6e:1d:7c:4b:9e:1f:23:e1:1e:b1:36:e3:3b:dd:29:
         be:0b:6e:ff:16:05:46:16:39:e0:93:34:bd:69:fd:4d:c3:2b:
         0a:1f:a5:f5:b9:1e:db:e7:da:d1:7e:07:79:58:46:fd:6b:71:
         92:1d:11:e8
-----BEGIN CERTIFICATE-----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Generated at Mon Sep 23 06:26:21 2024 by rpki-client on console-fra.rpki-client.org