Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/LFYHJj3m4MLJ9sJLxaocMCSOp_k.roa
File:                     LFYHJj3m4MLJ9sJLxaocMCSOp_k.roa (raw, json)
Hash identifier:          PXPgT7ZXcfsD5U6LhT8df6n+qDz51SlGh0f3S4sjHgI=
Subject key identifier:   2C:56:07:26:3D:E6:E0:C2:C9:F6:C2:4B:C5:AA:1C:30:24:8E:A7:F9
Certificate issuer:       /CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
Certificate serial:       106A
Authority key identifier: ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/LFYHJj3m4MLJ9sJLxaocMCSOp_k.roa
Signing time:             Mon 13 Nov 2023 03:05:53 +0000
ROA not before:           Mon 13 Nov 2023 03:05:53 +0000
ROA not after:            Sat 31 Aug 2024 03:10:53 +0000
asID:                     136897
IP address blocks:        103.127.237.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Mon 04 Dec 2023 03:29:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4202 (0x106a)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=ED186F6314D7B5713EFFECFB93EBC3E82197E2EF
        Validity
            Not Before: Nov 13 03:05:53 2023 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=2C5607263DE6E0C2C9F6C24BC5AA1C30248EA7F9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:a6:92:7d:f5:04:14:48:c7:38:af:fa:29:c1:
                    6c:c9:66:a8:46:0d:5b:6a:5d:a3:f6:db:0c:a8:9e:
                    13:57:78:51:64:1d:39:bc:7f:3b:5c:6e:1a:a6:3a:
                    e3:34:ed:cb:02:41:d7:2f:36:bb:d2:31:8c:fa:d7:
                    7d:05:dd:e4:51:e7:b9:92:2d:e8:5b:02:60:9a:52:
                    f5:cc:af:a1:ad:a7:d0:b1:38:f6:d9:ad:28:8b:cc:
                    ba:13:d2:2f:87:b2:35:7b:89:ed:bd:99:29:76:b2:
                    8d:d5:ca:b6:9b:35:32:1f:30:cd:b3:19:28:3b:c8:
                    04:d5:a8:f7:cb:e3:ed:af:00:27:6d:4d:73:97:6c:
                    9d:b7:0c:cf:e6:de:c1:00:77:30:f9:61:02:0e:b7:
                    00:18:3b:75:75:7e:75:fe:34:6b:a0:17:87:87:8a:
                    cf:51:fe:fc:a9:1e:da:f2:66:5e:0c:98:9a:1f:f1:
                    c3:05:9f:66:d3:49:f6:77:d7:5e:3d:17:d3:dc:91:
                    c8:8e:b2:0b:bf:5a:41:ba:d3:57:5f:b3:23:9a:8d:
                    b4:c5:5f:bc:ff:99:4f:6a:9e:a8:3b:2b:a4:54:76:
                    d1:cb:1f:5e:3b:9f:89:eb:ee:fd:5e:53:70:10:e9:
                    40:82:4b:0a:f3:b3:b8:dc:cb:ce:4e:0a:96:d1:72:
                    62:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                2C:56:07:26:3D:E6:E0:C2:C9:F6:C2:4B:C5:AA:1C:30:24:8E:A7:F9
            X509v3 Authority Key Identifier:
                keyid:ED:18:6F:63:14:D7:B5:71:3E:FF:EC:FB:93:EB:C3:E8:21:97:E2:EF

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/7RhvYxTXtXE-_-z7k-vD6CGX4u8.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7RhvYxTXtXE-_-z7k-vD6CGX4u8.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHUNYING/LFYHJj3m4MLJ9sJLxaocMCSOp_k.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.127.237.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a8:93:34:ff:6e:d1:52:b5:5f:ae:7b:24:46:99:28:5a:60:d1:
         55:23:b0:65:35:40:70:f6:53:7e:22:4b:62:5a:c3:b5:88:dc:
         03:aa:fa:00:9d:6d:de:88:b7:79:21:d5:12:e1:03:f3:98:bb:
         7e:84:c0:00:98:00:9d:28:da:73:09:30:9b:c6:44:5b:00:6b:
         40:3a:54:c2:6c:f2:ec:72:fb:74:b8:89:d8:f9:10:85:d8:18:
         26:fd:b9:37:3d:6b:68:74:f8:75:9f:cb:41:3a:01:d2:48:3d:
         db:de:5f:19:6d:e1:47:bc:1f:12:6e:a6:43:5e:9d:bd:b9:9c:
         5d:69:25:5d:26:13:40:e4:e5:aa:01:5a:12:21:b9:bb:a3:d8:
         fe:57:ca:73:c0:a1:64:60:b5:48:24:2e:6c:d3:56:41:b3:03:
         2f:aa:00:26:94:83:86:28:ea:a7:6a:7a:d6:21:e8:22:2b:e0:
         74:c1:de:6b:95:a6:76:1b:59:ff:49:fe:21:e9:3a:fc:37:8c:
         0c:d6:07:92:fa:76:57:ed:34:19:3a:f7:32:82:81:c1:1f:7e:
         40:85:c7:5c:61:46:c6:60:81:68:33:f6:6f:ec:14:64:d9:07:
         08:e5:39:03:83:2a:4d:49:9b:ec:d2:8d:96:5d:ba:39:0a:71:
         b2:0f:39:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:20 2024 by rpki-client on console-ams.rpki-client.org