Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/wVbdqrkcfH8GI8wyEDsiCM3oHtY.roa
File:                     wVbdqrkcfH8GI8wyEDsiCM3oHtY.roa (raw, json)
Hash identifier:          Qg+jO8540xN3TRyuf6QRWRZighAqhHJOwb1Do5NYE6I=
Subject key identifier:   C1:56:DD:AA:B9:1C:7C:7F:06:23:CC:32:10:3B:22:08:CD:E8:1E:D6
Certificate issuer:       /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
Certificate serial:       0B37
Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/wVbdqrkcfH8GI8wyEDsiCM3oHtY.roa
Signing time:             Thu 15 Sep 2022 02:50:30 +0000
ROA not before:           Thu 15 Sep 2022 02:50:30 +0000
ROA not after:            Wed 06 Sep 2023 03:00:35 +0000
asID:                     18424
IP address blocks:        121.50.151.0/24 maxlen: 24

Validation:               Failed, certificate revoked

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2871 (0xb37)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7
        Validity
            Not Before: Sep 15 02:50:30 2022 GMT
            Not After : Sep  6 03:00:35 2023 GMT
        Subject: CN=C156DDAAB91C7C7F0623CC32103B2208CDE81ED6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a8:8c:b7:31:97:12:56:1c:b0:15:81:d1:77:12:
                    54:ef:7c:84:58:82:95:fb:af:64:a2:c3:72:61:d8:
                    7b:e4:2b:3d:a3:f7:8b:8b:20:99:4d:cd:63:0c:89:
                    ff:51:cd:c0:a7:2c:9c:73:d3:16:a0:2c:ef:da:de:
                    d9:c2:35:71:47:16:f5:9a:64:a8:50:0a:a1:83:49:
                    00:56:f0:5e:4e:d1:bb:f2:67:1a:ea:83:6e:51:ab:
                    00:22:94:cb:be:80:11:20:56:30:9a:50:91:6e:6d:
                    53:b0:1c:da:48:c9:f8:9d:d1:bf:55:86:91:ce:ac:
                    62:47:5a:95:03:77:34:f2:e6:f6:7e:c4:e6:79:6a:
                    d8:31:a5:c4:a7:bb:7a:06:b1:d0:2e:c8:e1:f7:61:
                    89:78:19:a8:88:d9:b0:21:6d:da:ec:c8:0d:8d:78:
                    97:f4:0d:21:df:4e:1e:e1:04:df:f7:82:ec:e0:12:
                    20:e4:d5:c4:73:52:a7:da:bd:29:6f:d8:55:5d:90:
                    b1:0c:9d:bf:06:93:bb:a4:54:98:41:0b:26:b1:ab:
                    5a:16:ad:59:76:00:92:cd:c3:91:9e:5a:2a:48:bd:
                    51:2c:9f:70:26:7d:73:3e:02:e9:17:14:f6:10:ce:
                    0b:93:87:a5:b0:82:d3:6f:65:8d:42:c7:23:3e:3c:
                    60:f7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                C1:56:DD:AA:B9:1C:7C:7F:06:23:CC:32:10:3B:22:08:CD:E8:1E:D6
            X509v3 Authority Key Identifier:
                keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/wVbdqrkcfH8GI8wyEDsiCM3oHtY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  121.50.151.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a9:89:9c:4d:33:ce:4d:c5:e9:02:62:92:17:b3:1f:57:1b:38:
         33:e1:8b:ab:86:bc:61:42:7c:30:00:a6:ba:64:f5:18:1b:b9:
         80:a5:2f:b2:4b:79:cb:e0:d3:4c:eb:55:f7:52:08:af:a3:ca:
         90:9f:3f:b5:d8:35:de:fc:46:57:d8:3a:74:a0:7d:cb:56:9c:
         30:03:b7:55:06:33:90:37:1b:6f:bf:af:a0:d5:82:0f:83:1a:
         9f:8b:c0:cb:3f:64:9b:86:22:5d:5c:98:d4:b0:2d:f0:f6:f5:
         46:7b:34:71:97:0e:4e:0d:54:fa:09:44:b6:bb:3c:55:d9:97:
         63:55:54:54:d8:82:79:ff:dd:84:4b:61:2a:de:5c:c1:1a:2e:
         dc:59:b2:c6:7f:dc:9b:fd:a3:8e:0c:15:8f:cc:c5:d6:54:1c:
         a5:2d:11:32:6f:28:9d:c2:b6:2b:ca:2a:08:db:a3:15:c5:c5:
         fb:b2:b0:d1:5f:6a:a0:59:d3:b2:4b:de:0a:b1:c6:e8:c6:c1:
         40:ad:a7:01:26:fc:d6:4c:86:5c:74:57:b8:6a:b2:b6:56:68:
         2c:c3:f0:90:7d:68:c4:54:b9:d4:b7:6a:a9:55:96:e0:7e:32:
         39:83:46:6d:76:3e:af:6a:90:bb:cb:9a:e4:cf:89:36:b1:73:
         23:89:c1:80
-----BEGIN CERTIFICATE-----
MIIE2DCCA8CgAwIBAgICCzcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3
RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yMjA5MTUw
MjUwMzBaFw0yMzA5MDYwMzAwMzVaMDMxMTAvBgNVBAMTKEMxNTZEREFBQjkxQzdD
N0YwNjIzQ0MzMjEwM0IyMjA4Q0RFODFFRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCojLcxlxJWHLAVgdF3ElTvfIRYgpX7r2Siw3Jh2HvkKz2j94uL
IJlNzWMMif9RzcCnLJxz0xagLO/a3tnCNXFHFvWaZKhQCqGDSQBW8F5O0bvyZxrq
g25RqwAilMu+gBEgVjCaUJFubVOwHNpIyfid0b9VhpHOrGJHWpUDdzTy5vZ+xOZ5
atgxpcSnu3oGsdAuyOH3YYl4GaiI2bAhbdrsyA2NeJf0DSHfTh7hBN/3guzgEiDk
1cRzUqfavSlv2FVdkLEMnb8Gk7ukVJhBCyaxq1oWrVl2AJLNw5GeWipIvVEsn3Am
fXM+AukXFPYQzguTh6WwgtNvZY1CxyM+PGD3AgMBAAGjggH0MIIB8DAdBgNVHQ4E
FgQUwVbdqrkcfH8GI8wyEDsiCM3oHtYwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN
caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg
UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ
V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE
VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX
TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E
BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw
a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL3dWYmRxcmtjZkg4
R0k4d3lFRHNpQ00zb0h0WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50
d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAB5MpcwDQYJKoZIhvcNAQELBQADggEBAKmJnE0zzk3F6QJikhezH1cbODPh
i6uGvGFCfDAAprpk9RgbuYClL7JLecvg00zrVfdSCK+jypCfP7XYNd78RlfYOnSg
fctWnDADt1UGM5A3G2+/r6DVgg+DGp+LwMs/ZJuGIl1cmNSwLfD29UZ7NHGXDk4N
VPoJRLa7PFXZl2NVVFTYgnn/3YRLYSreXMEaLtxZssZ/3Jv9o44MFY/MxdZUHKUt
ETJvKJ3CtivKKgjboxXFxfuysNFfaqBZ07JL3gqxxujGwUCtpwEm/NZMhlx0V7hq
srZWaCzD8JB9aMRUudS3aqlVluB+MjmDRm12Pq9qkLvLmuTPiTaxcyOJwYA=
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:12:43 2023 by rpki-client on console-ams.rpki-client.org