Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/GnSUf3YJIxyVAh2GHTM-dvabR08.roa
File:                     GnSUf3YJIxyVAh2GHTM-dvabR08.roa (raw, json)
Hash identifier:          23K3xZoA0tAijtyNl4pWWzEC2HhWCPIVEit0ApoQsWA=
Subject key identifier:   1A:74:94:7F:76:09:23:1C:95:02:1D:86:1D:33:3E:76:F6:9B:47:4F
Certificate issuer:       /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Certificate serial:       018E
Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/GnSUf3YJIxyVAh2GHTM-dvabR08.roa
Signing time:             Sat 01 Jul 2023 01:30:52 +0000
ROA not before:           Sat 01 Jul 2023 01:30:52 +0000
ROA not after:            Fri 14 Jun 2024 01:30:02 +0000
asID:                     4713
IP address blocks:        219.160.0.0/13 maxlen: 13

Validation:               Failed, certificate revoked on Fri 31 May 2024 01:30:59 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 398 (0x18e)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
        Validity
            Not Before: Jul  1 01:30:52 2023 GMT
            Not After : Jun 14 01:30:02 2024 GMT
        Subject: CN=1A74947F7609231C95021D861D333E76F69B474F
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b5:eb:8e:ba:11:3e:7d:f7:89:7b:17:b9:2a:6a:
                    27:af:8f:80:38:05:b8:48:eb:09:f2:c1:2a:54:7b:
                    ce:98:5e:00:41:35:7d:02:4f:6a:b5:b8:1b:64:c4:
                    23:f8:ab:11:1b:d5:08:f8:39:ce:cc:09:41:57:66:
                    a6:8e:8b:eb:5e:6a:aa:b8:54:ed:a8:7e:4a:17:f4:
                    b9:08:56:8f:4e:6c:dc:76:58:c9:24:7e:c8:ee:83:
                    b6:85:c8:bd:dc:ac:5c:85:58:57:26:c8:11:1d:54:
                    30:71:eb:d6:be:c2:7e:fa:7c:ef:7e:a7:96:6e:83:
                    8d:72:aa:77:21:e6:32:36:05:3b:81:49:a2:3b:f3:
                    eb:d0:74:3e:70:44:be:27:77:7f:5d:36:fb:3f:4b:
                    b2:e4:c5:a4:02:ad:e5:47:b6:07:40:05:a2:6b:2b:
                    d0:7b:7a:23:48:97:fd:48:2a:d2:dc:61:65:bb:c5:
                    83:47:64:6b:a4:65:ad:4a:2c:a7:22:60:cf:aa:c4:
                    88:c3:a9:25:64:ee:25:b0:e5:20:7a:a0:0d:0e:51:
                    0f:3b:73:02:18:c6:99:9f:d8:4d:be:95:ec:a5:d7:
                    f9:8d:ed:2d:71:da:04:cc:16:81:af:08:0a:10:bd:
                    1a:d1:3e:ff:57:9c:d2:83:14:ca:bc:7a:af:32:a8:
                    db:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                1A:74:94:7F:76:09:23:1C:95:02:1D:86:1D:33:3E:76:F6:9B:47:4F
            X509v3 Authority Key Identifier:
                keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/GnSUf3YJIxyVAh2GHTM-dvabR08.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  219.160.0.0/13

    Signature Algorithm: sha256WithRSAEncryption
         91:18:4e:aa:21:0a:b2:f2:e1:7a:da:5b:93:84:b5:fd:09:df:
         a8:67:6f:ac:d0:08:6a:e4:a5:0c:fa:c3:2d:25:13:95:fc:58:
         cb:32:56:3e:dd:ce:63:21:0d:ac:1b:75:52:96:40:3d:22:ae:
         dd:47:a7:00:0b:2e:2f:6d:48:87:cc:fc:5f:a8:0a:f1:19:80:
         3f:2d:74:38:77:7d:57:ea:a3:88:6e:e9:fe:67:1e:c6:bc:f6:
         5a:e3:c8:5f:29:e3:c7:23:19:ee:ae:97:54:a1:c8:04:3c:4f:
         d2:6e:94:59:20:86:7d:74:71:87:61:d9:e3:eb:62:c3:26:99:
         ba:4d:e2:e2:ff:86:e0:b6:ba:1e:bf:d1:ca:4b:3a:44:39:80:
         70:5a:8e:c8:38:ab:bd:22:8e:fe:8f:bb:d0:ae:2a:5c:09:78:
         32:48:ae:d6:a7:21:03:8e:b1:36:bf:6d:1c:7d:d5:7e:dc:2b:
         dc:e1:f3:e7:7b:6b:58:48:08:f3:83:02:3a:df:54:71:66:d5:
         0b:44:a9:76:16:53:3d:64:63:c7:97:fa:5d:fc:ba:35:43:af:
         de:a1:05:a3:d1:c9:01:8d:d0:f9:32:4a:18:ac:a3:e7:17:8b:
         75:6f:65:d9:46:cf:cd:f1:57:e1:4e:5e:a6:b1:8e:ad:57:64:
         26:e3:69:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:42 2024 by rpki-client on console-fra.rpki-client.org