Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1384/6Vl3bkct9icNTacucO2-xUr88LQ.roa
File:                     6Vl3bkct9icNTacucO2-xUr88LQ.roa (raw, json)
Hash identifier:          vw/Q/lWcjYLk4SrPTeeswirWwuYl1PKnXvH7zf66IXM=
Subject key identifier:   E9:59:77:6E:47:2D:F6:27:0D:4D:A7:2E:70:ED:BE:C5:4A:FC:F0:B4
Certificate issuer:       /CN=87AC474F6833E4A01A86B23B51E56A661CF2E1F4
Certificate serial:       32
Authority key identifier: 87:AC:47:4F:68:33:E4:A0:1A:86:B2:3B:51:E5:6A:66:1C:F2:E1:F4
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h6xHT2gz5KAahrI7UeVqZhzy4fQ.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1384/6Vl3bkct9icNTacucO2-xUr88LQ.roa
Signing time:             Sat 01 Jul 2023 01:28:44 +0000
ROA not before:           Sat 01 Jul 2023 01:28:44 +0000
ROA not after:            Fri 14 Jun 2024 01:30:02 +0000
asID:                     16509
IP address blocks:        150.70.218.0/24 maxlen: 24

Validation:               Failed, certificate revoked on Fri 31 May 2024 01:32:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 50 (0x32)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=87AC474F6833E4A01A86B23B51E56A661CF2E1F4
        Validity
            Not Before: Jul  1 01:28:44 2023 GMT
            Not After : Jun 14 01:30:02 2024 GMT
        Subject: CN=E959776E472DF6270D4DA72E70EDBEC54AFCF0B4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9f:04:9b:15:bd:4b:c0:81:e8:22:22:26:f2:c1:
                    52:78:30:b6:2e:a3:cc:6c:ef:bd:cc:09:46:a3:96:
                    f7:3c:bf:a5:ca:3e:4c:71:47:68:61:06:33:2b:f1:
                    ca:2a:7f:76:b6:1b:f4:bb:53:79:86:87:4a:fb:0f:
                    48:32:42:26:9e:b5:4d:63:c4:af:4c:af:5a:24:e6:
                    83:45:a7:e4:07:3e:05:98:07:ee:82:1a:94:88:da:
                    d4:48:76:f5:92:44:27:ca:85:b5:12:0f:32:42:c2:
                    85:5a:6c:af:96:75:7f:9e:0d:04:5e:ef:b2:1c:09:
                    dc:3b:e5:ad:50:32:61:b4:47:38:7c:c5:54:fa:fb:
                    bf:d7:b6:e5:79:23:b5:e0:e2:ec:31:ea:ec:6f:cc:
                    8a:4f:ff:33:93:27:ff:05:6e:2d:6c:27:40:8a:01:
                    d3:41:ca:9f:09:55:b1:eb:85:d3:db:82:c0:cd:b2:
                    ff:9d:69:90:5c:11:8b:8f:cf:64:f4:fe:41:7f:00:
                    da:2d:41:71:52:f7:0c:b6:4f:47:19:83:8b:90:6a:
                    a3:73:73:e3:bf:2d:82:eb:18:75:20:41:ca:04:cc:
                    eb:1f:8c:1d:fd:70:6d:85:3e:1f:85:c0:e6:00:34:
                    1f:81:a5:4c:c5:11:a5:f2:a4:76:65:21:6b:4d:94:
                    d3:0b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:59:77:6E:47:2D:F6:27:0D:4D:A7:2E:70:ED:BE:C5:4A:FC:F0:B4
            X509v3 Authority Key Identifier:
                keyid:87:AC:47:4F:68:33:E4:A0:1A:86:B2:3B:51:E5:6A:66:1C:F2:E1:F4

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1384/h6xHT2gz5KAahrI7UeVqZhzy4fQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/h6xHT2gz5KAahrI7UeVqZhzy4fQ.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1384/6Vl3bkct9icNTacucO2-xUr88LQ.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  150.70.218.0/24

    Signature Algorithm: sha256WithRSAEncryption
         b5:3d:fa:d4:6e:7f:0f:03:28:af:fa:3e:da:a5:59:fc:88:69:
         24:48:24:78:df:91:0a:d7:f9:08:6a:cc:6f:15:b9:f2:48:dd:
         1c:69:dc:32:0c:25:d3:bf:ee:c9:51:93:e8:d6:e3:5e:70:5b:
         4e:4f:69:eb:b7:81:cc:cf:c6:f3:28:c5:41:93:8c:64:6a:d2:
         56:e7:e5:01:61:1b:79:43:87:91:9a:6a:85:75:e6:52:3d:84:
         7d:20:1e:d7:b2:4c:69:f4:43:b8:31:d1:2f:99:14:d1:12:79:
         c6:d5:10:f3:36:b3:47:6d:30:3c:cc:b3:17:2e:a9:39:15:c3:
         47:a7:06:9f:9e:13:aa:24:65:f0:86:33:2f:18:1d:f9:98:5b:
         3b:11:49:7e:11:1d:5f:45:d5:cc:16:af:3a:e8:37:96:2d:a9:
         58:4c:c3:b4:39:0a:8b:6a:52:3d:46:ab:60:8d:df:f5:64:18:
         cb:98:e8:73:52:ac:cf:83:9f:2b:1a:3c:6b:67:73:54:0c:44:
         fa:55:64:c6:11:00:a9:be:70:46:41:cd:26:be:aa:33:94:56:
         2c:c5:6e:b5:af:e7:4d:c1:31:47:8b:1d:ed:b7:2e:e0:06:77:
         b1:b5:04:84:94:07:0c:b1:42:f0:b7:82:ab:46:2d:e0:4f:8b:
         d8:ce:b1:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:45:37 2024 by rpki-client on console-ams.rpki-client.org