Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/UsLAwLnhEd_0X2PgnniaE2Xv1Ic.roa
File:                     UsLAwLnhEd_0X2PgnniaE2Xv1Ic.roa (raw, json)
Hash identifier:          hdr4qpLkIq0lkMTrMSrozx0oG0nezS3HGQJuIj/YbNw=
Subject key identifier:   52:C2:C0:C0:B9:E1:11:DF:F4:5F:63:E0:9E:78:9A:13:65:EF:D4:87
Certificate issuer:       /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial:       0243
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/UsLAwLnhEd_0X2PgnniaE2Xv1Ic.roa
Signing time:             Tue 01 Aug 2023 01:28:40 +0000
ROA not before:           Tue 01 Aug 2023 01:28:40 +0000
ROA not after:            Sun 14 Jul 2024 01:30:03 +0000
asID:                     2516
IP address blocks:        14.8.0.0/16 maxlen: 16

Validation:               Failed, certificate revoked on Mon 05 Feb 2024 09:35:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 579 (0x243)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
        Validity
            Not Before: Aug  1 01:28:40 2023 GMT
            Not After : Jul 14 01:30:03 2024 GMT
        Subject: CN=52C2C0C0B9E111DFF45F63E09E789A1365EFD487
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:cb:e8:96:c8:45:6b:03:61:82:e2:a4:26:1e:e7:
                    4b:03:67:04:37:7d:24:d8:4b:02:d3:db:86:71:47:
                    f2:78:23:6e:69:36:d0:52:cb:f7:46:41:1e:60:f1:
                    ce:91:3c:0d:ae:f5:87:b9:87:c4:34:14:30:83:3c:
                    52:95:6d:8e:81:13:9c:65:0e:3d:b6:77:b3:28:8e:
                    de:71:ce:3f:26:fa:88:22:6e:df:b3:40:06:01:26:
                    f2:b9:cf:98:2d:80:d4:90:e3:0e:97:ec:ba:7f:9f:
                    68:a2:17:1b:27:4c:e4:83:09:c2:83:8a:b0:cc:90:
                    1b:aa:ad:fc:c7:d3:1d:39:2b:25:1e:e4:84:2c:13:
                    9a:e7:9a:54:9d:bf:8d:64:49:71:39:44:5f:5e:94:
                    e7:1a:ca:d0:3b:21:79:75:72:2d:95:da:99:52:cc:
                    95:14:d2:13:2e:b4:09:51:a6:3d:f6:7b:e8:a6:37:
                    f9:e5:18:e4:6e:97:dd:57:a1:9b:54:24:5e:48:c2:
                    41:44:9b:f3:d1:a4:08:57:dc:c1:a9:b0:3a:0f:9f:
                    5f:7d:77:7e:b0:c5:01:fe:d1:5f:cc:b4:64:7e:73:
                    a0:60:2c:a2:89:50:9d:6f:2d:79:15:be:52:d7:92:
                    02:87:fd:c7:26:d3:7d:0d:25:16:b2:ac:ed:3b:e5:
                    70:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                52:C2:C0:C0:B9:E1:11:DF:F4:5F:63:E0:9E:78:9A:13:65:EF:D4:87
            X509v3 Authority Key Identifier:
                keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/UsLAwLnhEd_0X2PgnniaE2Xv1Ic.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  14.8.0.0/16

    Signature Algorithm: sha256WithRSAEncryption
         6c:d2:a8:d4:15:55:36:08:15:1f:9c:b4:c0:14:ea:db:f9:7a:
         78:16:5d:eb:4b:56:3c:ee:3c:b8:4a:a8:55:39:50:fa:5f:32:
         16:96:89:d9:ca:88:54:46:b5:21:d7:64:90:76:9f:7e:7b:d4:
         ce:bc:6b:9b:d5:bb:53:60:d1:3d:09:36:de:72:37:7a:1a:df:
         b2:3e:5d:eb:a2:18:f8:0d:0b:ec:4e:06:82:dc:0a:e8:6b:ef:
         d5:80:50:24:51:61:d2:27:d6:c3:d2:7a:23:e9:5d:15:2e:ba:
         8a:d7:04:90:ab:f1:46:74:5d:da:c3:8b:e0:98:4f:a2:a8:0a:
         8b:cb:8d:af:ee:84:54:3d:e5:4c:84:12:30:79:a9:73:18:4b:
         57:11:c7:ab:8a:65:ed:38:84:22:b7:20:12:09:ea:cd:22:9e:
         b3:13:b2:00:f8:83:ba:50:a3:5e:48:5b:8a:52:95:78:3a:2c:
         21:7b:ed:98:a5:24:ad:d1:8a:fa:cc:9a:ab:0d:c1:e7:93:c1:
         f1:9e:e7:d6:1a:26:0b:5d:16:80:db:4c:da:a7:e5:b0:65:b6:
         78:80:f6:65:2b:55:98:0e:e4:79:b4:f9:17:9a:6e:49:12:c9:
         40:c0:dc:c6:57:c9:7a:c7:0d:db:88:ef:c7:c5:32:d9:f1:f5:
         76:38:c2:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:44 2024 by rpki-client on console-fra.rpki-client.org