Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/k_3HNC1xHP4bcnLCEl_xB4b9_9c.roa
File:                     k_3HNC1xHP4bcnLCEl_xB4b9_9c.roa (raw, json)
Hash identifier:          Qfvdsow0ZKsZWAOCC3MJnpjE9nUKRLSiBWnFegEc4Rs=
Subject key identifier:   93:FD:C7:34:2D:71:1C:FE:1B:72:72:C2:12:5F:F1:07:86:FD:FF:D7
Certificate issuer:       /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5
Certificate serial:       A4
Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/k_3HNC1xHP4bcnLCEl_xB4b9_9c.roa
Signing time:             Tue 01 Aug 2023 01:30:48 +0000
ROA not before:           Tue 01 Aug 2023 01:30:48 +0000
ROA not after:            Sun 14 Jul 2024 01:30:03 +0000
asID:                     19905
IP address blocks:        14.192.32.0/20 maxlen: 24

Validation:               Failed, certificate revoked on Sun 30 Jun 2024 01:28:43 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 164 (0xa4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5
        Validity
            Not Before: Aug  1 01:30:48 2023 GMT
            Not After : Jul 14 01:30:03 2024 GMT
        Subject: CN=93FDC7342D711CFE1B7272C2125FF10786FDFFD7
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:bb:ce:9f:fa:bb:74:69:40:94:5b:87:de:a8:f0:
                    0c:5c:9c:15:ae:5f:2d:06:3a:e6:8a:75:c3:db:18:
                    39:13:88:d6:50:35:26:7f:80:86:d2:8f:3f:59:5a:
                    01:ed:e4:b1:7f:f5:28:c2:da:da:ed:0f:46:3b:c2:
                    89:2d:18:72:1e:14:8d:b0:b8:c9:a0:64:a2:6b:ff:
                    03:44:32:b4:ea:ba:5f:a5:36:6a:6f:b8:03:eb:0f:
                    21:da:d7:5b:df:85:3e:2c:ed:14:d9:3a:76:97:05:
                    a0:75:5a:bf:2c:6b:21:c5:48:ee:2f:73:c0:29:6b:
                    29:c5:e5:9e:60:43:20:3f:cd:be:6e:07:74:27:5e:
                    1f:08:8d:83:a6:f5:a8:be:0e:ca:8e:ea:71:19:69:
                    81:60:ef:15:5e:0a:78:ab:60:61:89:c0:b9:bc:23:
                    09:f1:ec:12:87:ea:9b:d3:c5:d3:4f:46:29:11:f8:
                    64:57:7c:15:77:85:d7:18:6c:e8:d5:55:87:51:90:
                    49:6e:1e:3d:55:0f:f4:6e:fa:a6:96:b3:82:13:76:
                    e4:ef:ab:81:62:f7:53:4f:0a:3c:21:38:98:d1:9e:
                    f4:84:cc:a7:fc:06:0b:ac:51:48:00:d0:f8:2b:ee:
                    ac:2e:23:8b:0e:1b:52:4b:8c:5f:21:9e:52:e3:bc:
                    87:89
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                93:FD:C7:34:2D:71:1C:FE:1B:72:72:C2:12:5F:F1:07:86:FD:FF:D7
            X509v3 Authority Key Identifier:
                keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/k_3HNC1xHP4bcnLCEl_xB4b9_9c.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  14.192.32.0/20

    Signature Algorithm: sha256WithRSAEncryption
         a8:c9:93:97:4d:2c:b5:e3:67:2a:e1:8f:ec:68:73:54:fe:55:
         48:fd:d8:fe:70:0b:18:44:ec:25:02:61:e7:21:91:93:52:7c:
         50:68:01:f9:9a:85:85:9f:88:11:03:3f:de:ff:f2:34:df:7b:
         47:b6:6c:88:ec:e0:41:4e:d8:58:d0:b0:fc:de:4c:08:ed:e6:
         52:6e:6f:85:10:c2:8d:9b:ac:74:99:2b:d6:e9:3b:70:9b:35:
         53:21:fb:ac:7a:1e:2c:63:f2:6c:9f:2f:db:0d:84:a3:fb:96:
         ac:eb:57:54:2a:b4:4d:08:e9:56:26:38:51:a5:83:ff:c8:ce:
         bb:bc:00:57:ab:34:88:91:de:c6:22:f6:c9:69:8a:08:82:6e:
         11:1c:ed:e9:9d:a3:15:61:46:bd:29:aa:4c:74:bd:f1:af:44:
         7a:88:04:30:90:dd:51:83:7d:17:d4:cc:62:94:77:ba:84:8e:
         30:be:84:70:6f:ba:a7:11:ab:0b:06:cc:04:eb:65:f2:3a:75:
         39:ba:f6:4f:ca:df:0d:62:ed:36:4b:ed:af:7e:5f:72:4c:b2:
         27:10:03:16:19:ba:af:9a:13:94:88:91:8d:6a:f7:48:b1:c3:
         f2:34:da:85:b2:6b:92:2e:f5:a5:64:5f:4b:26:49:7e:cd:30:
         b0:74:47:aa
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAKQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0Qz
MTI0MjdGODAwQjgyOTZEQTExNTQwQzhCODZFNUNFMTJGQzZDNTAeFw0yMzA4MDEw
MTMwNDhaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDkzRkRDNzM0MkQ3MTFD
RkUxQjcyNzJDMjEyNUZGMTA3ODZGREZGRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC7zp/6u3RpQJRbh96o8AxcnBWuXy0GOuaKdcPbGDkTiNZQNSZ/
gIbSjz9ZWgHt5LF/9SjC2trtD0Y7woktGHIeFI2wuMmgZKJr/wNEMrTqul+lNmpv
uAPrDyHa11vfhT4s7RTZOnaXBaB1Wr8sayHFSO4vc8ApaynF5Z5gQyA/zb5uB3Qn
Xh8IjYOm9ai+DsqO6nEZaYFg7xVeCnirYGGJwLm8Iwnx7BKH6pvTxdNPRikR+GRX
fBV3hdcYbOjVVYdRkEluHj1VD/Ru+qaWs4ITduTvq4Fi91NPCjwhOJjRnvSEzKf8
BgusUUgA0Pgr7qwuI4sOG1JLjF8hnlLjvIeJAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUk/3HNC1xHP4bcnLCEl/xB4b9/9cwHwYDVR0jBBgwFoAUzTEkJ/gAuCltoRVA
yLhuXOEvxsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzE3My96VEVrSl9nQXVDbHRvUlZBeUxodVhPRXZ4c1UuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC96VEVrSl9nQXVDbHRvUlZBeUxodVhP
RXZ4c1UuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMTczL2tfM0hOQzF4SFA0YmNuTENFbF94QjRiOV85Yy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAQOwCAwDQYJKoZIhvcNAQELBQADggEBAKjJk5dNLLXjZyrhj+xoc1T+VUj9
2P5wCxhE7CUCYechkZNSfFBoAfmahYWfiBEDP97/8jTfe0e2bIjs4EFO2FjQsPze
TAjt5lJub4UQwo2brHSZK9bpO3CbNVMh+6x6Hixj8myfL9sNhKP7lqzrV1QqtE0I
6VYmOFGlg//Izru8AFerNIiR3sYi9slpigiCbhEc7emdoxVhRr0pqkx0vfGvRHqI
BDCQ3VGDfRfUzGKUd7qEjjC+hHBvuqcRqwsGzATrZfI6dTm69k/K3w1i7TZL7a9+
X3JMsicQAxYZuq+aE5SIkY1q90ixw/I02oWya5Iu9aVkX0smSX7NMLB0R6o=
-----END CERTIFICATE-----
Generated at Sun Jun 30 03:11:25 2024 by rpki-client on console-fra.rpki-client.org