Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/31zGeY1fAxPSp-dG4Tt_tSQFHH0.roa
File:                     31zGeY1fAxPSp-dG4Tt_tSQFHH0.roa (raw, json)
Hash identifier:          fa6BdHFKw702eaiBCdJQ82E3KqKZLoJll3Y5/mq9MW4=
Subject key identifier:   DF:5C:C6:79:8D:5F:03:13:D2:A7:E7:46:E1:3B:7F:B5:24:05:1C:7D
Certificate issuer:       /CN=C60076FC28F04DEB9817A3482226942CBEF1F80D
Certificate serial:       04
Authority key identifier: C6:00:76:FC:28:F0:4D:EB:98:17:A3:48:22:26:94:2C:BE:F1:F8:0D
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xgB2_CjwTeuYF6NIIiaULL7x-A0.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/31zGeY1fAxPSp-dG4Tt_tSQFHH0.roa
Signing time:             Thu 18 Jan 2024 03:19:27 +0000
ROA not before:           Thu 18 Jan 2024 03:19:27 +0000
ROA not after:            Thu 16 Jan 2025 05:46:42 +0000
asID:                     0
IP address blocks:        202.244.202.0/23 maxlen: 23

Validation:               Failed, certificate revoked on Fri 19 Jul 2024 09:21:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 4 (0x4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C60076FC28F04DEB9817A3482226942CBEF1F80D
        Validity
            Not Before: Jan 18 03:19:27 2024 GMT
            Not After : Jan 16 05:46:42 2025 GMT
        Subject: CN=DF5CC6798D5F0313D2A7E746E13B7FB524051C7D
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c7:56:47:5f:8b:6e:17:6a:d5:22:fe:b0:98:ce:
                    f5:02:d1:09:c4:62:58:06:86:50:fd:8f:d3:92:b9:
                    6a:7d:62:19:9e:62:50:b1:02:20:14:c2:15:fa:7d:
                    8c:d1:8d:28:fd:d1:47:8b:10:60:c9:ca:6d:6d:5e:
                    c1:a3:49:70:05:9a:a3:0b:de:3e:92:3a:f2:01:69:
                    c6:c0:dc:c0:0c:06:ba:1e:4f:bd:76:71:96:9d:c7:
                    2a:7b:6a:ff:99:21:ea:0f:92:68:d3:6d:3e:66:bf:
                    76:14:4d:3c:f1:17:81:20:15:a3:11:7f:90:a0:cf:
                    b9:49:65:68:5a:7d:bd:c9:51:b9:7b:55:1b:e9:29:
                    f2:75:46:57:6f:ca:4a:5d:23:05:c3:cb:ea:99:9e:
                    99:84:7b:d5:81:67:1d:4e:25:27:a6:2d:bb:2b:11:
                    52:f5:c4:d9:62:55:5e:c8:54:61:05:4c:dc:80:c0:
                    85:de:09:e1:22:d9:57:64:24:69:75:e8:27:08:f0:
                    8c:a7:ac:82:3a:0b:2b:84:d4:c1:c6:74:bf:0e:24:
                    15:e9:9b:b0:7e:a1:7a:35:c6:17:7c:17:cd:67:7f:
                    4b:02:e0:b3:64:85:a2:ed:39:4a:2d:d9:b1:70:a5:
                    56:c3:90:6a:92:e0:5e:4a:27:c0:28:c1:a1:bb:40:
                    da:25
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DF:5C:C6:79:8D:5F:03:13:D2:A7:E7:46:E1:3B:7F:B5:24:05:1C:7D
            X509v3 Authority Key Identifier:
                keyid:C6:00:76:FC:28:F0:4D:EB:98:17:A3:48:22:26:94:2C:BE:F1:F8:0D

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/xgB2_CjwTeuYF6NIIiaULL7x-A0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xgB2_CjwTeuYF6NIIiaULL7x-A0.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/31zGeY1fAxPSp-dG4Tt_tSQFHH0.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.244.202.0/23

    Signature Algorithm: sha256WithRSAEncryption
         e3:08:cc:43:4a:9c:78:db:4a:05:5f:5f:3d:d9:46:34:bd:12:
         c5:6e:9e:84:43:04:61:cf:ca:46:e3:d3:f7:ee:f2:20:5a:16:
         89:78:1b:8e:8a:b9:36:71:24:20:04:db:d0:aa:0d:d1:31:b7:
         7c:dd:7e:ae:c7:4a:d7:f5:18:d3:90:e1:c0:71:19:46:4d:55:
         7b:d1:3b:e5:4b:c6:fd:d4:f4:9a:9e:75:bc:9b:02:78:77:14:
         5d:24:fe:67:84:4f:e4:f4:8d:a3:6f:81:6d:1b:0e:1c:34:0e:
         27:33:82:b4:b3:47:51:7c:b2:2e:20:d2:5b:0d:37:8c:a4:65:
         7f:24:ee:fb:ab:a2:50:9a:dd:af:91:b3:77:9b:f5:c7:30:82:
         e6:7b:a0:f7:54:19:b5:6d:80:a7:6f:99:4d:96:1c:dd:b3:5a:
         69:1a:47:52:0c:7c:8c:ee:b8:a6:f4:b7:90:62:19:9f:5f:23:
         24:d1:f5:d1:9c:d2:4f:0d:bd:69:f5:87:89:06:5d:a6:6c:a3:
         f7:1b:b2:08:cf:ee:a7:5a:8b:a1:de:76:1f:97:45:15:48:20:
         65:9b:2d:39:eb:70:2a:91:72:89:2f:0f:58:a1:93:ff:47:fa:
         e2:e4:70:aa:1e:74:b6:41:d5:6a:e8:09:33:6b:3e:4f:0d:2f:
         b4:49:36:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 19 12:04:49 2024 by rpki-client on console-ams.rpki-client.org