Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/F1ahglejCO1RL7K5eTu5ka1JtiM.roa
File:                     F1ahglejCO1RL7K5eTu5ka1JtiM.roa (raw, json)
Hash identifier:          H3WwlWqfcuwkKeCLfLMKM3+O7e3/fZ5pe8hOnRb2hvg=
Subject key identifier:   17:56:A1:82:57:A3:08:ED:51:2F:B2:B9:79:3B:B9:91:AD:49:B6:23
Certificate issuer:       /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D
Certificate serial:       15
Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/F1ahglejCO1RL7K5eTu5ka1JtiM.roa
Signing time:             Tue 02 Apr 2024 00:05:08 +0000
ROA not before:           Tue 02 Apr 2024 00:05:08 +0000
ROA not after:            Sat 15 Mar 2025 01:30:02 +0000
asID:                     2497
IP address blocks:        157.8.50.0/23 maxlen: 23

Validation:               Failed, certificate revoked on Fri 19 Jul 2024 09:21:44 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 21 (0x15)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D
        Validity
            Not Before: Apr  2 00:05:08 2024 GMT
            Not After : Mar 15 01:30:02 2025 GMT
        Subject: CN=1756A18257A308ED512FB2B9793BB991AD49B623
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a9:2c:f8:79:e8:4b:dc:56:5b:89:52:ff:2b:65:
                    be:2c:66:6a:77:59:5e:82:d6:1a:93:5f:f9:7d:c6:
                    a3:10:12:f8:57:80:a2:6a:f6:85:b0:6a:97:4c:a3:
                    36:16:23:cd:a8:04:66:2c:5c:1c:b8:40:c9:d1:7b:
                    66:95:c3:7b:80:47:4a:70:3e:6a:a5:fb:7e:3d:da:
                    ed:89:a6:b4:11:8f:3f:47:36:fd:a0:48:fb:d9:ad:
                    ff:fc:34:88:e0:1c:f3:89:66:39:d9:06:2c:5d:d9:
                    6f:7a:dd:a7:1c:bd:97:d6:a0:a0:25:d5:b5:dc:75:
                    93:3c:ad:96:54:52:14:f5:c2:9d:d2:4d:25:d1:65:
                    c7:96:72:3f:42:90:6a:43:69:e3:2d:31:47:0c:c6:
                    0e:a6:0c:a2:e1:82:2d:ed:2a:bf:82:77:0f:48:83:
                    65:76:7e:46:5b:a6:39:35:03:d8:08:58:5b:ba:d2:
                    88:29:bf:e6:03:ef:bb:9e:29:45:f7:aa:d4:58:9b:
                    e6:cd:28:70:4c:65:3f:0e:b0:b0:59:5d:c3:9f:22:
                    bd:55:dd:0b:77:d1:97:75:5b:d1:f8:d9:b5:bb:ec:
                    a7:1a:b6:10:c9:cc:0a:9a:1f:25:9e:e6:ac:eb:46:
                    21:e9:27:a6:58:d2:e4:77:2c:f1:c5:98:27:3d:00:
                    6a:53
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                17:56:A1:82:57:A3:08:ED:51:2F:B2:B9:79:3B:B9:91:AD:49:B6:23
            X509v3 Authority Key Identifier:
                keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/F1ahglejCO1RL7K5eTu5ka1JtiM.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  157.8.50.0/23

    Signature Algorithm: sha256WithRSAEncryption
         39:a3:57:ae:d5:e1:fc:5b:22:7c:ef:51:e8:e0:dc:c6:83:64:
         e7:1e:0a:77:4a:1c:4f:6f:bd:9d:08:cb:30:3c:62:78:2a:6e:
         89:23:06:88:73:56:7a:7d:3d:c2:3b:83:31:fc:5a:17:ce:78:
         1a:51:9d:f2:63:e9:b6:a9:5f:9d:4e:96:bc:0d:78:fe:e2:66:
         be:2a:7c:5a:e9:bf:a7:9b:1b:0f:8a:61:f7:d9:89:68:3a:32:
         1a:90:eb:77:72:db:02:68:9a:92:9d:fe:ef:5a:10:b1:7b:03:
         52:14:a9:3f:b1:c4:14:c1:6d:ec:a8:fb:b9:e8:06:84:a2:9a:
         86:d4:26:6c:2b:dd:6e:c8:ca:7d:66:c5:a0:25:ae:a5:6d:aa:
         28:42:8c:3c:f3:7b:4c:8d:64:12:1d:63:25:2d:6a:9a:79:d7:
         92:c1:b1:8b:8f:28:b3:1c:71:f8:3a:bb:a8:30:65:0e:b3:90:
         f5:db:3e:2d:5d:a6:bb:a9:ab:f4:bd:6b:74:d9:c2:7d:af:87:
         ef:d7:ac:1c:80:88:e3:0e:61:2c:b5:2a:c9:5a:4c:2d:b3:30:
         a3:4b:b3:b0:5a:46:ad:02:f2:1e:ad:67:25:38:bf:33:e8:8d:
         1a:67:e3:19:84:d2:36:04:5e:91:3c:cf:41:0f:18:8f:33:0e:
         e3:bb:3b:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 19 10:50:53 2024 by rpki-client on console-fra.rpki-client.org