Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/NNwyojHC9TbRX0CRY07ps8Rts6w.roa
File:                     NNwyojHC9TbRX0CRY07ps8Rts6w.roa (raw, json)
Hash identifier:          LqRx4adlXHtCFl5PpMA0AMIx1kLqQRvS5Z4XAbTvQaA=
Subject key identifier:   34:DC:32:A2:31:C2:F5:36:D1:5F:40:91:63:4E:E9:B3:C4:6D:B3:AC
Certificate issuer:       /CN=A9415FE9377F3F4B8EA838C662C4BCD8DCFCF1BA
Certificate serial:       28
Authority key identifier: A9:41:5F:E9:37:7F:3F:4B:8E:A8:38:C6:62:C4:BC:D8:DC:FC:F1:BA
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qUFf6Td_P0uOqDjGYsS82Nz88bo.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/NNwyojHC9TbRX0CRY07ps8Rts6w.roa
Signing time:             Thu 01 Feb 2024 01:30:05 +0000
ROA not before:           Thu 01 Feb 2024 01:30:05 +0000
ROA not after:            Tue 14 Jan 2025 01:30:02 +0000
asID:                     4694
IP address blocks:        64.56.160.0/19 maxlen: 24

Validation:               Failed, certificate revoked on Mon 28 Oct 2024 07:07:19 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 40 (0x28)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A9415FE9377F3F4B8EA838C662C4BCD8DCFCF1BA
        Validity
            Not Before: Feb  1 01:30:05 2024 GMT
            Not After : Jan 14 01:30:02 2025 GMT
        Subject: CN=34DC32A231C2F536D15F4091634EE9B3C46DB3AC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:ba:a3:22:ad:a0:50:2d:fc:40:96:b8:9f:54:
                    48:ad:06:2a:81:c8:e7:10:d0:62:98:ad:04:4f:29:
                    92:ca:2f:a7:de:40:f9:e8:58:d6:d5:94:15:f6:7a:
                    e8:9d:6e:6d:c8:ef:f2:06:92:6b:9f:e4:fa:7e:07:
                    de:50:56:ca:cd:f1:5e:12:e7:e8:04:52:45:a4:43:
                    e0:17:61:d3:89:bf:9b:5c:02:a0:3b:cb:dc:ee:03:
                    81:b5:dc:f0:2d:a2:e0:d1:3d:d4:73:2f:b7:38:f0:
                    dc:87:0a:ed:a0:76:e5:e8:13:9a:5a:6d:61:f1:3e:
                    60:5d:97:7e:8c:e8:c7:38:d1:d0:32:19:85:fc:9b:
                    36:a1:c6:f5:88:af:6b:fc:0c:c3:db:b0:b4:79:ba:
                    23:1f:83:25:4c:17:a1:d9:dc:ab:76:a7:c0:5a:cf:
                    f6:f7:e1:ce:f0:59:fb:4d:88:0b:c4:54:b7:35:20:
                    ce:5b:1e:9d:8a:b9:fb:f0:f4:d1:9e:a7:f8:de:b0:
                    24:a5:83:18:05:9d:8b:97:e0:ef:d6:4b:42:80:8b:
                    d5:b2:9e:2c:b3:ee:2e:45:8d:99:c6:4d:2d:06:96:
                    03:cb:a2:a3:39:97:be:b3:92:48:75:e8:a7:49:91:
                    9e:d8:48:22:72:9a:b1:24:66:30:17:89:e6:c2:d7:
                    89:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                34:DC:32:A2:31:C2:F5:36:D1:5F:40:91:63:4E:E9:B3:C4:6D:B3:AC
            X509v3 Authority Key Identifier:
                keyid:A9:41:5F:E9:37:7F:3F:4B:8E:A8:38:C6:62:C4:BC:D8:DC:FC:F1:BA

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/qUFf6Td_P0uOqDjGYsS82Nz88bo.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qUFf6Td_P0uOqDjGYsS82Nz88bo.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/NNwyojHC9TbRX0CRY07ps8Rts6w.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  64.56.160.0/19

    Signature Algorithm: sha256WithRSAEncryption
         2b:da:c3:23:e1:95:12:03:f9:7b:17:b2:22:6e:29:d6:ae:85:
         fa:39:95:89:c2:53:dd:a7:95:6d:1f:be:d0:1c:ce:70:e8:a5:
         db:e3:79:e6:50:49:ba:99:7b:08:43:44:71:18:aa:6e:17:a3:
         a9:20:a7:dc:0a:6b:b4:7f:9a:50:6f:a6:93:b9:d9:8a:87:57:
         e9:4b:3d:a2:ed:db:ff:00:72:8c:03:44:c1:b3:f5:1c:49:11:
         37:5d:1a:91:54:08:7f:d7:02:98:cc:0a:3c:e5:13:31:a6:31:
         46:80:5e:8b:ef:ec:4a:56:a1:c0:f5:ff:17:8d:7d:09:9d:ee:
         6e:81:c6:b1:96:ac:bd:d7:1f:9f:ba:36:08:b7:71:8c:49:66:
         31:0e:d6:5c:77:5c:cc:9d:7f:dc:a8:a4:82:7c:20:71:91:da:
         cf:e4:60:16:4e:36:e8:c5:d3:33:bb:dc:a4:24:94:e1:8f:8e:
         72:a5:ea:d2:17:de:c3:e1:1d:b5:7c:a5:02:40:14:80:5c:9f:
         6c:59:a9:fc:88:fc:ae:bf:64:e6:3d:28:b9:49:44:39:c1:3b:
         3f:94:22:9a:56:fc:d3:8b:5f:f8:7a:dd:8a:f4:a2:2c:91:af:
         c6:38:95:00:ec:c9:5f:b3:58:0a:20:73:e8:96:3f:16:de:87:
         7a:99:14:6d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 28 09:40:50 2024 by rpki-client on console-ams.rpki-client.org