Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/233/A074Mc8UWjlaOl2OnvtyQ-w7RuU.roa
File:                     A074Mc8UWjlaOl2OnvtyQ-w7RuU.roa (raw, json)
Hash identifier:          m6uE9ShHStzei7W+3ApLJgdQubz5dxWpVUb2vbtYNMs=
Subject key identifier:   03:4E:F8:31:CF:14:5A:39:5A:3A:5D:8E:9E:FB:72:43:EC:3B:46:E5
Certificate issuer:       /CN=D788678E64D29184C23DAAADB594BFD9BAE2405C
Certificate serial:       30
Authority key identifier: D7:88:67:8E:64:D2:91:84:C2:3D:AA:AD:B5:94:BF:D9:BA:E2:40:5C
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/A074Mc8UWjlaOl2OnvtyQ-w7RuU.roa
Signing time:             Fri 15 Sep 2023 07:20:48 +0000
ROA not before:           Fri 15 Sep 2023 07:20:48 +0000
ROA not after:            Sat 14 Sep 2024 01:30:03 +0000
asID:                     7670
IP address blocks:        219.118.32.0/20 maxlen: 20

Validation:               Failed, certificate revoked on Sat 31 Aug 2024 01:30:18 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 48 (0x30)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=D788678E64D29184C23DAAADB594BFD9BAE2405C
        Validity
            Not Before: Sep 15 07:20:48 2023 GMT
            Not After : Sep 14 01:30:03 2024 GMT
        Subject: CN=034EF831CF145A395A3A5D8E9EFB7243EC3B46E5
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:be:ab:cb:a7:d2:51:03:14:64:ec:2b:7e:24:47:
                    91:f8:e3:a2:8d:f8:2f:26:42:b7:03:d0:01:cf:d3:
                    ac:91:9e:14:ae:43:d8:ad:15:81:7c:92:b2:f1:f2:
                    78:e5:40:3a:72:65:f2:66:b1:51:18:29:97:04:71:
                    95:d7:4e:af:00:21:2a:3c:8b:b9:13:e5:60:a6:41:
                    83:99:ad:d0:e4:89:42:50:e6:92:e4:64:0a:b2:34:
                    f0:23:de:05:cc:b5:c2:b5:fb:ab:f7:c7:23:92:75:
                    b0:93:f4:51:85:80:4a:69:d1:2b:b7:13:a5:cf:92:
                    40:d2:eb:09:5d:ea:3f:ea:ea:cb:f9:4c:10:34:17:
                    82:a4:10:69:51:80:95:56:34:0e:00:36:bd:74:79:
                    f0:dc:6f:39:b2:2d:e4:90:e8:03:b7:58:dd:a2:04:
                    59:cc:42:54:de:73:33:5a:62:56:bd:34:b8:d8:6c:
                    da:44:6f:82:be:47:a5:f6:f2:e9:d1:b2:a8:2d:32:
                    7f:c9:27:91:b3:8a:fa:9c:48:fc:fc:74:d9:5a:00:
                    ce:31:0c:db:d7:e0:a7:27:51:5c:e4:b6:de:24:4a:
                    78:2d:99:28:d0:49:b3:91:d1:cc:98:fe:ee:46:2c:
                    56:c9:ee:42:a4:d6:3a:3a:5c:66:a5:f4:c1:df:fe:
                    2f:b9
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:4E:F8:31:CF:14:5A:39:5A:3A:5D:8E:9E:FB:72:43:EC:3B:46:E5
            X509v3 Authority Key Identifier:
                keyid:D7:88:67:8E:64:D2:91:84:C2:3D:AA:AD:B5:94:BF:D9:BA:E2:40:5C

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/14hnjmTSkYTCPaqttZS_2briQFw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/14hnjmTSkYTCPaqttZS_2briQFw.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/233/A074Mc8UWjlaOl2OnvtyQ-w7RuU.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  219.118.32.0/20

    Signature Algorithm: sha256WithRSAEncryption
         3b:16:12:eb:80:36:07:96:c5:38:d9:b7:85:73:5d:75:1d:0f:
         a0:35:e2:94:5a:99:f2:67:38:e3:7f:bb:27:d1:15:d3:ef:7a:
         80:24:1e:9f:bd:c5:f8:d9:a4:d4:b2:40:e3:60:67:07:ca:f3:
         3a:b4:98:d8:05:ae:ad:44:17:d9:d8:94:b0:98:1f:e7:cf:5c:
         e3:13:dd:4e:92:23:3e:5d:b8:78:dd:16:63:73:00:3c:9d:6a:
         8e:2e:18:2c:91:c3:ba:ac:a7:c9:8f:9a:1c:80:f1:ad:1d:4e:
         ef:97:99:60:51:9d:fa:4f:8a:ea:4e:d0:b3:03:21:e9:d0:44:
         3a:5a:4e:46:28:85:7d:6f:3a:5f:24:f5:1f:c1:9f:10:fd:8d:
         1d:94:50:76:b3:0b:78:b0:52:f6:be:44:dd:fb:d7:85:e0:06:
         31:84:59:34:49:dd:2c:13:08:ae:67:58:50:0f:79:db:60:5d:
         2c:e1:58:10:97:71:ea:0c:86:44:2f:d5:98:78:48:2e:5f:82:
         91:45:57:ba:a5:15:89:cf:92:45:d2:dd:7d:7f:a2:55:a4:be:
         fc:50:30:29:f7:94:38:4f:7c:48:27:a6:d1:51:94:13:4c:27:
         64:b0:d7:e3:8a:50:17:45:0e:2a:e0:25:c3:91:9b:ea:0e:40:
         a6:24:87:3b
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBMDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhENzg4
Njc4RTY0RDI5MTg0QzIzREFBQURCNTk0QkZEOUJBRTI0MDVDMB4XDTIzMDkxNTA3
MjA0OFoXDTI0MDkxNDAxMzAwM1owMzExMC8GA1UEAxMoMDM0RUY4MzFDRjE0NUEz
OTVBM0E1RDhFOUVGQjcyNDNFQzNCNDZFNTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAL6ry6fSUQMUZOwrfiRHkfjjoo34LyZCtwPQAc/TrJGeFK5D2K0V
gXySsvHyeOVAOnJl8maxURgplwRxlddOrwAhKjyLuRPlYKZBg5mt0OSJQlDmkuRk
CrI08CPeBcy1wrX7q/fHI5J1sJP0UYWASmnRK7cTpc+SQNLrCV3qP+rqy/lMEDQX
gqQQaVGAlVY0DgA2vXR58NxvObIt5JDoA7dY3aIEWcxCVN5zM1piVr00uNhs2kRv
gr5Hpfby6dGyqC0yf8knkbOK+pxI/Px02VoAzjEM29fgpydRXOS23iRKeC2ZKNBJ
s5HRzJj+7kYsVsnuQqTWOjpcZqX0wd/+L7kCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBQDTvgxzxRaOVo6XY6e+3JD7DtG5TAfBgNVHSMEGDAWgBTXiGeOZNKRhMI9qq21
lL/ZuuJAXDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMjMzLzE0aG5qbVRTa1lUQ1BhcXR0WlNfMmJyaVFGdy5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwLzE0aG5qbVRTa1lUQ1BhcXR0WlNfMmJy
aVFGdy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8yMzMvQTA3NE1jOFVXamxhT2wyT252dHlRLXc3UnVVLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBNt2IDANBgkqhkiG9w0BAQsFAAOCAQEAOxYS64A2B5bFONm3hXNddR0PoDXi
lFqZ8mc443+7J9EV0+96gCQen73F+Nmk1LJA42BnB8rzOrSY2AWurUQX2diUsJgf
589c4xPdTpIjPl24eN0WY3MAPJ1qji4YLJHDuqynyY+aHIDxrR1O75eZYFGd+k+K
6k7QswMh6dBEOlpORiiFfW86XyT1H8GfEP2NHZRQdrMLeLBS9r5E3fvXheAGMYRZ
NEndLBMIrmdYUA9522BdLOFYEJdx6gyGRC/VmHhILl+CkUVXuqUVic+SRdLdfX+i
VaS+/FAwKfeUOE98SCem0VGUE0wnZLDX44pQF0UOKuAlw5Gb6g5ApiSHOw==
-----END CERTIFICATE-----
Generated at Sat Aug 31 04:06:43 2024 by rpki-client on console-fra.rpki-client.org