Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30180/DYlixHtO7hWkwhQPyzap1BMjHbo.roa
File:                     DYlixHtO7hWkwhQPyzap1BMjHbo.roa (raw, json)
Hash identifier:          mR0e00xgo8q3Kgo06A62a5ugzbT21yWXbGf9wqVadV0=
Subject key identifier:   0D:89:62:C4:7B:4E:EE:15:A4:C2:14:0F:CB:36:A9:D4:13:23:1D:BA
Certificate issuer:       /CN=618932F641D650DC860D7411AC8AEB6C35C89D04
Certificate serial:       02
Authority key identifier: 61:89:32:F6:41:D6:50:DC:86:0D:74:11:AC:8A:EB:6C:35:C8:9D:04
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/YYky9kHWUNyGDXQRrIrrbDXInQQ.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30180/DYlixHtO7hWkwhQPyzap1BMjHbo.roa
Signing time:             Tue 09 Apr 2024 04:30:32 +0000
ROA not before:           Tue 09 Apr 2024 04:30:32 +0000
ROA not after:            Wed 09 Apr 2025 04:23:35 +0000
asID:                     7690
IP address blocks:        2407:d600::/32 maxlen: 128

Validation:               Failed, certificate revoked on Mon 15 Apr 2024 03:53:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 2 (0x2)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=618932F641D650DC860D7411AC8AEB6C35C89D04
        Validity
            Not Before: Apr  9 04:30:32 2024 GMT
            Not After : Apr  9 04:23:35 2025 GMT
        Subject: CN=0D8962C47B4EEE15A4C2140FCB36A9D413231DBA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:b7:d0:af:21:f4:4f:16:7b:93:db:c5:42:8d:07:
                    21:90:de:ba:f6:67:b6:44:7f:1f:d7:08:16:82:01:
                    71:ba:2c:37:df:23:57:52:6b:19:64:c0:77:15:4e:
                    d1:3b:09:37:1b:de:c0:07:30:f6:21:48:a8:c0:6c:
                    b6:97:b2:87:65:d9:a5:18:c7:cd:a4:b6:19:25:16:
                    9e:68:73:09:3d:54:b7:3b:cb:8b:30:07:a3:64:11:
                    2e:3b:9d:a5:25:10:eb:6f:f7:8a:d0:17:bc:af:49:
                    20:6a:f2:e7:57:fd:39:60:09:d3:b0:9e:6d:bc:14:
                    d7:14:f3:b2:9c:ba:d7:da:7f:73:32:12:8a:9c:d4:
                    59:05:5d:15:9e:9c:b9:1b:66:cc:a7:4f:cf:8a:17:
                    20:81:80:82:85:36:e5:4b:2f:83:11:9f:d3:d3:12:
                    fe:49:2c:0e:36:06:f6:b2:ec:ab:3d:f3:01:fa:61:
                    4c:1c:bd:9b:eb:07:6a:6e:98:f5:e0:ad:6e:e9:e0:
                    78:9a:fb:2d:be:62:61:79:1f:08:c6:06:92:ec:66:
                    15:87:01:a8:e8:72:01:bd:1f:19:86:42:c7:31:a5:
                    44:9c:a4:51:ae:23:e6:0e:cc:07:0f:39:70:ea:5c:
                    00:8d:66:4c:82:fe:71:69:96:c0:32:5b:69:81:a1:
                    81:09
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                0D:89:62:C4:7B:4E:EE:15:A4:C2:14:0F:CB:36:A9:D4:13:23:1D:BA
            X509v3 Authority Key Identifier:
                keyid:61:89:32:F6:41:D6:50:DC:86:0D:74:11:AC:8A:EB:6C:35:C8:9D:04

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30180/YYky9kHWUNyGDXQRrIrrbDXInQQ.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/YYky9kHWUNyGDXQRrIrrbDXInQQ.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30180/DYlixHtO7hWkwhQPyzap1BMjHbo.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv6:
                  2407:d600::/32

    Signature Algorithm: sha256WithRSAEncryption
         56:8b:78:3f:23:52:4b:27:7c:e2:7f:72:b6:b5:0d:c1:dc:bc:
         2b:77:ca:76:fa:99:83:2a:e6:73:29:f2:e2:a1:cc:31:23:84:
         7e:52:06:41:28:9c:c1:f8:61:25:b8:95:7f:1a:21:6f:17:c6:
         4a:10:db:64:5d:b9:ea:fb:e5:3e:d3:b3:fc:1a:d7:bc:66:eb:
         ce:52:b5:6a:7b:68:3a:de:c3:1e:b4:dc:80:d9:e5:29:0a:ca:
         26:4a:b1:f4:b2:44:b3:69:47:e0:65:c3:9b:90:4a:b5:9b:81:
         5e:bb:66:1b:4d:05:a3:dc:e6:41:37:b4:2f:19:76:75:a3:66:
         0a:b5:6d:80:a0:1b:a4:44:7d:ec:33:78:b6:80:56:82:f4:77:
         10:86:a4:79:3c:45:01:77:ee:28:85:19:30:0b:37:60:eb:85:
         91:0f:75:28:51:b0:c7:7e:2c:1e:55:56:90:cf:b3:78:60:15:
         d4:16:94:49:f1:09:6e:fd:0c:d1:ab:c9:d2:ac:5a:0a:a4:0d:
         33:2c:4d:69:41:14:71:cf:0b:2c:34:a9:9a:f6:2e:95:de:5d:
         e6:d4:7b:38:a4:cb:88:b1:97:41:a6:4d:a7:ec:90:da:1a:94:
         47:e9:7e:ce:30:d3:bb:d5:05:21:da:52:c0:20:8e:bc:32:76:
         b7:9f:f1:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:46:00 2024 by rpki-client on console-ams.rpki-client.org