Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/BWGLp5GlS7XhMKA6Pi8dLc27ba8.roa
File:                     BWGLp5GlS7XhMKA6Pi8dLc27ba8.roa (raw, json)
Hash identifier:          p/1FjgT0M9HiYrqebWE7YdiOfhHQX8Es61Eg507F8fU=
Subject key identifier:   05:61:8B:A7:91:A5:4B:B5:E1:30:A0:3A:3E:2F:1D:2D:CD:BB:6D:AF
Certificate issuer:       /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial:       04C1
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BWGLp5GlS7XhMKA6Pi8dLc27ba8.roa
Signing time:             Thu 27 Jul 2023 16:48:14 +0000
ROA not before:           Thu 27 Jul 2023 16:48:14 +0000
ROA not after:            Sun 14 Jul 2024 01:30:03 +0000
asID:                     9605
IP address blocks:        220.210.100.0/22 maxlen: 22

Validation:               Failed, certificate revoked on Sun 30 Jun 2024 01:40:23 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1217 (0x4c1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
        Validity
            Not Before: Jul 27 16:48:14 2023 GMT
            Not After : Jul 14 01:30:03 2024 GMT
        Subject: CN=05618BA791A54BB5E130A03A3E2F1D2DCDBB6DAF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c5:ec:ef:08:08:a9:e7:7e:75:1e:2e:2d:c0:cf:
                    b3:f4:12:2d:6f:ad:0a:88:d9:13:12:96:da:3d:b5:
                    45:19:38:1a:c7:64:5a:f1:b1:c5:2a:d9:16:28:87:
                    65:a2:be:e4:10:ff:28:be:f6:27:3f:af:ef:23:bc:
                    d4:b6:97:e0:bb:ae:6d:81:5f:a2:c1:a2:be:4c:33:
                    28:8a:7d:60:bc:f5:a5:20:c1:59:99:fb:5c:2b:69:
                    6c:95:72:84:c1:bc:ed:52:16:f9:22:3a:bc:be:af:
                    e8:67:a3:6e:8e:06:da:a8:c7:3f:19:15:ed:de:c4:
                    d9:42:d5:47:c9:62:4c:0c:8a:e6:6a:52:1b:af:d7:
                    ba:1b:2b:82:67:35:b1:63:ba:cf:08:aa:3b:d5:cf:
                    16:a8:16:4a:22:03:ec:8c:e7:40:c1:b2:60:48:86:
                    7f:ab:3a:67:52:c0:79:99:27:ee:9e:ec:8e:41:b6:
                    7b:d6:3c:0d:43:92:58:68:4f:62:f6:10:da:ee:16:
                    03:17:54:48:91:1f:53:e1:4a:e0:17:f8:45:cd:2e:
                    70:bd:ad:89:75:fd:72:60:b5:de:17:f0:a9:78:b8:
                    36:28:b9:6c:1b:48:2b:84:04:0d:d3:5d:fa:9e:75:
                    d3:a0:8b:cc:2d:04:d3:81:28:fa:93:dd:bc:7a:b5:
                    99:9f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                05:61:8B:A7:91:A5:4B:B5:E1:30:A0:3A:3E:2F:1D:2D:CD:BB:6D:AF
            X509v3 Authority Key Identifier:
                keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/BWGLp5GlS7XhMKA6Pi8dLc27ba8.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  220.210.100.0/22

    Signature Algorithm: sha256WithRSAEncryption
         2e:39:2c:c7:32:55:d8:3f:3b:4b:d8:ac:06:38:68:9b:65:d3:
         4c:91:3b:44:b8:a6:7e:b1:53:29:ee:23:2b:a7:e3:40:42:47:
         70:28:68:2e:12:26:12:e9:c1:ca:43:19:91:b3:30:70:3c:9e:
         06:b9:1d:ee:a1:4f:8a:f4:57:dc:41:4f:58:87:a9:79:bb:70:
         5b:87:e7:a9:32:c6:5d:1e:10:4b:da:4e:1f:8f:74:9d:82:c1:
         5a:54:d1:91:3c:ce:9c:3d:9f:ef:e9:65:29:24:19:ef:77:04:
         fc:3e:8a:44:52:c2:53:b9:9a:03:4c:47:bf:dd:4f:58:47:43:
         e3:82:73:70:fd:7c:38:bc:60:e2:32:19:66:25:17:d4:a4:20:
         08:c8:55:ca:db:16:ce:5e:d0:4a:e9:e7:8e:8d:7e:1b:42:f5:
         75:ab:d1:61:df:15:ea:3e:8e:ca:d3:da:b1:fd:b9:7b:1f:35:
         10:ef:e5:5a:3a:1c:76:d1:0d:44:c0:59:ce:46:3e:93:8f:36:
         d0:65:c7:99:3e:fd:fc:98:2b:34:7c:9b:ae:99:8c:71:5f:b6:
         9c:b7:f1:50:cd:96:d1:0c:1a:cb:69:38:23:ff:97:34:5b:9e:
         71:8a:16:26:70:06:24:36:32:8d:05:45:3c:5c:9e:fd:53:06:
         5d:3d:50:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 03:11:25 2024 by rpki-client on console-fra.rpki-client.org