Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/STNPKKd4GseDTNb0pzvgB3VlImw.roa
File:                     STNPKKd4GseDTNb0pzvgB3VlImw.roa (raw, json)
Hash identifier:          YC0M9vpdfuG5D4lanejAQl57yCkQqbj+cX0KL1FAmmI=
Subject key identifier:   49:33:4F:28:A7:78:1A:C7:83:4C:D6:F4:A7:3B:E0:07:75:65:22:6C
Certificate issuer:       /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial:       0595
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/STNPKKd4GseDTNb0pzvgB3VlImw.roa
Signing time:             Thu 27 Jul 2023 16:58:18 +0000
ROA not before:           Thu 27 Jul 2023 16:58:18 +0000
ROA not after:            Sun 14 Jul 2024 01:30:03 +0000
asID:                     9605
IP address blocks:        1.79.56.0/21 maxlen: 21

Validation:               Failed, certificate revoked on Sun 30 Jun 2024 01:52:42 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1429 (0x595)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
        Validity
            Not Before: Jul 27 16:58:18 2023 GMT
            Not After : Jul 14 01:30:03 2024 GMT
        Subject: CN=49334F28A7781AC7834CD6F4A73BE0077565226C
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:0a:40:fe:0f:7f:e3:0d:ec:66:e5:96:5d:39:
                    b1:26:da:f9:02:d2:da:97:d2:8f:7d:68:0f:a2:b9:
                    7a:e9:77:7a:16:29:44:78:20:0e:99:d9:1b:b1:ca:
                    97:38:27:43:00:1d:e3:ee:e3:ab:a3:31:71:c5:b4:
                    bc:af:58:f6:01:4e:8d:30:44:bd:7f:86:42:6f:f4:
                    30:41:8a:6d:9d:a3:46:54:4b:b7:35:d2:11:9f:89:
                    d9:3b:bd:9c:27:1a:35:87:2b:12:12:68:70:4f:7f:
                    5c:d5:de:49:dc:d0:d7:43:3f:54:35:16:9a:29:da:
                    a2:8d:2d:e2:ac:f3:13:d6:81:78:c4:c2:15:6b:e7:
                    3e:1a:7a:b9:bc:d0:4b:81:ca:81:b0:e3:65:07:f5:
                    56:49:c9:8b:65:1a:d4:61:a4:1d:07:9e:0b:c3:78:
                    89:99:8a:25:bd:9c:07:67:8a:37:e7:ec:25:54:65:
                    9e:f3:92:8b:46:f7:39:48:46:71:50:ef:e0:8b:f1:
                    a5:55:00:94:ed:ae:b7:21:fa:c2:0b:15:a7:3c:4a:
                    82:27:e5:54:32:52:30:79:68:94:75:6c:af:41:e5:
                    9f:0e:98:6c:63:0a:86:53:b4:ef:60:1b:7c:f7:46:
                    c1:70:5e:af:14:b1:71:36:14:ea:7d:1b:32:f7:80:
                    6d:39
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                49:33:4F:28:A7:78:1A:C7:83:4C:D6:F4:A7:3B:E0:07:75:65:22:6C
            X509v3 Authority Key Identifier:
                keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/STNPKKd4GseDTNb0pzvgB3VlImw.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  1.79.56.0/21

    Signature Algorithm: sha256WithRSAEncryption
         96:b8:8e:c3:e5:42:3b:2b:b8:46:65:36:b6:79:74:98:32:b9:
         3f:8b:76:bb:4f:f4:53:c9:2a:9c:7a:28:c6:62:31:0f:b7:bb:
         bd:c1:15:87:a1:94:aa:cd:d5:fc:07:fe:9f:9d:52:ba:46:dd:
         fe:7d:92:d6:bb:70:9f:37:a4:18:5f:c9:98:45:74:56:39:d0:
         10:2d:88:02:12:98:b7:c6:da:e8:85:60:f7:44:34:69:8a:07:
         46:ee:73:89:1f:d2:48:c4:d2:4d:56:47:06:03:49:37:01:51:
         bb:fc:a5:8b:be:33:8f:68:aa:67:54:b1:40:9e:ff:0b:ef:dc:
         b1:3f:7e:80:7a:fb:ba:eb:b5:1e:f7:fc:fe:8d:85:59:bb:0f:
         8c:03:7a:23:79:d5:f7:2e:b6:ad:96:24:fa:5d:a5:d4:1b:d8:
         af:73:bc:19:77:42:36:04:04:2e:37:89:e0:03:39:ae:5d:ca:
         09:f3:7e:7d:a4:0f:69:66:72:ac:a5:e0:6e:41:b6:d8:6e:c2:
         aa:45:5e:6a:bb:4c:7a:5b:f2:2c:13:40:f0:bc:eb:07:25:12:
         8b:61:86:02:4b:52:99:45:81:74:b5:44:40:13:37:fa:01:ad:
         09:24:a8:fe:62:a1:8e:e8:9b:45:88:9c:be:8a:9d:fc:19:20:
         ca:df:91:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 04:12:20 2024 by rpki-client on console-fra.rpki-client.org