Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/454/bk5lKN9BP5X7KoGVtRtw_Jl0_Co.roa
File:                     bk5lKN9BP5X7KoGVtRtw_Jl0_Co.roa (raw, json)
Hash identifier:          OIJm7GAhVLGCcPZiHxh/bteJcw3g+KQch0MqOJj6xjM=
Subject key identifier:   6E:4E:65:28:DF:41:3F:95:FB:2A:81:95:B5:1B:70:FC:99:74:FC:2A
Certificate issuer:       /CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0
Certificate serial:       29
Authority key identifier: AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/bk5lKN9BP5X7KoGVtRtw_Jl0_Co.roa
Signing time:             Fri 29 Sep 2023 06:36:55 +0000
ROA not before:           Fri 29 Sep 2023 06:36:55 +0000
ROA not after:            Sat 14 Sep 2024 01:30:03 +0000
asID:                     10000
IP address blocks:        202.228.240.0/20 maxlen: 20

Validation:               Failed, certificate revoked on Sat 31 Aug 2024 01:31:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 41 (0x29)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=AD4741F0349FBC15A708E28A2CE307906CAC5DE0
        Validity
            Not Before: Sep 29 06:36:55 2023 GMT
            Not After : Sep 14 01:30:03 2024 GMT
        Subject: CN=6E4E6528DF413F95FB2A8195B51B70FC9974FC2A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:47:86:8d:bf:1a:14:44:98:e0:0c:fb:22:0e:
                    9c:10:5a:00:ee:dc:cd:12:52:3d:8b:53:de:33:3f:
                    49:81:89:7f:2b:0b:ad:0e:4a:8f:5d:62:66:83:6d:
                    68:87:f5:0b:09:65:ae:22:9c:06:98:6e:4c:29:89:
                    37:af:19:ec:b2:14:bc:21:e3:b5:90:f9:00:f5:ea:
                    20:b2:2f:44:c2:71:ba:1b:e6:62:1c:38:0d:e0:0a:
                    60:3b:2f:56:2e:47:eb:25:75:33:93:2a:6a:e0:32:
                    09:d7:af:cc:47:9e:c3:4d:c7:f4:33:ee:b2:c7:1b:
                    d8:aa:a1:39:41:b6:92:87:6d:5c:d5:e5:34:7b:5f:
                    41:6d:34:77:09:37:1f:6e:22:43:55:3c:68:2a:8e:
                    aa:1d:06:d4:95:aa:a9:8b:05:80:08:0d:ac:86:33:
                    ca:57:eb:11:24:eb:04:08:da:83:28:d8:ce:95:af:
                    ff:72:9c:56:e1:88:2f:f1:f2:5d:3f:f3:17:2a:0e:
                    bf:58:63:4d:59:d3:15:a5:83:1a:e3:10:82:29:b5:
                    0b:26:59:25:67:34:04:85:4c:10:62:dc:75:61:22:
                    c2:0f:e7:96:5d:9a:e9:a7:1a:2c:ad:7d:3c:4a:bb:
                    4a:b1:5e:57:84:43:8c:91:60:4d:37:6e:df:4b:1e:
                    9c:81
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                6E:4E:65:28:DF:41:3F:95:FB:2A:81:95:B5:1B:70:FC:99:74:FC:2A
            X509v3 Authority Key Identifier:
                keyid:AD:47:41:F0:34:9F:BC:15:A7:08:E2:8A:2C:E3:07:90:6C:AC:5D:E0

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/rUdB8DSfvBWnCOKKLOMHkGysXeA.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/rUdB8DSfvBWnCOKKLOMHkGysXeA.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/454/bk5lKN9BP5X7KoGVtRtw_Jl0_Co.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.228.240.0/20

    Signature Algorithm: sha256WithRSAEncryption
         55:91:cc:49:b8:43:39:25:41:25:a0:ca:a7:cc:c6:5d:d9:44:
         e5:cb:b6:90:9d:79:21:d7:83:79:9e:a9:5d:91:af:1f:e1:51:
         e5:01:66:76:af:3c:bf:00:49:a9:c7:f8:7d:a6:d8:50:f0:f0:
         f3:05:fd:a9:69:99:81:3c:2d:a9:7a:ec:81:69:dc:ad:1c:83:
         80:89:ea:d4:ba:54:c3:d8:d1:2d:3b:f1:2f:9c:9e:dc:91:35:
         8d:fe:e8:39:60:07:79:09:6e:36:48:ff:ba:8a:37:c4:87:d3:
         03:83:55:e8:6c:77:3e:f6:d4:2a:c1:6d:91:39:23:95:8e:eb:
         1d:0c:60:8b:85:72:d6:60:d9:a5:3f:cf:22:8d:24:68:5a:ed:
         30:05:2f:f1:c6:f4:ad:12:75:bc:5b:b9:99:d0:eb:75:68:1a:
         f5:bf:a5:23:a1:22:47:42:a8:5f:5f:db:57:b1:ac:8c:b4:6f:
         91:b5:2d:26:ca:2a:0d:d4:be:8c:c8:25:c6:10:48:f0:ec:17:
         b2:a7:09:90:d6:90:8e:6c:87:b1:21:af:28:ba:17:6f:ff:39:
         dd:78:53:9e:d6:ec:d7:c9:84:69:85:b1:49:6a:14:c5:0a:40:
         d4:27:4b:0e:15:0f:94:e4:a4:44:f3:67:51:b7:99:2c:83:2c:
         b9:50:06:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 04:06:43 2024 by rpki-client on console-fra.rpki-client.org