Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/462/BBwCUh_s1Jk37fL9Y-AZtR06DwQ.roa
File:                     BBwCUh_s1Jk37fL9Y-AZtR06DwQ.roa (raw, json)
Hash identifier:          z29W2A8/dsZXzAfriiUWLKPmQ9pFAa42/lCUBVwTVAo=
Subject key identifier:   04:1C:02:52:1F:EC:D4:99:37:ED:F2:FD:63:E0:19:B5:1D:3A:0F:04
Certificate issuer:       /CN=43917B23074524E9E6EA8E40FA4A0672C9620318
Certificate serial:       45
Authority key identifier: 43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/BBwCUh_s1Jk37fL9Y-AZtR06DwQ.roa
Signing time:             Sun 01 Oct 2023 01:29:36 +0000
ROA not before:           Sun 01 Oct 2023 01:29:36 +0000
ROA not after:            Sat 14 Sep 2024 01:30:03 +0000
asID:                     131934
IP address blocks:        133.226.0.0/20 maxlen: 32

Validation:               Failed, certificate revoked on Sat 31 Aug 2024 01:30:04 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 69 (0x45)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=43917B23074524E9E6EA8E40FA4A0672C9620318
        Validity
            Not Before: Oct  1 01:29:36 2023 GMT
            Not After : Sep 14 01:30:03 2024 GMT
        Subject: CN=041C02521FECD49937EDF2FD63E019B51D3A0F04
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:af:10:e3:c1:9e:92:50:d4:f3:79:55:2c:99:f2:
                    64:19:a2:fa:74:e6:93:dc:ff:ca:d3:99:40:94:bb:
                    54:56:bb:18:79:fb:a9:89:f5:84:3d:44:60:19:7a:
                    61:31:6a:75:2d:5f:d0:04:5f:94:78:b6:06:d3:6e:
                    64:dc:e5:2f:19:4a:4d:64:cd:96:31:14:f2:e4:8d:
                    e6:34:20:08:a6:82:5c:c8:66:23:e0:b2:2f:c0:dd:
                    ba:1c:6a:49:d4:60:dd:65:50:d8:1a:88:b7:3e:67:
                    df:e8:2b:b2:b1:3c:9f:0c:a1:46:c7:95:5f:4f:ce:
                    c7:cd:f2:60:98:0d:2a:01:84:66:e1:8f:0a:33:a8:
                    77:76:a5:0a:df:0c:32:da:eb:e8:fe:0a:6f:a7:07:
                    82:56:c5:af:81:79:bf:6f:af:26:d7:90:ae:a8:d0:
                    72:b1:e5:bf:5d:76:62:b4:2a:50:0c:6b:68:a8:34:
                    f1:4c:ad:b8:1a:eb:9c:03:6d:bf:f3:ca:de:59:93:
                    74:2e:c2:89:c7:2e:6a:5a:c4:6f:ce:cc:15:fb:36:
                    98:c6:4f:54:94:20:e0:be:eb:0b:33:ea:7b:67:4f:
                    11:52:6b:6c:66:de:0d:a3:7f:13:0c:07:49:24:50:
                    f8:32:04:38:24:01:10:db:e7:5d:93:b0:c1:19:aa:
                    4b:87
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                04:1C:02:52:1F:EC:D4:99:37:ED:F2:FD:63:E0:19:B5:1D:3A:0F:04
            X509v3 Authority Key Identifier:
                keyid:43:91:7B:23:07:45:24:E9:E6:EA:8E:40:FA:4A:06:72:C9:62:03:18

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/Q5F7IwdFJOnm6o5A-koGcsliAxg.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Q5F7IwdFJOnm6o5A-koGcsliAxg.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/462/BBwCUh_s1Jk37fL9Y-AZtR06DwQ.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  133.226.0.0/20

    Signature Algorithm: sha256WithRSAEncryption
         72:7b:50:35:63:d4:29:0e:20:a1:36:2c:f4:3e:42:53:72:30:
         dd:a8:35:dd:82:5b:cd:7a:4a:4d:e7:af:67:5e:1c:a3:16:5a:
         e8:1a:28:33:3a:e0:87:b6:04:bb:95:0f:e3:13:f5:88:5e:b1:
         aa:6c:89:25:cb:1d:33:55:61:da:a0:ef:b5:5c:a9:6b:35:0a:
         5d:91:33:1d:98:75:21:5b:88:ed:0f:3a:1d:1d:a5:3f:fd:a7:
         70:59:ce:73:05:56:6c:ea:c7:a3:30:a0:14:19:ad:31:da:42:
         42:e5:80:53:54:9a:8f:40:19:e3:60:17:47:07:22:33:5c:d9:
         54:a2:45:4e:8c:64:d2:bf:54:57:91:1f:e3:3f:83:43:b3:53:
         9e:da:4a:45:12:04:fd:8e:09:6c:36:3d:e5:f7:ae:4e:82:17:
         5b:9b:ce:aa:89:6d:ef:f9:ed:57:f9:e2:75:69:56:bc:1c:00:
         95:4b:36:de:03:5f:16:80:e2:42:37:dc:f6:3b:64:61:2b:67:
         ec:42:ab:e3:5a:49:f6:0d:c6:93:8d:db:a0:8e:5a:05:5d:61:
         5b:bb:64:98:11:58:a2:91:01:e0:d3:75:e8:ad:11:90:ef:65:
         c2:cd:2a:5b:09:6a:48:dd:20:ef:7a:f7:de:55:94:a6:03:75:
         52:0b:ef:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 04:06:43 2024 by rpki-client on console-fra.rpki-client.org