Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/AzKhaeNHgiIekboMIzefa2Lc0-k.roa
File:                     AzKhaeNHgiIekboMIzefa2Lc0-k.roa (raw, json)
Hash identifier:          r0MRvQrpA9mjpMHMoZ8r+HdX99x9FSlvU1IQ79RImcg=
Subject key identifier:   03:32:A1:69:E3:47:82:22:1E:91:BA:0C:23:37:9F:6B:62:DC:D3:E9
Certificate issuer:       /CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Certificate serial:       FE
Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/AzKhaeNHgiIekboMIzefa2Lc0-k.roa
Signing time:             Fri 01 Dec 2023 01:29:48 +0000
ROA not before:           Fri 01 Dec 2023 01:29:48 +0000
ROA not after:            Thu 14 Nov 2024 01:30:03 +0000
asID:                     10021
IP address blocks:        203.167.48.0/20 maxlen: 32

Validation:               Failed, certificate revoked on Thu 31 Oct 2024 01:30:30 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 254 (0xfe)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6
        Validity
            Not Before: Dec  1 01:29:48 2023 GMT
            Not After : Nov 14 01:30:03 2024 GMT
        Subject: CN=0332A169E34782221E91BA0C23379F6B62DCD3E9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a4:f3:50:86:ee:ac:b7:e6:84:72:c4:bd:ad:eb:
                    67:ef:e2:8c:3c:4d:ad:f7:36:0b:d1:d3:aa:ac:e1:
                    19:35:13:93:3a:a8:72:4c:c3:46:4b:71:b9:e2:3b:
                    18:d6:6b:75:ec:60:08:87:c7:c2:ed:4c:69:40:72:
                    f5:30:0b:36:5c:50:26:1c:52:45:2b:cb:c7:22:30:
                    cd:15:54:d1:bc:b4:00:55:f3:b4:85:28:2c:b0:a5:
                    0e:38:83:b2:e4:91:4f:f8:85:79:01:df:b8:73:dc:
                    9b:1d:fb:ef:5b:ec:70:99:ec:17:0a:38:06:c0:a7:
                    6f:4e:f1:a5:21:c0:56:9d:f4:d7:3b:a4:73:77:34:
                    94:00:c1:93:f0:42:2c:bc:4b:89:20:0c:df:ae:0c:
                    2d:d6:45:3a:94:58:9f:55:06:48:13:50:a4:13:46:
                    ad:92:d3:b6:27:b5:e5:80:64:ec:69:c0:5c:75:10:
                    72:3b:4c:b3:f1:6a:e0:2b:9a:ab:3e:3d:55:f9:9a:
                    6e:0d:79:33:9c:2a:ad:6a:40:ad:df:4c:5a:bd:c0:
                    33:32:62:9b:8c:b5:b7:96:c2:8c:13:74:c4:44:19:
                    18:62:b5:5a:4f:1d:43:f5:9c:a3:a6:7f:84:da:12:
                    d4:04:46:2b:9a:62:18:3e:85:14:bb:ff:8a:b4:ac:
                    b2:e3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                03:32:A1:69:E3:47:82:22:1E:91:BA:0C:23:37:9F:6B:62:DC:D3:E9
            X509v3 Authority Key Identifier:
                keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/AzKhaeNHgiIekboMIzefa2Lc0-k.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  203.167.48.0/20

    Signature Algorithm: sha256WithRSAEncryption
         c1:df:93:61:c3:5f:f1:89:77:a8:cc:ca:ee:91:c9:b0:e4:38:
         f5:95:b7:fd:9a:65:b8:b1:8b:b5:ea:ed:01:de:8e:de:72:20:
         c6:6c:6e:1b:db:90:f9:a3:06:a6:c3:ea:51:4e:0c:17:d1:ed:
         17:78:b3:80:90:58:04:1b:30:6b:82:48:3b:31:cb:d5:85:ff:
         61:91:fe:86:f1:f1:e1:05:ba:fb:38:45:c4:72:6d:30:aa:1a:
         67:f8:b2:9e:2e:47:01:4b:72:9e:11:f1:dd:a4:79:f6:e8:27:
         b9:7b:b3:b0:84:1c:05:f4:19:32:dd:9c:8c:0b:9c:a8:69:67:
         b9:23:ad:17:fe:35:32:69:cb:02:4e:d8:ad:5b:02:0b:56:4c:
         c3:62:9c:b7:8b:3e:b1:47:6d:e0:25:68:10:08:d4:20:b6:86:
         76:c8:58:63:62:49:a9:ce:32:8f:71:43:13:99:51:76:c7:49:
         8c:7a:6f:46:b5:1f:41:73:6c:cc:69:10:8b:f2:6f:db:0c:b5:
         5c:12:32:f8:d2:6c:04:37:2e:9b:82:63:f7:e3:44:e7:f7:ee:
         1a:39:5f:24:df:26:61:a5:f1:a9:77:0b:ba:c1:61:09:ec:dc:
         94:a6:1b:6f:cc:f6:0d:5c:b0:a8:97:c5:bd:13:ea:cb:e5:99:
         50:88:d6:e2
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDA2
MTBEQTY4RTkzRUQ1MzhBNDhBNDZDNTIxNDAyNEVENTREMDdGNjAeFw0yMzEyMDEw
MTI5NDhaFw0yNDExMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDAzMzJBMTY5RTM0Nzgy
MjIxRTkxQkEwQzIzMzc5RjZCNjJEQ0QzRTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCk81CG7qy35oRyxL2t62fv4ow8Ta33NgvR06qs4Rk1E5M6qHJM
w0ZLcbniOxjWa3XsYAiHx8LtTGlAcvUwCzZcUCYcUkUry8ciMM0VVNG8tABV87SF
KCywpQ44g7LkkU/4hXkB37hz3Jsd++9b7HCZ7BcKOAbAp29O8aUhwFad9Nc7pHN3
NJQAwZPwQiy8S4kgDN+uDC3WRTqUWJ9VBkgTUKQTRq2S07YnteWAZOxpwFx1EHI7
TLPxauArmqs+PVX5mm4NeTOcKq1qQK3fTFq9wDMyYpuMtbeWwowTdMREGRhitVpP
HUP1nKOmf4TaEtQERiuaYhg+hRS7/4q0rLLjAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUAzKhaeNHgiIekboMIzefa2Lc0+kwHwYDVR0jBBgwFoAUQGENpo6T7VOKSKRs
UhQCTtVNB/YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzQ2OS9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0Vk5CX1kuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9RR0VOcG82VDdWT0tTS1JzVWhRQ1R0
Vk5CX1kuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvNDY5L0F6S2hhZU5IZ2lJZWtib01JemVmYTJMYzAtay5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBATLpzAwDQYJKoZIhvcNAQELBQADggEBAMHfk2HDX/GJd6jMyu6RybDkOPWV
t/2aZbixi7Xq7QHejt5yIMZsbhvbkPmjBqbD6lFODBfR7Rd4s4CQWAQbMGuCSDsx
y9WF/2GR/obx8eEFuvs4RcRybTCqGmf4sp4uRwFLcp4R8d2kefboJ7l7s7CEHAX0
GTLdnIwLnKhpZ7kjrRf+NTJpywJO2K1bAgtWTMNinLeLPrFHbeAlaBAI1CC2hnbI
WGNiSanOMo9xQxOZUXbHSYx6b0a1H0FzbMxpEIvyb9sMtVwSMvjSbAQ3LpuCY/fj
ROf37ho5XyTfJmGl8al3C7rBYQns3JSmG2/M9g1csKiXxb0T6svlmVCI1uI=
-----END CERTIFICATE-----
Generated at Thu Oct 31 05:07:19 2024 by rpki-client on console-ams.rpki-client.org