Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/50/aNSw8EANeYduoj-HvaGcEv9nvvk.roa
File:                     aNSw8EANeYduoj-HvaGcEv9nvvk.roa (raw, json)
Hash identifier:          RpKIYus2nu8ZCGZvlVGnVL0khdcRlizlGn9n4zRiTVo=
Subject key identifier:   68:D4:B0:F0:40:0D:79:87:6E:A2:3F:87:BD:A1:9C:12:FF:67:BE:F9
Certificate issuer:       /CN=1BE3AB0F8DB265ABB2287E75151E7F5A93B2C736
Certificate serial:       36
Authority key identifier: 1B:E3:AB:0F:8D:B2:65:AB:B2:28:7E:75:15:1E:7F:5A:93:B2:C7:36
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/aNSw8EANeYduoj-HvaGcEv9nvvk.roa
Signing time:             Thu 05 Oct 2023 03:29:11 +0000
ROA not before:           Thu 05 Oct 2023 03:29:11 +0000
ROA not after:            Sat 14 Sep 2024 01:30:03 +0000
asID:                     4685
IP address blocks:        210.170.160.0/19 maxlen: 19

Validation:               Failed, certificate revoked on Sat 31 Aug 2024 01:34:09 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 54 (0x36)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=1BE3AB0F8DB265ABB2287E75151E7F5A93B2C736
        Validity
            Not Before: Oct  5 03:29:11 2023 GMT
            Not After : Sep 14 01:30:03 2024 GMT
        Subject: CN=68D4B0F0400D79876EA23F87BDA19C12FF67BEF9
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ca:08:fa:7b:42:2a:d3:a8:23:31:57:75:ce:56:
                    e8:8b:2c:65:3c:fa:d9:9c:5d:05:d0:59:2b:d6:b9:
                    02:e4:b2:be:f5:40:9b:7a:9b:e0:0b:0d:25:29:16:
                    ef:75:bd:74:5d:44:80:46:b9:98:89:d2:70:fe:bc:
                    02:09:57:c8:35:f3:75:f9:3d:8a:7f:22:ab:e3:09:
                    0e:45:d9:6c:72:a8:d7:a9:67:9c:03:f2:27:b6:40:
                    7e:6c:26:31:ba:de:79:0c:29:98:f3:4c:c7:fe:45:
                    1a:7c:14:91:17:49:5b:64:94:0c:14:f8:37:00:45:
                    08:5c:da:48:1a:1f:72:e5:47:63:a8:e8:76:e7:8c:
                    b5:c4:f7:b0:f9:79:b5:99:2a:9f:d1:99:80:f7:2e:
                    05:6a:8e:b3:b1:96:f1:dd:5a:23:4a:72:03:8a:d7:
                    f5:53:e9:25:ed:a1:17:74:3d:a8:bd:43:a4:d9:c1:
                    97:af:71:3f:1d:d1:ca:5f:a2:0e:fa:e6:0e:28:10:
                    37:b6:df:96:84:e2:7a:37:85:08:4d:1f:dd:c6:77:
                    4a:c9:3a:9a:5e:7b:cd:eb:5a:c2:4d:00:8b:89:b1:
                    99:e0:d9:e2:48:40:06:80:dd:2f:c6:3b:6a:89:ba:
                    4d:1f:c1:a2:90:88:40:62:79:af:90:e8:14:77:28:
                    52:ff
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                68:D4:B0:F0:40:0D:79:87:6E:A2:3F:87:BD:A1:9C:12:FF:67:BE:F9
            X509v3 Authority Key Identifier:
                keyid:1B:E3:AB:0F:8D:B2:65:AB:B2:28:7E:75:15:1E:7F:5A:93:B2:C7:36

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/G-OrD42yZauyKH51FR5_WpOyxzY.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/G-OrD42yZauyKH51FR5_WpOyxzY.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/50/aNSw8EANeYduoj-HvaGcEv9nvvk.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  210.170.160.0/19

    Signature Algorithm: sha256WithRSAEncryption
         e7:62:2c:a5:18:b7:62:1b:6d:7a:30:78:ec:da:20:3b:36:d9:
         5f:b8:62:3d:eb:03:91:d3:cb:d3:4e:5d:6a:4e:d0:c4:ab:e6:
         7c:86:40:87:0e:c2:6f:bf:77:95:88:12:aa:40:e5:72:fa:4f:
         b4:a5:cc:84:f9:b7:43:b7:dd:73:5e:ab:37:33:21:b4:eb:dd:
         0a:a7:fd:75:c0:52:6c:c7:b3:a6:b0:5e:b5:07:8e:4d:e3:65:
         2b:d6:29:8b:26:8f:5b:ea:53:e0:ac:be:96:91:2e:ce:43:c7:
         15:9d:3a:2d:d1:80:af:63:73:5c:99:d4:2d:d9:ce:af:5c:47:
         28:5d:a9:3f:58:fa:cf:e0:5f:61:f5:01:8c:ba:dc:63:2f:5c:
         16:46:ce:c5:75:68:f5:d1:9d:09:e8:8a:b0:6b:73:38:84:d4:
         d5:ab:f7:b5:db:6f:9f:44:c5:ce:d6:3c:cf:20:e5:04:ec:ec:
         23:13:2c:74:ad:1f:35:66:a9:28:b7:45:53:13:0d:b7:18:f1:
         7c:72:b3:b8:60:ad:b0:02:50:a9:62:9a:14:1f:ab:e6:d9:32:
         fc:1d:f7:f3:f8:8b:e0:a7:ba:9a:b8:7c:63:b7:bc:4b:43:42:
         f8:8a:6a:20:72:dd:6b:63:80:ba:42:b0:3d:c8:80:6b:9b:11:
         68:02:aa:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 04:06:43 2024 by rpki-client on console-fra.rpki-client.org