Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/6/dZoKRbRcVI6rTPrd4RNx9VPrFJ4.roa
File:                     dZoKRbRcVI6rTPrd4RNx9VPrFJ4.roa (raw, json)
Hash identifier:          faj4buECSGri9gLJ+YeOW4O+BNzkllQ1qpGGoLL9bxg=
Subject key identifier:   75:9A:0A:45:B4:5C:54:8E:AB:4C:FA:DD:E1:13:71:F5:53:EB:14:9E
Certificate issuer:       /CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
Certificate serial:       0130
Authority key identifier: 29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/dZoKRbRcVI6rTPrd4RNx9VPrFJ4.roa
Signing time:             Mon 02 Oct 2023 06:21:14 +0000
ROA not before:           Mon 02 Oct 2023 06:21:14 +0000
ROA not after:            Sat 14 Sep 2024 01:30:03 +0000
asID:                     38628
IP address blocks:        163.131.80.0/20 maxlen: 32

Validation:               Failed, certificate revoked on Sat 31 Aug 2024 01:29:15 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 304 (0x130)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=2983CFD5F8CAFA0068D2EBA25ED0F701244B12F9
        Validity
            Not Before: Oct  2 06:21:14 2023 GMT
            Not After : Sep 14 01:30:03 2024 GMT
        Subject: CN=759A0A45B45C548EAB4CFADDE11371F553EB149E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:82:2f:ee:89:9a:f7:b2:a9:97:e5:29:d5:64:
                    21:56:a6:4a:e7:24:93:ca:e0:50:e2:9d:4a:ce:20:
                    ad:ae:db:46:da:76:01:ce:47:7b:94:12:04:c9:7e:
                    8d:4d:17:3b:d7:dd:48:e7:99:06:21:2c:ca:18:c6:
                    f2:28:fc:6c:4c:c1:01:18:44:47:b0:39:5c:2d:09:
                    8c:0c:80:07:03:2b:ec:d5:c4:3a:68:a5:82:7c:f7:
                    f6:65:5b:fe:b2:8e:50:bc:db:7c:39:a4:83:85:c7:
                    67:9f:01:52:7d:c4:2e:75:35:25:69:ee:98:72:f1:
                    a0:07:28:39:9d:ad:55:27:60:a7:1d:a1:6a:c3:a5:
                    65:b7:77:79:bd:b9:9b:32:4c:ce:52:01:10:30:dd:
                    8d:f2:c6:7d:a5:45:2b:57:08:40:db:9e:65:fa:99:
                    5f:93:4a:51:c1:5c:01:aa:3c:e3:4e:9c:c8:ce:9c:
                    53:4a:3c:63:31:50:d2:e8:b7:86:bb:4e:18:ec:4c:
                    0c:78:8f:75:c8:d2:bd:10:7f:2a:29:a0:98:15:4b:
                    14:67:e8:71:8d:27:87:a5:25:86:9d:57:ab:de:2a:
                    9d:df:75:b4:ba:90:c4:96:55:5c:8f:4a:49:f0:43:
                    9d:02:75:69:03:d5:f7:59:a5:e4:7a:c0:15:1b:9a:
                    8f:cd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                75:9A:0A:45:B4:5C:54:8E:AB:4C:FA:DD:E1:13:71:F5:53:EB:14:9E
            X509v3 Authority Key Identifier:
                keyid:29:83:CF:D5:F8:CA:FA:00:68:D2:EB:A2:5E:D0:F7:01:24:4B:12:F9

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/KYPP1fjK-gBo0uuiXtD3ASRLEvk.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/KYPP1fjK-gBo0uuiXtD3ASRLEvk.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/6/dZoKRbRcVI6rTPrd4RNx9VPrFJ4.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  163.131.80.0/20

    Signature Algorithm: sha256WithRSAEncryption
         5a:f0:77:2d:d6:fd:f1:ad:63:ac:77:7a:24:54:b7:b1:60:dc:
         d9:a7:73:de:58:bc:f9:56:46:38:4e:5f:51:25:f1:e9:a3:52:
         fb:29:9a:06:34:3d:c3:19:e4:30:ab:50:45:43:fc:92:2f:63:
         99:de:37:89:98:fb:92:f6:6b:04:6b:fd:6b:7f:31:32:34:cd:
         0d:70:74:e4:ea:28:20:af:41:25:0c:e9:18:26:58:cc:ea:73:
         cb:02:f2:a6:3f:22:0d:36:79:fc:06:bf:59:63:8f:5f:85:b1:
         cd:6a:6b:41:65:99:bb:14:dc:e5:c6:e6:60:ff:4c:a2:76:99:
         cf:8c:f7:77:6f:07:1e:82:7e:93:88:4f:25:15:de:6a:6f:02:
         98:e3:f7:18:31:4f:35:49:51:82:3f:86:42:90:2a:81:17:07:
         cc:61:c3:3f:b9:c1:d2:16:46:c9:06:32:d1:f0:84:bf:f4:be:
         07:8b:61:de:ca:ee:c0:cf:a3:00:b4:c3:d9:f4:01:71:55:96:
         be:40:c0:8f:03:b1:5f:be:af:59:93:65:ec:52:41:71:81:10:
         22:94:54:ee:93:5c:75:b4:fb:b5:f7:2b:61:11:ea:a0:75:b8:
         2f:f5:21:e4:6b:01:7c:a1:2e:27:eb:20:b5:02:23:db:5a:d3:
         7a:bc:44:d2
-----BEGIN CERTIFICATE-----
MIIFBDCCA+ygAwIBAgICATAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk4
M0NGRDVGOENBRkEwMDY4RDJFQkEyNUVEMEY3MDEyNDRCMTJGOTAeFw0yMzEwMDIw
NjIxMTRaFw0yNDA5MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDc1OUEwQTQ1QjQ1QzU0
OEVBQjRDRkFEREUxMTM3MUY1NTNFQjE0OUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSgi/uiZr3sqmX5SnVZCFWpkrnJJPK4FDinUrOIK2u20badgHO
R3uUEgTJfo1NFzvX3UjnmQYhLMoYxvIo/GxMwQEYREewOVwtCYwMgAcDK+zVxDpo
pYJ89/ZlW/6yjlC823w5pIOFx2efAVJ9xC51NSVp7phy8aAHKDmdrVUnYKcdoWrD
pWW3d3m9uZsyTM5SARAw3Y3yxn2lRStXCEDbnmX6mV+TSlHBXAGqPONOnMjOnFNK
PGMxUNLot4a7ThjsTAx4j3XI0r0QfyopoJgVSxRn6HGNJ4elJYadV6veKp3fdbS6
kMSWVVyPSknwQ50CdWkD1fdZpeR6wBUbmo/NAgMBAAGjggIgMIICHDAdBgNVHQ4E
FgQUdZoKRbRcVI6rTPrd4RNx9VPrFJ4wHwYDVR0jBBgwFoAUKYPP1fjK+gBo0uui
XtD3ASRLEvkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBkBgNVHR8EXTBbMFmg
V6BVhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzYvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JMRXZrLmNybDBtBggrBgEF
BQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5p
Yy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvS1lQUDFmakstZ0JvMHV1aVh0RDNBU1JM
RXZrLmNlcjAOBgNVHQ8BAf8EBAMCB4AwgbkGCCsGAQUFBwELBIGsMIGpMF8GCCsG
AQUFBzALhlNyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkx
QTczODEwMDAwLzYvZFpvS1JiUmNWSTZyVFByZDRSTng5VlByRko0LnJvYTBGBggr
BgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3JyZHAv
YXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME
BKODUDANBgkqhkiG9w0BAQsFAAOCAQEAWvB3Ldb98a1jrHd6JFS3sWDc2adz3li8
+VZGOE5fUSXx6aNS+ymaBjQ9wxnkMKtQRUP8ki9jmd43iZj7kvZrBGv9a38xMjTN
DXB05OooIK9BJQzpGCZYzOpzywLypj8iDTZ5/Aa/WWOPX4WxzWprQWWZuxTc5cbm
YP9MonaZz4z3d28HHoJ+k4hPJRXeam8CmOP3GDFPNUlRgj+GQpAqgRcHzGHDP7nB
0hZGyQYy0fCEv/S+B4th3sruwM+jALTD2fQBcVWWvkDAjwOxX76vWZNl7FJBcYEQ
IpRU7pNcdbT7tfcrYRHqoHW4L/Uh5GsBfKEuJ+sgtQIj21rTerxE0g==
-----END CERTIFICATE-----
Generated at Sat Aug 31 04:11:55 2024 by rpki-client on console-ams.rpki-client.org