Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/7sI-ia_uJK_5S-1KKZkG3ULbUNQ.roa
File:                     7sI-ia_uJK_5S-1KKZkG3ULbUNQ.roa (raw, json)
Hash identifier:          m7b01NmWkfs098ywjiz7E6qB1lQORd12yrOEVcM8xiI=
Subject key identifier:   EE:C2:3E:89:AF:EE:24:AF:F9:4B:ED:4A:29:99:06:DD:42:DB:50:D4
Certificate issuer:       /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Certificate serial:       01C4
Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/7sI-ia_uJK_5S-1KKZkG3ULbUNQ.roa
Signing time:             Sun 01 Oct 2023 01:38:18 +0000
ROA not before:           Sun 01 Oct 2023 01:38:18 +0000
ROA not after:            Sat 14 Sep 2024 01:30:03 +0000
asID:                     9617
IP address blocks:        61.125.64.0/18 maxlen: 24

Validation:               Failed, certificate revoked on Sat 31 Aug 2024 01:42:55 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 452 (0x1c4)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
        Validity
            Not Before: Oct  1 01:38:18 2023 GMT
            Not After : Sep 14 01:30:03 2024 GMT
        Subject: CN=EEC23E89AFEE24AFF94BED4A299906DD42DB50D4
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:b6:04:e1:60:c4:b0:5e:64:f5:ac:63:b6:30:
                    ce:0e:0c:44:0c:db:37:3a:fe:d7:b9:e8:07:12:b6:
                    68:53:c1:61:c8:9b:1f:5e:4f:36:fa:d0:dd:4e:b4:
                    ff:12:08:f6:6d:4a:f4:3c:74:62:af:00:6b:bd:a1:
                    9c:d0:03:56:9d:69:77:5f:79:4d:b1:db:e2:f9:19:
                    b6:82:b9:97:19:92:70:b1:de:1b:44:8d:1c:93:e6:
                    97:69:fa:a4:cc:e3:b4:c1:68:ae:86:e2:ce:8d:6e:
                    82:57:62:8b:01:d8:b3:34:28:e4:a7:2e:81:b2:b7:
                    24:a7:97:ff:76:80:08:2f:b3:3d:80:fb:aa:3c:65:
                    8e:a1:16:e8:b2:dc:65:7f:f1:da:1b:8e:25:39:a0:
                    b0:ae:1b:f7:f8:19:00:35:36:6f:e7:3a:50:51:1a:
                    43:cb:e5:6b:f7:84:29:e8:3a:4f:29:3a:6c:49:c3:
                    c9:17:72:c5:b0:ef:db:a0:00:15:04:5c:a2:15:30:
                    79:10:50:0d:4b:34:39:03:fb:f4:08:6e:f3:73:e0:
                    74:20:79:ce:ae:a0:98:55:c9:51:16:01:ae:10:53:
                    0d:ee:2c:21:53:bc:37:f0:90:69:08:0a:2f:fb:07:
                    10:53:db:0f:db:d6:49:f0:5d:6b:e8:0f:78:48:fa:
                    44:df
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                EE:C2:3E:89:AF:EE:24:AF:F9:4B:ED:4A:29:99:06:DD:42:DB:50:D4
            X509v3 Authority Key Identifier:
                keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/7sI-ia_uJK_5S-1KKZkG3ULbUNQ.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  61.125.64.0/18

    Signature Algorithm: sha256WithRSAEncryption
         de:a7:cf:ca:3e:cd:5c:d1:65:8b:80:c2:17:a5:a4:c7:a0:2f:
         af:4b:ed:e4:93:30:ab:6d:ea:af:4a:5b:4a:9a:6e:9f:d2:ee:
         ed:1f:aa:97:8f:2a:2c:1f:48:1b:86:3a:b9:d7:dc:cb:f3:cf:
         f0:da:8a:44:92:6f:d0:6e:7a:7a:c4:74:c9:c2:9f:e9:7b:87:
         a7:91:06:3e:95:02:b4:b2:33:3b:6f:b9:46:3f:59:d1:4f:ed:
         9e:04:e7:ba:c6:34:9a:c1:70:da:e8:1c:6c:32:9b:cc:3c:b5:
         a6:32:63:14:d9:9e:f2:da:5d:d9:8f:9e:1c:22:11:a6:f5:cd:
         7a:82:33:61:4e:63:3b:5d:e5:42:b2:7a:52:e2:b9:e6:8e:b4:
         a0:32:06:ff:0e:05:fd:94:c6:1f:81:1e:38:77:0c:60:18:21:
         4f:f8:a4:dd:e0:e7:11:2b:f9:af:22:0a:34:5e:aa:74:06:35:
         85:dd:97:4e:3d:3b:81:f8:da:98:f7:a1:6a:c1:f2:fe:44:10:
         a9:92:53:8c:58:a3:10:2f:c7:06:f7:8b:38:47:64:37:39:a2:
         cd:9f:24:00:17:a4:9e:9f:10:6d:c8:b5:03:2b:9f:8b:42:5f:
         ec:2d:bd:48:d5:b6:45:4d:5b:51:be:2d:48:36:1a:c3:60:6f:
         ce:00:f7:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 04:11:55 2024 by rpki-client on console-ams.rpki-client.org