Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/PYbQtilqNQuiyQhrKH1tmvQYxt4.roa
File:                     PYbQtilqNQuiyQhrKH1tmvQYxt4.roa (raw, json)
Hash identifier:          qC3AQGkm/2OZKhDgejFM9s7Y8Gdom2mZXrEU+XDBSzo=
Subject key identifier:   3D:86:D0:B6:29:6A:35:0B:A2:C9:08:6B:28:7D:6D:9A:F4:18:C6:DE
Certificate issuer:       /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Certificate serial:       0185
Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/PYbQtilqNQuiyQhrKH1tmvQYxt4.roa
Signing time:             Sun 01 Oct 2023 01:34:31 +0000
ROA not before:           Sun 01 Oct 2023 01:34:31 +0000
ROA not after:            Sat 14 Sep 2024 01:30:03 +0000
asID:                     9824
IP address blocks:        114.134.112.0/20 maxlen: 24

Validation:               Failed, certificate revoked on Sat 31 Aug 2024 01:38:52 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 389 (0x185)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
        Validity
            Not Before: Oct  1 01:34:31 2023 GMT
            Not After : Sep 14 01:30:03 2024 GMT
        Subject: CN=3D86D0B6296A350BA2C9086B287D6D9AF418C6DE
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:a8:b7:97:a4:01:6e:9c:83:b4:bd:74:83:f6:
                    ff:8d:23:81:a2:3f:0a:32:32:e1:d0:36:71:06:3e:
                    a1:6e:d1:27:6d:59:55:90:40:c8:99:59:f5:ed:90:
                    64:aa:04:2d:95:ac:ac:af:5e:62:56:cc:82:31:1a:
                    87:05:60:dd:19:43:22:80:cd:32:b9:d2:1b:f6:7a:
                    df:ec:85:2a:85:f7:d9:15:70:ed:1b:40:ba:f3:69:
                    e5:08:77:30:f8:45:c4:b6:fa:26:e6:b7:91:1b:42:
                    53:fc:cc:95:3c:03:7d:8f:d8:d2:d0:4a:8c:3b:d8:
                    f4:01:e2:12:0b:b0:74:53:8f:b0:35:d1:45:28:59:
                    c1:62:4b:36:14:8a:d3:78:eb:09:64:11:4e:12:60:
                    d3:e4:a7:54:77:64:e1:e9:ee:18:84:66:e5:3c:d2:
                    e3:ff:9c:b2:ee:65:ee:8f:15:bf:b7:55:61:54:ea:
                    98:cd:c8:21:64:8a:6f:58:9b:b0:1e:f8:f1:70:89:
                    e4:90:5d:90:5d:a6:93:69:8f:d1:70:c9:03:7c:6a:
                    ec:fd:b3:6d:1b:90:89:88:4f:20:e0:6d:d7:df:53:
                    01:20:40:e7:b4:b3:20:94:39:ff:70:55:f8:68:5f:
                    2b:93:82:4a:75:49:f3:f9:dd:93:20:28:78:8f:1b:
                    d6:a7
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3D:86:D0:B6:29:6A:35:0B:A2:C9:08:6B:28:7D:6D:9A:F4:18:C6:DE
            X509v3 Authority Key Identifier:
                keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/PYbQtilqNQuiyQhrKH1tmvQYxt4.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  114.134.112.0/20

    Signature Algorithm: sha256WithRSAEncryption
         0e:36:23:60:bb:65:f9:e9:1d:88:bd:8f:a8:c4:07:70:5e:05:
         55:ac:fc:52:c7:d0:87:6f:46:1b:ac:d5:38:51:aa:3d:18:2e:
         38:18:8d:fd:fe:40:21:a5:2f:bc:62:da:eb:f2:89:fa:9c:c6:
         42:94:d1:af:00:77:d8:e8:5f:28:f5:22:47:9a:f2:46:2a:17:
         06:be:45:eb:d0:af:f6:64:c3:83:86:4c:1f:b2:ad:88:40:5d:
         f3:e4:ed:46:bc:34:c3:07:27:c8:4a:bb:90:df:47:70:bc:ea:
         0b:e4:17:93:27:64:3b:79:5f:5a:cf:03:42:7e:8e:f8:35:a6:
         18:bd:fc:d0:c0:2e:7d:3d:94:6c:31:b0:8b:be:08:3e:f7:b2:
         04:bd:e5:4a:37:21:04:5e:18:70:51:21:ca:4c:f1:29:69:9f:
         95:09:4f:92:eb:76:5d:d2:38:54:cf:bd:9a:5d:63:99:7e:db:
         40:84:b1:51:33:3c:07:5e:3b:0f:db:6f:20:a2:d3:2b:eb:1a:
         f0:bc:39:a7:84:56:57:a4:88:cb:0a:cd:4f:29:c4:08:f6:ef:
         28:1e:6b:0b:ad:81:cb:fc:13:2f:6b:ec:30:74:f4:f1:0a:4c:
         50:40:6d:3d:b2:e3:cb:77:6e:d5:55:7d:b7:2f:db:d8:ce:e5:
         b9:2a:24:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 04:11:55 2024 by rpki-client on console-ams.rpki-client.org