Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/ZUS9-Gipic28QYj2ekPz9IKxM98.roa
File:                     ZUS9-Gipic28QYj2ekPz9IKxM98.roa (raw, json)
Hash identifier:          Wmv5FzD8ksc9wfOmeCuE75WO/30X1Ezi/mP40Gydhsk=
Subject key identifier:   65:44:BD:F8:68:A9:89:CD:BC:41:88:F6:7A:43:F3:F4:82:B1:33:DF
Certificate issuer:       /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Certificate serial:       01F1
Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/ZUS9-Gipic28QYj2ekPz9IKxM98.roa
Signing time:             Wed 01 Nov 2023 01:30:31 +0000
ROA not before:           Wed 01 Nov 2023 01:30:31 +0000
ROA not after:            Mon 14 Oct 2024 01:30:03 +0000
asID:                     0
IP address blocks:        202.138.80.0/20 maxlen: 24

Validation:               Failed, certificate revoked on Mon 30 Sep 2024 01:28:10 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 497 (0x1f1)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
        Validity
            Not Before: Nov  1 01:30:31 2023 GMT
            Not After : Oct 14 01:30:03 2024 GMT
        Subject: CN=6544BDF868A989CDBC4188F67A43F3F482B133DF
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:a1:a9:6d:07:99:02:a3:d4:d9:28:12:a0:63:f4:
                    82:9b:1f:c7:e8:1f:51:a0:56:05:1a:97:f8:dd:ea:
                    6f:13:f7:9f:00:20:09:4f:41:f0:b4:8a:a0:bb:d6:
                    15:b3:01:74:8d:a3:4f:2e:e8:97:a1:9c:b2:97:55:
                    9d:9a:51:b9:dd:0a:84:d4:b0:35:43:9c:ca:b1:d0:
                    77:55:72:4a:98:14:c5:3f:4c:cf:4b:ce:b0:64:ea:
                    26:c0:c4:d6:ff:d9:cf:7d:79:6f:ea:5e:fe:d5:69:
                    4d:62:54:27:7c:e1:34:66:9d:96:08:65:dc:0a:29:
                    27:5a:43:6d:af:b7:47:cf:09:f9:85:e2:19:47:f1:
                    d0:94:73:db:6f:22:20:eb:24:8f:13:d8:49:91:33:
                    69:bd:72:c9:95:c6:4c:03:31:ab:34:d9:85:bf:3a:
                    67:db:8a:27:14:bc:35:27:0b:5b:f3:d3:98:03:d4:
                    99:e1:0e:f4:4e:80:45:a2:ed:26:0f:2d:ac:9a:24:
                    30:e4:16:31:c2:ff:0f:50:3e:a8:f7:74:b0:de:3d:
                    6a:c2:a7:27:b7:dc:40:1b:c7:03:f4:2a:1d:b5:6d:
                    97:5a:74:dd:86:a6:10:28:e8:0d:06:55:b9:ef:a8:
                    0f:68:ad:70:e6:a8:79:af:21:e9:16:d9:b8:35:e0:
                    ca:b5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                65:44:BD:F8:68:A9:89:CD:BC:41:88:F6:7A:43:F3:F4:82:B1:33:DF
            X509v3 Authority Key Identifier:
                keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/ZUS9-Gipic28QYj2ekPz9IKxM98.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.138.80.0/20

    Signature Algorithm: sha256WithRSAEncryption
         9a:18:68:35:08:3b:b8:88:fe:c6:be:b8:e7:80:6a:e1:b4:1f:
         cf:9f:74:fb:e1:9a:f9:a1:b2:25:53:e3:4c:d3:d3:e1:3d:58:
         17:0c:7d:59:11:11:f0:bb:8c:57:de:f5:45:48:7f:2d:d9:52:
         60:e5:a9:9d:5e:f5:32:51:10:fa:ed:7b:01:bf:43:60:bd:76:
         2a:3d:8a:bc:a6:30:77:4f:8e:38:34:64:55:c6:5a:da:1c:a2:
         30:34:0b:38:1f:ac:f2:81:bf:e7:ac:d9:c6:1d:f9:a9:47:11:
         e4:45:d1:08:74:da:a4:35:67:52:b7:d0:0b:06:78:88:18:bd:
         a8:9b:f3:79:6e:23:64:53:bf:48:19:8e:a8:b0:b4:3a:c1:fd:
         71:d7:0b:f2:bb:30:05:ae:7b:e2:7c:bf:5b:a4:9c:92:1c:1a:
         e3:82:05:08:f5:b2:4a:6a:f7:ff:a2:43:96:94:41:16:f9:f1:
         51:51:9a:8d:a9:5e:58:c7:20:87:f5:ca:6d:09:b5:b5:5a:4b:
         64:1e:44:4d:96:2c:27:86:f2:d1:e7:58:8a:b6:30:11:75:18:
         e5:c3:dd:68:d7:a1:23:70:54:ef:db:ba:d5:8d:b5:08:d7:88:
         40:f6:33:88:c6:3d:1a:8d:49:a9:66:8e:2f:bc:cb:e7:6d:fa:
         70:f9:fb:e3
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAfEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzExMDEw
MTMwMzFaFw0yNDEwMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDY1NDRCREY4NjhBOTg5
Q0RCQzQxODhGNjdBNDNGM0Y0ODJCMTMzREYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQChqW0HmQKj1NkoEqBj9IKbH8foH1GgVgUal/jd6m8T958AIAlP
QfC0iqC71hWzAXSNo08u6JehnLKXVZ2aUbndCoTUsDVDnMqx0HdVckqYFMU/TM9L
zrBk6ibAxNb/2c99eW/qXv7VaU1iVCd84TRmnZYIZdwKKSdaQ22vt0fPCfmF4hlH
8dCUc9tvIiDrJI8T2EmRM2m9csmVxkwDMas02YW/OmfbiicUvDUnC1vz05gD1Jnh
DvROgEWi7SYPLayaJDDkFjHC/w9QPqj3dLDePWrCpye33EAbxwP0Kh21bZdadN2G
phAo6A0GVbnvqA9orXDmqHmvIekW2bg14Mq1AgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUZUS9+Gipic28QYj2ekPz9IKxM98wHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z
p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE
djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvNjcxL1pVUzktR2lwaWMyOFFZajJla1B6OUlLeE05OC5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBATKilAwDQYJKoZIhvcNAQELBQADggEBAJoYaDUIO7iI/sa+uOeAauG0H8+f
dPvhmvmhsiVT40zT0+E9WBcMfVkREfC7jFfe9UVIfy3ZUmDlqZ1e9TJREPrtewG/
Q2C9dio9irymMHdPjjg0ZFXGWtocojA0CzgfrPKBv+es2cYd+alHEeRF0Qh02qQ1
Z1K30AsGeIgYvaib83luI2RTv0gZjqiwtDrB/XHXC/K7MAWue+J8v1uknJIcGuOC
BQj1skpq9/+iQ5aUQRb58VFRmo2pXljHIIf1ym0JtbVaS2QeRE2WLCeG8tHnWIq2
MBF1GOXD3WjXoSNwVO/butWNtQjXiED2M4jGPRqNSalmji+8y+dt+nD5++M=
-----END CERTIFICATE-----
Generated at Mon Sep 30 03:16:01 2024 by rpki-client on console-fra.rpki-client.org