Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/800/kDAqDold9FdsgUNNLn7TYaoIg3Y.roa
File:                     kDAqDold9FdsgUNNLn7TYaoIg3Y.roa (raw, json)
Hash identifier:          md04Zsdn4Uunm12EFWzoSyOpp4nq1kPTuwYi0Q4vdYU=
Subject key identifier:   90:30:2A:0E:89:5D:F4:57:6C:81:43:4D:2E:7E:D3:61:AA:08:83:76
Certificate issuer:       /CN=084F88D837A2A2132EA8F6F8F2DB82C1C1E90A8B
Certificate serial:       07
Authority key identifier: 08:4F:88:D8:37:A2:A2:13:2E:A8:F6:F8:F2:DB:82:C1:C1:E9:0A:8B
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CE-I2DeiohMuqPb48tuCwcHpCos.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/kDAqDold9FdsgUNNLn7TYaoIg3Y.roa
Signing time:             Fri 17 Nov 2023 07:29:15 +0000
ROA not before:           Fri 17 Nov 2023 07:29:15 +0000
ROA not after:            Thu 14 Nov 2024 01:30:03 +0000
asID:                     18278
IP address blocks:        183.91.96.0/19 maxlen: 19

Validation:               Failed, certificate revoked on Thu 31 Oct 2024 01:32:06 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 7 (0x7)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=084F88D837A2A2132EA8F6F8F2DB82C1C1E90A8B
        Validity
            Not Before: Nov 17 07:29:15 2023 GMT
            Not After : Nov 14 01:30:03 2024 GMT
        Subject: CN=90302A0E895DF4576C81434D2E7ED361AA088376
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:7f:1e:00:7b:ac:b1:c1:fa:c1:af:6d:76:1d:
                    26:f5:2b:d6:70:40:df:e3:56:1e:08:23:c6:ba:06:
                    74:8c:1c:7f:d2:f6:8a:56:15:bd:77:4a:cb:21:90:
                    e2:f7:fb:bc:9e:f5:2c:67:d3:07:09:56:94:c5:f7:
                    8d:52:2d:69:3b:b3:8c:a2:8b:91:b8:6a:0f:83:76:
                    b9:3d:cd:b4:b3:ec:2b:fe:b0:9e:04:6f:fa:4b:9f:
                    4f:71:9b:6f:79:92:5b:b9:9f:f3:fe:14:df:8e:31:
                    bc:78:b5:e1:4e:0a:0e:3a:85:fc:ba:fc:76:15:d3:
                    82:e2:2c:e5:19:39:15:ce:83:80:da:c4:d8:f8:88:
                    5b:a0:c5:6d:50:9b:9b:d2:8e:dc:37:94:a9:03:23:
                    dc:17:fc:bb:27:d9:dc:63:c7:f7:de:50:26:90:8f:
                    f3:5d:49:30:da:ba:5e:a5:c1:fc:52:b0:c2:75:95:
                    5a:45:68:a4:3d:e4:12:0c:2c:a5:93:be:2c:cc:43:
                    4c:8a:a8:6e:df:fc:86:4e:ee:fa:8a:70:98:40:dd:
                    da:10:3c:95:5c:54:69:91:05:3c:e9:a8:60:38:2c:
                    8a:e8:f1:b1:c5:c8:f2:35:7d:17:14:a9:97:4c:e3:
                    7f:00:30:66:1b:de:ba:99:a6:81:5b:22:cc:77:50:
                    00:f3
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                90:30:2A:0E:89:5D:F4:57:6C:81:43:4D:2E:7E:D3:61:AA:08:83:76
            X509v3 Authority Key Identifier:
                keyid:08:4F:88:D8:37:A2:A2:13:2E:A8:F6:F8:F2:DB:82:C1:C1:E9:0A:8B

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/CE-I2DeiohMuqPb48tuCwcHpCos.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CE-I2DeiohMuqPb48tuCwcHpCos.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/800/kDAqDold9FdsgUNNLn7TYaoIg3Y.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  183.91.96.0/19

    Signature Algorithm: sha256WithRSAEncryption
         61:9a:bf:e7:24:50:c4:ca:d8:bc:b8:d8:96:fd:ac:68:8e:d7:
         39:3d:1d:45:cf:1b:4a:32:e0:26:9f:1f:43:a7:de:9e:55:1c:
         e3:13:d5:70:67:bb:c3:37:df:c7:7a:16:cc:6e:3e:3e:be:ce:
         cb:60:f3:8b:41:75:e0:93:9a:0a:fe:a8:4c:67:79:dc:4e:a7:
         39:8a:28:ae:58:53:9b:6c:3e:51:85:72:1f:5d:6e:d6:00:71:
         79:e9:c8:93:59:be:dc:d5:b0:ce:6a:c1:30:19:f2:6a:e0:70:
         7d:c1:22:f6:70:62:28:fe:03:d4:74:06:0c:1f:56:4f:cd:c2:
         2b:ab:34:85:11:61:71:f9:ca:a6:7b:b7:c2:6f:74:c3:27:49:
         cd:0e:9b:60:b6:ec:c6:ff:8e:d9:e7:34:d7:16:98:a6:d4:ff:
         54:e9:78:aa:1d:e0:c8:5f:db:3d:db:48:0b:74:71:6f:06:32:
         bc:0f:0e:6c:76:52:f4:fc:a0:6a:45:4a:db:0a:79:9f:52:26:
         ae:0f:8a:2d:e5:e9:ea:a7:f2:84:d5:2e:60:fd:1e:3a:46:2f:
         43:41:7c:22:87:9e:28:15:af:7b:33:b9:5a:d0:44:86:bc:07:
         36:21:6e:ca:c7:d3:46:95:87:d8:55:51:93:9a:37:8f:e1:de:
         33:d6:92:68
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBBzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwODRG
ODhEODM3QTJBMjEzMkVBOEY2RjhGMkRCODJDMUMxRTkwQThCMB4XDTIzMTExNzA3
MjkxNVoXDTI0MTExNDAxMzAwM1owMzExMC8GA1UEAxMoOTAzMDJBMEU4OTVERjQ1
NzZDODE0MzREMkU3RUQzNjFBQTA4ODM3NjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMB/HgB7rLHB+sGvbXYdJvUr1nBA3+NWHggjxroGdIwcf9L2ilYV
vXdKyyGQ4vf7vJ71LGfTBwlWlMX3jVItaTuzjKKLkbhqD4N2uT3NtLPsK/6wngRv
+kufT3Gbb3mSW7mf8/4U344xvHi14U4KDjqF/Lr8dhXTguIs5Rk5Fc6DgNrE2PiI
W6DFbVCbm9KO3DeUqQMj3Bf8uyfZ3GPH995QJpCP811JMNq6XqXB/FKwwnWVWkVo
pD3kEgwspZO+LMxDTIqobt/8hk7u+opwmEDd2hA8lVxUaZEFPOmoYDgsiujxscXI
8jV9FxSpl0zjfwAwZhveupmmgVsizHdQAPMCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBSQMCoOiV30V2yBQ00uftNhqgiDdjAfBgNVHSMEGDAWgBQIT4jYN6KiEy6o9vjy
24LBwekKizAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvODAwL0NFLUkyRGVpb2hNdXFQYjQ4dHVDd2NIcENvcy5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0NFLUkyRGVpb2hNdXFQYjQ4dHVDd2NI
cENvcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC84MDAva0RBcURvbGQ5RmRzZ1VOTkxuN1RZYW9JZzNZLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBbdbYDANBgkqhkiG9w0BAQsFAAOCAQEAYZq/5yRQxMrYvLjYlv2saI7XOT0d
Rc8bSjLgJp8fQ6fenlUc4xPVcGe7wzffx3oWzG4+Pr7Oy2Dzi0F14JOaCv6oTGd5
3E6nOYoorlhTm2w+UYVyH11u1gBxeenIk1m+3NWwzmrBMBnyauBwfcEi9nBiKP4D
1HQGDB9WT83CK6s0hRFhcfnKpnu3wm90wydJzQ6bYLbsxv+O2ec01xaYptT/VOl4
qh3gyF/bPdtIC3RxbwYyvA8ObHZS9PygakVK2wp5n1Imrg+KLeXp6qfyhNUuYP0e
OkYvQ0F8IoeeKBWvezO5WtBEhrwHNiFuysfTRpWH2FVRk5o3j+HeM9aSaA==
-----END CERTIFICATE-----
Generated at Thu Oct 31 05:07:20 2024 by rpki-client on console-ams.rpki-client.org