Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/948/vTY7BumosMzl5cJb9PYFme2CAiA.roa
File:                     vTY7BumosMzl5cJb9PYFme2CAiA.roa (raw, json)
Hash identifier:          s6gY48fWxN9TZFKSWSmQ0GPpB2O0tDLYuFGCg1cRb4c=
Subject key identifier:   BD:36:3B:06:E9:A8:B0:CC:E5:E5:C2:5B:F4:F6:05:99:ED:82:02:20
Certificate issuer:       /CN=C4B9536C4EC785B8812E53A219D2B09A7DCBCE0C
Certificate serial:       0D
Authority key identifier: C4:B9:53:6C:4E:C7:85:B8:81:2E:53:A2:19:D2:B0:9A:7D:CB:CE:0C
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/vTY7BumosMzl5cJb9PYFme2CAiA.roa
Signing time:             Tue 15 Aug 2023 00:52:57 +0000
ROA not before:           Tue 15 Aug 2023 00:52:57 +0000
ROA not after:            Sun 14 Jul 2024 01:30:03 +0000
asID:                     38628
IP address blocks:        125.254.56.0/22 maxlen: 32

Validation:               Failed, certificate revoked on Sun 30 Jun 2024 01:32:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 13 (0xd)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=C4B9536C4EC785B8812E53A219D2B09A7DCBCE0C
        Validity
            Not Before: Aug 15 00:52:57 2023 GMT
            Not After : Jul 14 01:30:03 2024 GMT
        Subject: CN=BD363B06E9A8B0CCE5E5C25BF4F60599ED820220
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ce:b8:ca:d4:0c:b0:22:e1:13:7d:31:85:b5:63:
                    5f:8a:c6:ea:50:0a:7d:4b:c0:76:5d:de:a2:eb:9d:
                    98:12:56:9c:5f:94:59:29:df:22:0d:43:c6:c8:69:
                    3f:e5:d3:67:49:4e:61:ca:90:02:61:8d:3e:9f:00:
                    a9:84:85:b8:76:4d:9a:f7:3e:61:45:e0:a2:ff:70:
                    fc:7e:49:b8:8e:df:65:a2:8a:8f:a9:33:14:2e:f7:
                    11:32:96:b0:a3:30:d9:2f:da:a3:8d:49:b8:73:97:
                    69:23:6a:2e:78:30:c1:bc:fd:68:3d:1e:e9:c9:c1:
                    88:d4:d1:5c:20:00:9b:76:84:99:43:fa:a6:0d:6c:
                    cd:bd:8b:15:9a:15:b6:18:5c:c0:84:a3:14:16:dc:
                    ac:41:9d:be:4e:61:82:c6:22:03:c0:f2:73:68:ea:
                    fd:82:fb:55:81:b6:7e:f3:ed:f4:df:2a:23:23:0c:
                    7f:73:77:9b:bf:44:32:d7:15:0d:05:99:62:24:a2:
                    f5:0f:b1:58:a1:e7:17:3c:b6:a7:51:54:4b:d4:19:
                    b0:dd:3c:7c:c3:95:d7:b2:20:cb:36:46:4e:27:da:
                    b0:4f:b4:0a:53:81:71:5b:05:87:50:56:94:01:1f:
                    21:31:d3:94:f7:09:28:8f:63:b2:6e:91:43:fb:4a:
                    86:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                BD:36:3B:06:E9:A8:B0:CC:E5:E5:C2:5B:F4:F6:05:99:ED:82:02:20
            X509v3 Authority Key Identifier:
                keyid:C4:B9:53:6C:4E:C7:85:B8:81:2E:53:A2:19:D2:B0:9A:7D:CB:CE:0C

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/vTY7BumosMzl5cJb9PYFme2CAiA.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  125.254.56.0/22

    Signature Algorithm: sha256WithRSAEncryption
         08:47:52:1c:98:ab:30:69:35:a4:d8:b3:42:97:af:26:dc:64:
         a2:b0:d7:5a:d8:3e:2c:3b:f7:56:68:c1:6f:78:9f:d7:47:92:
         89:41:d7:23:66:db:ca:49:f0:ea:dd:21:34:8d:cd:3b:a8:91:
         92:8b:75:cb:67:0e:e8:80:ca:c9:af:4d:02:93:fd:06:18:a2:
         84:5b:15:39:3f:28:ed:f5:27:c4:3e:c5:27:69:bb:ec:d0:1f:
         f5:9d:18:30:c8:66:42:1f:ce:90:5e:99:ac:c9:d9:60:7d:34:
         1c:48:60:e3:9b:5c:4e:23:17:5a:55:c9:d8:da:80:d1:06:f3:
         c9:e7:37:6d:4c:14:b8:7c:ce:2c:21:25:88:3a:fe:75:cd:14:
         b1:9e:c1:24:3b:06:b6:39:40:d4:53:bf:3c:2b:4f:69:e8:5e:
         1d:e8:e4:46:80:d2:27:5d:ac:b0:c3:7d:2f:b2:e4:01:bd:e2:
         4c:6c:8d:a2:33:6a:bc:28:60:2e:bc:89:0e:30:8b:c5:3c:e6:
         2b:c7:dd:bb:03:3e:aa:5e:2e:fe:28:f9:61:8d:c7:53:67:7d:
         a4:b0:2e:02:53:70:33:09:41:5e:79:f6:4a:3b:7a:9d:66:b7:
         5b:80:c6:c5:a8:0a:b9:30:32:f4:bd:3d:28:c4:39:c5:71:90:
         d8:d1:e3:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 02:59:42 2024 by rpki-client on console-ams.rpki-client.org