Route Origin Authorization

$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/955/8jtGLGjA1TUgBUyjfkiDcArhFIA.roa
File:                     8jtGLGjA1TUgBUyjfkiDcArhFIA.roa (raw, json)
Hash identifier:          jveUF8QoauX1jSqWtKr3o8PtJEaFjN5WbwPm0mhlzdg=
Subject key identifier:   F2:3B:46:2C:68:C0:D5:35:20:05:4C:A3:7E:48:83:70:0A:E1:14:80
Certificate issuer:       /CN=0BBCA90DCB80D622B18884EA1E0B3B7D40C61C52
Certificate serial:       20
Authority key identifier: 0B:BC:A9:0D:CB:80:D6:22:B1:88:84:EA:1E:0B:3B:7D:40:C6:1C:52
Authority info access:    rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer
Subject info access:      rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/8jtGLGjA1TUgBUyjfkiDcArhFIA.roa
Signing time:             Fri 01 Dec 2023 06:10:35 +0000
ROA not before:           Fri 01 Dec 2023 06:10:35 +0000
ROA not after:            Thu 14 Nov 2024 01:30:03 +0000
asID:                     55385
IP address blocks:        202.213.64.0/21 maxlen: 21

Validation:               Failed, certificate revoked on Thu 31 Oct 2024 01:28:28 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 32 (0x20)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0BBCA90DCB80D622B18884EA1E0B3B7D40C61C52
        Validity
            Not Before: Dec  1 06:10:35 2023 GMT
            Not After : Nov 14 01:30:03 2024 GMT
        Subject: CN=F23B462C68C0D53520054CA37E4883700AE11480
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:97:fb:48:33:37:58:82:a4:5b:3d:af:fb:51:bd:
                    17:8f:d0:d3:f6:74:fd:1d:a4:1e:5e:1e:b9:0b:8f:
                    a9:16:a9:b1:0d:52:1c:a0:e2:49:8b:78:50:16:4e:
                    35:f6:bf:28:23:ea:a3:93:49:f7:1f:58:47:8c:aa:
                    c9:7c:87:0b:5d:fb:0f:a2:02:07:d8:b7:12:c7:49:
                    05:90:93:17:3c:d8:8c:bb:07:3b:cf:ea:b8:0a:b2:
                    49:3c:0d:b1:2c:a1:fd:da:8d:b7:3f:86:bd:42:11:
                    78:49:f2:94:b1:0e:fe:08:7b:9a:0b:dc:f6:1e:37:
                    c3:54:1d:0c:91:f1:b1:9d:ba:22:b1:b5:55:4e:a9:
                    b3:31:20:e5:55:84:e7:6e:b9:b6:a8:77:0b:a5:03:
                    e8:3e:42:6f:6e:63:57:b1:7d:53:29:7e:d0:f2:fa:
                    8a:bf:50:e4:6b:bd:7c:f7:de:c5:63:6b:bf:f3:4c:
                    0d:14:29:2f:84:4b:b4:42:c2:a8:9f:87:26:74:4a:
                    18:f3:b2:ed:ca:df:41:36:e3:d2:ec:7d:27:ab:4a:
                    59:98:6f:54:06:f8:d5:25:79:6c:a0:59:9e:67:ea:
                    6e:4e:3f:2b:60:c2:91:8b:db:84:6b:6d:ed:64:26:
                    ca:cf:09:f4:af:32:4f:68:2c:2a:de:a5:11:77:74:
                    cd:55
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F2:3B:46:2C:68:C0:D5:35:20:05:4C:A3:7E:48:83:70:0A:E1:14:80
            X509v3 Authority Key Identifier:
                keyid:0B:BC:A9:0D:CB:80:D6:22:B1:88:84:EA:1E:0B:3B:7D:40:C6:1C:52

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/C7ypDcuA1iKxiITqHgs7fUDGHFI.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/C7ypDcuA1iKxiITqHgs7fUDGHFI.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/955/8jtGLGjA1TUgBUyjfkiDcArhFIA.roa
                RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.213.64.0/21

    Signature Algorithm: sha256WithRSAEncryption
         0f:31:8f:e1:cc:7b:2b:9e:41:dd:c6:c3:d2:22:53:3e:97:2c:
         8a:cc:03:33:34:4a:a0:98:74:85:39:4e:fa:50:ad:69:b7:22:
         1d:73:6b:9f:a3:66:27:be:54:4f:5f:ef:61:1a:81:a6:8a:40:
         57:c8:f0:9f:d4:0e:49:c1:64:bb:2a:17:25:95:55:e4:d8:95:
         e1:a7:76:d1:d9:05:61:12:05:26:49:f8:c4:46:32:d2:2e:8d:
         df:e4:75:d9:73:d2:e4:db:86:2a:ab:2e:c4:23:f3:70:1d:5e:
         4a:9a:85:b4:4c:3f:1f:b9:0d:8a:c3:d5:cb:51:dd:f6:61:56:
         87:73:6e:85:79:b0:4c:f2:1f:4f:ac:d2:b0:fb:7e:2b:51:83:
         b8:b2:a7:f2:b2:a8:dd:b7:c3:84:7a:48:96:9c:3f:f5:f9:1e:
         ad:15:24:d1:01:18:2e:bd:25:5b:66:ff:15:ab:06:6b:23:f5:
         df:ad:52:9b:86:22:56:fd:27:b4:b6:89:41:1b:20:98:e1:46:
         08:d3:57:04:75:93:1e:bc:8a:d0:b8:a5:a4:05:bc:d6:b3:ad:
         8c:10:c9:cf:2a:9a:4e:d3:b1:29:bb:62:2a:e8:4a:6a:01:82:
         a1:2d:7f:00:9a:70:61:68:7c:90:b8:51:84:63:c4:f4:9d:05:
         65:a6:7a:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 05:07:20 2024 by rpki-client on console-ams.rpki-client.org