Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/04nI3qUJSzvYLW4WrTc6jB6TPqE.roa
File: 04nI3qUJSzvYLW4WrTc6jB6TPqE.roa (raw, json)
Hash identifier: tZGHQbxvcPKx7ootD0Vywqxp7v/0nyv0PON6CQxNOPM=
Subject key identifier: D3:89:C8:DE:A5:09:4B:3B:D8:2D:6E:16:AD:37:3A:8C:1E:93:3E:A1
Certificate issuer: /CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Certificate serial: 8D
Authority key identifier: 50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/04nI3qUJSzvYLW4WrTc6jB6TPqE.roa
Signing time: Tue 30 Apr 2024 01:31:10 +0000
ROA not before: Tue 30 Apr 2024 01:31:10 +0000
ROA not after: Tue 15 Apr 2025 01:30:02 +0000
asID: 9351
IP address blocks: 112.136.0.0/17 maxlen: 17
Validation: Failed, certificate revoked on Tue 01 Apr 2025 01:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141 (0x8d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Validity
Not Before: Apr 30 01:31:10 2024 GMT
Not After : Apr 15 01:30:02 2025 GMT
Subject: CN=D389C8DEA5094B3BD82D6E16AD373A8C1E933EA1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:f6:97:21:68:c0:9e:60:35:7c:87:2b:b0:2a:
63:ea:e1:4c:05:1f:b6:4a:03:1f:00:29:72:f2:09:
97:81:67:1c:e0:fd:9d:60:1c:15:38:11:cb:1e:ed:
ad:f7:21:8e:d4:06:3a:c1:f3:20:58:cb:ef:83:d1:
e7:65:26:8b:1f:15:83:82:96:f5:8e:63:de:12:46:
32:d2:df:cc:05:0b:f3:04:80:d3:b0:80:eb:63:64:
23:c6:02:8d:9b:5b:14:d1:0e:41:e6:81:f0:cf:81:
0a:15:84:11:e8:42:34:78:08:d6:2d:3f:9d:15:8a:
60:d0:c9:5a:b7:f1:e9:cd:76:f5:a5:4b:99:03:aa:
e7:d8:98:90:a0:1d:60:91:14:39:c9:3b:6e:66:85:
c2:e9:09:09:a0:27:52:5d:99:d0:72:9a:cd:53:b9:
5f:ac:e5:2d:e6:c8:b0:e4:c4:5e:bd:b7:58:39:9b:
03:52:a8:10:28:1a:6f:dd:28:86:88:ef:bf:93:59:
15:94:0f:69:02:7b:69:f8:f7:da:71:16:28:f4:22:
ea:1a:86:37:08:0b:c7:e0:bc:a8:a3:41:b4:ca:61:
f0:b2:dc:b8:5f:8b:49:05:e1:1c:1f:69:f9:ca:9f:
72:00:c3:af:ed:f6:b9:70:f8:9a:0e:d9:42:73:58:
31:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:89:C8:DE:A5:09:4B:3B:D8:2D:6E:16:AD:37:3A:8C:1E:93:3E:A1
X509v3 Authority Key Identifier:
keyid:50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/04nI3qUJSzvYLW4WrTc6jB6TPqE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
112.136.0.0/17
Signature Algorithm: sha256WithRSAEncryption
48:1d:80:9c:ed:00:26:4b:3e:17:77:88:f0:96:3f:fc:46:ed:
1e:23:1e:c5:12:a6:44:c0:c7:1d:17:58:16:04:28:06:8c:f2:
46:1e:88:48:41:88:16:1e:90:9d:65:71:3c:44:4a:1a:ef:f4:
d7:44:a2:71:8a:21:10:08:f7:8f:7e:5c:8e:b0:60:d7:f0:6a:
2a:1a:25:5c:26:ae:66:35:10:44:52:d6:71:fa:38:0d:31:e3:
c5:64:c9:3f:78:c7:41:e5:d8:14:e7:42:70:f8:c4:03:6f:33:
f2:1f:e4:82:8e:ed:b3:8d:43:5d:08:87:1e:73:f2:30:53:15:
35:97:b0:c1:2b:a2:d2:f3:a3:6f:a5:2b:13:4c:46:5b:f7:3d:
23:35:44:44:7d:0b:b1:7a:03:92:84:12:a5:45:1a:bd:7e:94:
ae:24:07:48:b7:c3:19:3b:0a:35:bf:6a:e9:43:ac:2b:74:a4:
3d:ae:47:f2:24:ca:ce:24:32:fa:26:a9:5f:f7:09:9d:a8:18:
64:f3:7a:3f:b9:1e:28:bd:bf:d8:ac:7c:25:b5:e0:cc:c3:f7:
ac:f1:a1:10:1d:63:3d:1c:2b:ca:b5:cf:0a:ec:6e:09:28:42:
29:e2:e7:f5:59:9a:e3:e4:08:ed:00:d2:3c:73:2f:75:9a:c5:
b1:61:34:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:19:48 2025 by rpki-client