Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30102/q68WzUL1icAxbZVVDJgnDETwltw.roa
File: q68WzUL1icAxbZVVDJgnDETwltw.roa (raw, json)
Hash identifier: 7iypQvS7CMPWh/cKVzDZ7YSMR7vze0nF+ZxHSVjw/kc=
Subject key identifier: AB:AF:16:CD:42:F5:89:C0:31:6D:95:55:0C:98:27:0C:44:F0:96:DC
Certificate issuer: /CN=39CE09592C9DA61CC03C3D324A7C6CAC4777CCCF
Certificate serial: 2C
Authority key identifier: 39:CE:09:59:2C:9D:A6:1C:C0:3C:3D:32:4A:7C:6C:AC:47:77:CC:CF
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Oc4JWSydphzAPD0ySnxsrEd3zM8.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30102/q68WzUL1icAxbZVVDJgnDETwltw.roa
Signing time: Wed 31 Jul 2024 01:29:24 +0000
ROA not before: Wed 31 Jul 2024 01:29:24 +0000
ROA not after: Tue 15 Jul 2025 01:30:02 +0000
asID: 9824
IP address blocks: 2400:3800::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 01 Jul 2025 01:40:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44 (0x2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39CE09592C9DA61CC03C3D324A7C6CAC4777CCCF
Validity
Not Before: Jul 31 01:29:24 2024 GMT
Not After : Jul 15 01:30:02 2025 GMT
Subject: CN=ABAF16CD42F589C0316D95550C98270C44F096DC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:f8:7c:9f:e2:f0:23:d5:18:be:58:a1:26:2c:
c1:da:c8:b3:da:85:67:b6:be:29:57:80:d5:78:0f:
d0:2b:2d:5e:1b:85:04:d1:78:e8:4d:83:b5:1d:49:
bb:09:56:4e:d5:54:64:2a:df:ec:00:67:24:6b:7d:
5c:19:ab:1a:5f:8b:ef:63:96:ba:0d:4a:76:86:4f:
7d:d6:6b:72:2a:d8:fd:d7:93:65:34:f4:eb:38:55:
30:4f:dc:c3:5f:80:f4:4c:e3:be:0b:a0:6c:62:f2:
99:8c:3c:d4:d7:45:ad:eb:8a:79:bd:4d:59:87:55:
60:11:3f:b7:fa:39:3e:38:12:01:d1:3a:86:bc:ac:
a8:27:5e:87:19:da:6a:08:7b:11:05:c2:37:d4:38:
eb:6f:80:32:48:16:9f:8c:9f:ab:3c:a1:41:5e:0e:
f3:94:0a:1c:8e:69:4c:2a:83:36:2f:da:de:21:67:
27:7a:27:c7:d3:fb:96:78:65:30:7c:fb:4e:f9:5d:
8d:19:eb:bd:bd:90:37:72:82:3b:88:46:ff:f1:48:
52:08:f6:61:2f:bf:66:d6:db:bf:1b:c4:bf:cf:fa:
41:04:f4:49:af:94:c0:a3:0c:78:8a:aa:88:26:80:
43:92:fa:b0:6c:30:75:aa:27:d2:20:8f:1d:f4:19:
89:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:AF:16:CD:42:F5:89:C0:31:6D:95:55:0C:98:27:0C:44:F0:96:DC
X509v3 Authority Key Identifier:
keyid:39:CE:09:59:2C:9D:A6:1C:C0:3C:3D:32:4A:7C:6C:AC:47:77:CC:CF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30102/Oc4JWSydphzAPD0ySnxsrEd3zM8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Oc4JWSydphzAPD0ySnxsrEd3zM8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30102/q68WzUL1icAxbZVVDJgnDETwltw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:3800::/32
Signature Algorithm: sha256WithRSAEncryption
8a:e4:c3:79:6d:1b:e1:4a:63:fc:52:df:2c:b1:aa:67:5a:b5:
33:cb:26:29:4f:97:3f:ee:9f:dc:24:15:59:8b:b1:50:76:73:
22:5b:7b:bb:08:b9:2f:3e:fa:be:49:c4:0f:41:59:e0:89:9e:
6f:04:0a:ef:1a:ef:27:2c:f6:7c:5e:9d:14:c2:5e:4f:1b:15:
d4:5b:69:05:98:ce:f8:bb:a5:90:06:66:2a:63:c4:f7:17:1d:
61:97:2d:55:1b:ee:ae:f0:03:9f:02:85:6f:4b:37:14:ad:cd:
7f:84:0f:bc:f4:ab:9d:44:00:9e:f2:73:0a:31:ca:4e:e3:bc:
fb:22:d1:4a:f8:64:e4:7c:1d:f8:25:fc:3b:cc:5a:90:99:f4:
e3:3e:60:53:21:8e:64:d2:ab:4a:f7:85:4e:8f:73:a4:4b:50:
17:1e:07:9d:80:75:9e:09:74:46:89:f0:54:03:27:71:29:c7:
49:71:54:21:9b:06:6a:9a:16:9b:45:3e:48:36:d2:f5:bd:11:
1e:be:76:c1:44:8c:4c:ab:b2:50:97:8e:30:fb:3b:91:0c:57:
5c:f9:5f:54:ec:8f:88:fc:a5:03:96:4c:2c:2f:fa:c5:12:ac:
62:21:b9:ac:2a:e6:cb:d4:67:21:b7:71:e2:65:b3:51:c4:e2:
91:b3:73:45
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIBLDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzOUNF
MDk1OTJDOURBNjFDQzAzQzNEMzI0QTdDNkNBQzQ3NzdDQ0NGMB4XDTI0MDczMTAx
MjkyNFoXDTI1MDcxNTAxMzAwMlowMzExMC8GA1UEAxMoQUJBRjE2Q0Q0MkY1ODlD
MDMxNkQ5NTU1MEM5ODI3MEM0NEYwOTZEQzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAOD4fJ/i8CPVGL5YoSYswdrIs9qFZ7a+KVeA1XgP0CstXhuFBNF4
6E2DtR1JuwlWTtVUZCrf7ABnJGt9XBmrGl+L72OWug1KdoZPfdZrcirY/deTZTT0
6zhVME/cw1+A9EzjvgugbGLymYw81NdFreuKeb1NWYdVYBE/t/o5PjgSAdE6hrys
qCdehxnaagh7EQXCN9Q462+AMkgWn4yfqzyhQV4O85QKHI5pTCqDNi/a3iFnJ3on
x9P7lnhlMHz7TvldjRnrvb2QN3KCO4hG//FIUgj2YS+/ZtbbvxvEv8/6QQT0Sa+U
wKMMeIqqiCaAQ5L6sGwwdaon0iCPHfQZiacCAwEAAaOCAikwggIlMB0GA1UdDgQW
BBSrrxbNQvWJwDFtlVUMmCcMRPCW3DAfBgNVHSMEGDAWgBQ5zglZLJ2mHMA8PTJK
fGysR3fMzzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzAxMDIvT2M0SldTeWRwaHpBUEQweVNueHNyRWQzek04LmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvT2M0SldTeWRwaHpBUEQweVNueHNy
RWQzek04LmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzMwMTAyL3E2OFd6VUwxaWNBeGJaVlZESmduREVUd2x0dy5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E
AgACMAcDBQAkADgAMA0GCSqGSIb3DQEBCwUAA4IBAQCK5MN5bRvhSmP8Ut8ssapn
WrUzyyYpT5c/7p/cJBVZi7FQdnMiW3u7CLkvPvq+ScQPQVngiZ5vBArvGu8nLPZ8
Xp0Uwl5PGxXUW2kFmM74u6WQBmYqY8T3Fx1hly1VG+6u8AOfAoVvSzcUrc1/hA+8
9KudRACe8nMKMcpO47z7ItFK+GTkfB34Jfw7zFqQmfTjPmBTIY5k0qtK94VOj3Ok
S1AXHgedgHWeCXRGifBUAydxKcdJcVQhmwZqmhabRT5INtL1vREevnbBRIxMq7JQ
l44w+zuRDFdc+V9U7I+I/KUDlkwsL/rFEqxiIbmsKubL1Gcht3HiZbNRxOKRs3NF
-----END CERTIFICATE-----
Generated at Mon Jul 21 13:47:27 2025 by rpki-client