Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/s-7SAE3exIlXvCOsUXNg-mmyDNs.roa
File: s-7SAE3exIlXvCOsUXNg-mmyDNs.roa (raw, json)
Hash identifier: OVUyL/Vp/rixrEcHu6ovu6lXw5aU1lQYqqi47B+XVbw=
Subject key identifier: B3:EE:D2:00:4D:DE:C4:89:57:BC:23:AC:51:73:60:FA:69:B2:0C:DB
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 02A4
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/s-7SAE3exIlXvCOsUXNg-mmyDNs.roa
Signing time: Tue 30 Apr 2024 01:35:18 +0000
ROA not before: Tue 30 Apr 2024 01:35:18 +0000
ROA not after: Tue 15 Apr 2025 01:30:02 +0000
asID: 9605
IP address blocks: 240a:6b:dc00::/40 maxlen: 40
Validation: Failed, certificate revoked on Tue 01 Apr 2025 01:32:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 676 (0x2a4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: Apr 30 01:35:18 2024 GMT
Not After : Apr 15 01:30:02 2025 GMT
Subject: CN=B3EED2004DDEC48957BC23AC517360FA69B20CDB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:f9:99:7d:a7:51:2b:bf:5f:12:c8:a9:b7:35:
3a:4c:3a:e3:46:8e:c2:9f:35:db:b8:6f:ff:cb:71:
d4:4e:54:ef:14:47:49:d7:7b:dd:b6:64:0e:be:44:
99:6c:0b:bf:20:60:18:17:b4:4f:e0:28:f2:71:83:
5d:54:61:09:f4:3f:40:79:53:49:55:47:98:68:7f:
77:39:80:f1:fa:41:d8:75:a4:7d:b4:b4:53:e8:80:
bb:6e:a8:1b:39:68:1d:b0:95:0a:05:75:87:51:25:
db:21:e0:11:ed:c9:64:c1:6d:ef:91:c5:f5:cc:78:
dd:08:18:f0:1c:f3:3b:76:e1:e2:8f:74:cb:8e:4c:
d7:c2:4f:5f:a9:87:a5:d7:b0:1f:62:9c:2e:37:59:
f5:ac:16:a7:b8:37:57:cd:40:fa:46:16:af:ae:dd:
eb:e8:44:23:b7:6f:77:5a:81:8d:a1:bc:16:6b:a1:
55:d1:08:fa:99:fc:0b:0a:22:db:21:00:cb:25:94:
b2:ae:f6:d7:6e:3d:8b:bb:0b:81:d1:1c:0c:3f:83:
7a:84:2e:a9:d4:88:5c:7a:bf:a0:6f:a0:17:07:c5:
58:20:12:03:98:f7:ba:b4:ca:cf:57:b8:5c:e8:9f:
88:7a:cb:f5:ab:51:84:d0:6a:3b:c7:70:48:e8:3e:
98:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:EE:D2:00:4D:DE:C4:89:57:BC:23:AC:51:73:60:FA:69:B2:0C:DB
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/s-7SAE3exIlXvCOsUXNg-mmyDNs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:dc00::/40
Signature Algorithm: sha256WithRSAEncryption
75:58:48:63:3b:d4:bd:b1:48:c7:b0:a8:3f:e9:e9:eb:91:27:
ad:d3:84:4a:ee:e5:68:62:91:1e:dc:0a:1d:86:d0:b8:9a:60:
b9:b5:5d:12:a6:e5:dd:d1:03:36:0a:96:e3:f8:57:8d:5f:00:
fe:b3:5a:2d:c9:71:ad:91:6b:88:53:7f:31:3a:08:a6:bc:a7:
2d:92:b7:36:7f:b4:e3:5b:28:5c:1b:45:c3:f5:f3:21:3f:85:
62:e9:cf:64:f8:e2:95:0a:f5:41:88:3d:84:a0:86:a4:92:17:
aa:f2:0f:f7:fd:c0:0f:14:98:a8:57:c5:46:e7:5a:05:3c:d9:
2e:8d:c8:3b:ff:ad:74:d1:5d:08:86:39:b1:a0:48:d6:d3:c5:
77:1c:f6:4e:79:fc:cf:ba:b0:2c:3d:23:1b:50:54:bd:d3:ea:
79:b8:f6:fb:55:8f:5f:25:64:96:bf:42:66:3b:8e:b1:05:74:
7c:1f:f0:43:26:1e:d8:f4:b4:d8:55:a3:57:23:80:76:e6:e3:
cf:fe:4d:a7:9e:ae:db:b6:1e:b5:d8:8b:32:c8:f2:e1:c6:f2:
dc:04:b5:2b:4f:58:ee:c2:9c:d5:c4:7c:dd:75:a8:8c:5e:8c:
50:04:ff:0f:df:7e:6b:4b:e2:d1:9a:83:2f:1b:39:ca:1c:77:
c9:39:ef:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:40:00 2025 by rpki-client