Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/446/KaytmWCk0Y5T2j5rT80PJVqsJ7c.roa
File: KaytmWCk0Y5T2j5rT80PJVqsJ7c.roa (raw, json)
Hash identifier: AYuHMVBbGuUMptUYnZJr0Oz/woLTLWZX2t1wUG98LZw=
Subject key identifier: 29:AC:AD:99:60:A4:D1:8E:53:DA:3E:6B:4F:CD:0F:25:5A:AC:27:B7
Certificate issuer: /CN=93E00C1B18C6955EA04130329544B1F09BFCBFCA
Certificate serial: 1B
Authority key identifier: 93:E0:0C:1B:18:C6:95:5E:A0:41:30:32:95:44:B1:F0:9B:FC:BF:CA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/k-AMGxjGlV6gQTAylUSx8Jv8v8o.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/446/KaytmWCk0Y5T2j5rT80PJVqsJ7c.roa
Signing time: Wed 31 Jul 2024 01:32:28 +0000
ROA not before: Wed 31 Jul 2024 01:32:28 +0000
ROA not after: Tue 15 Jul 2025 01:30:02 +0000
asID: 9997
IP address blocks: 61.120.128.0/20 maxlen: 24
Validation: Failed, certificate revoked on Tue 01 Jul 2025 01:31:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27 (0x1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93E00C1B18C6955EA04130329544B1F09BFCBFCA
Validity
Not Before: Jul 31 01:32:28 2024 GMT
Not After : Jul 15 01:30:02 2025 GMT
Subject: CN=29ACAD9960A4D18E53DA3E6B4FCD0F255AAC27B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:ba:34:30:5e:ab:e9:cc:d5:a3:02:eb:66:03:
00:cd:30:e0:99:4d:6e:8a:b7:20:6c:48:ac:92:cc:
a6:9e:7d:8e:e5:73:91:d1:80:d1:3c:01:a6:f7:f9:
37:86:da:dc:26:c4:03:a4:dc:6d:51:f4:7e:9f:6e:
38:2c:ab:c5:20:0e:f0:d4:e4:94:34:f7:ff:4f:a2:
38:dc:8c:d7:f1:c6:da:12:76:d6:90:5a:9c:d0:a9:
26:52:86:f0:fe:cb:e5:6b:ec:9e:5c:c4:a5:c5:b6:
33:1c:1c:f4:29:ef:0a:de:84:8f:07:e6:22:3f:e4:
c6:95:50:60:2f:1a:b3:34:c0:af:03:04:54:ff:a5:
f1:0a:a4:4a:dc:a9:ac:c1:5d:9c:13:cf:79:23:b0:
a3:c0:8a:ad:bc:b1:d3:1e:fa:81:20:50:6a:58:d1:
d5:cb:58:49:22:37:48:16:36:e0:aa:b7:16:5a:af:
7d:6f:6c:e6:9f:c3:df:21:b2:f4:c7:18:a9:97:f3:
56:c9:60:d9:b8:cd:d6:4c:50:ad:cc:85:21:f8:73:
eb:5f:60:7d:64:26:b0:c9:df:a1:87:63:bd:72:6e:
5f:b2:ea:9b:8b:2c:db:64:d5:fa:ef:45:24:9e:9f:
b6:4f:67:e6:db:2c:8a:9e:6a:cd:2d:91:6b:85:4d:
cd:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:AC:AD:99:60:A4:D1:8E:53:DA:3E:6B:4F:CD:0F:25:5A:AC:27:B7
X509v3 Authority Key Identifier:
keyid:93:E0:0C:1B:18:C6:95:5E:A0:41:30:32:95:44:B1:F0:9B:FC:BF:CA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/446/k-AMGxjGlV6gQTAylUSx8Jv8v8o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/k-AMGxjGlV6gQTAylUSx8Jv8v8o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/446/KaytmWCk0Y5T2j5rT80PJVqsJ7c.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.120.128.0/20
Signature Algorithm: sha256WithRSAEncryption
66:de:b1:76:c0:9f:01:93:00:44:05:dc:91:40:ee:77:61:39:
2e:d0:f4:c3:27:1f:a1:92:97:27:d1:40:2c:04:b3:ec:7e:61:
60:b2:26:da:07:1c:c5:1d:d1:87:c4:22:f2:88:21:29:13:07:
1d:6a:0b:81:11:d1:87:94:79:d4:c3:fb:a9:ad:25:1f:1b:c9:
80:b2:9a:2f:87:cb:30:b7:16:0e:18:08:e4:5e:30:b5:1c:b8:
77:62:2e:ba:74:c5:0b:65:82:d9:06:fc:30:5a:ef:f8:ac:e6:
8b:3f:93:f6:be:dc:03:6a:0b:56:9b:84:78:59:88:36:a8:9a:
7d:5e:be:be:9b:60:98:0a:82:7b:5e:54:2e:79:77:5f:d0:1d:
27:f3:84:b8:1e:51:b6:a5:48:cf:27:84:39:11:47:b6:f6:7d:
b8:72:a8:be:a6:5f:5a:47:cc:60:6c:5c:da:42:53:8c:30:49:
31:b9:ab:07:63:ec:65:e4:d2:f9:ed:b4:77:7a:78:67:26:27:
c7:13:1c:98:91:e9:52:9d:83:8a:d4:5c:56:7d:d0:4d:08:3f:
43:d1:80:22:c6:b3:48:50:6c:03:e2:13:d0:d4:15:0c:86:f4:
18:9d:96:64:d3:6a:f8:19:68:d5:72:6b:30:ff:db:23:2c:e6:
fd:60:bd:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 08:12:07 2025 by rpki-client