Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/0030113/ESHOtTZjKwNK0emk1Dn7dXTaQLw.roa
File: ESHOtTZjKwNK0emk1Dn7dXTaQLw.roa (raw, json)
Hash identifier: D3ZlDFSezsQQ6B1zkDRoPyeqmwPd2I1cZFeT91bkQGM=
Subject key identifier: 11:21:CE:B5:36:63:2B:03:4A:D1:E9:A4:D4:39:FB:75:74:DA:40:BC
Certificate issuer: /CN=F27064FFE42936CDBF59E51465E023FAE4B5AFAA
Certificate serial: 41
Authority key identifier: F2:70:64:FF:E4:29:36:CD:BF:59:E5:14:65:E0:23:FA:E4:B5:AF:AA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/8nBk_-QpNs2_WeUUZeAj-uS1r6o.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0030113/ESHOtTZjKwNK0emk1Dn7dXTaQLw.roa
Signing time: Mon 11 Nov 2024 02:36:43 +0000
ROA not before: Mon 11 Nov 2024 02:36:43 +0000
ROA not after: Fri 07 Nov 2025 10:27:51 +0000
asID: 2515
IP address blocks: 2001:d90::/32 maxlen: 48
Validation: Failed, certificate revoked on Mon 02 Dec 2024 03:59:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 65 (0x41)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F27064FFE42936CDBF59E51465E023FAE4B5AFAA
Validity
Not Before: Nov 11 02:36:43 2024 GMT
Not After : Nov 7 10:27:51 2025 GMT
Subject: CN=1121CEB536632B034AD1E9A4D439FB7574DA40BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:0f:a9:e0:90:57:a1:47:83:3d:6a:d8:c3:ab:
79:d0:67:e1:5c:a3:49:bf:eb:ff:2c:18:da:27:57:
bd:43:71:98:2d:66:04:9e:8b:bc:74:50:fb:9e:e8:
96:e2:1e:16:c5:7c:46:8b:b6:b6:d7:e8:b2:30:10:
5e:09:7c:1a:d4:af:98:fd:77:23:4b:14:98:2b:a9:
85:ad:43:c3:6c:9a:4a:76:b3:70:d2:31:ce:36:14:
36:02:07:cb:aa:f4:11:06:d0:20:67:db:5f:3e:b2:
4b:e8:8a:c2:53:fd:be:d9:e4:78:d4:7a:dc:fd:ed:
c2:2f:52:8b:13:c1:a4:2d:a5:9b:1e:ab:40:5f:09:
18:dc:c9:37:1d:23:e0:1c:a7:c4:4c:18:47:d4:38:
84:e7:3e:e2:47:00:e0:ea:26:49:5d:62:17:4f:d7:
ae:dc:08:a5:31:b6:5f:5d:81:9f:d3:49:f6:cd:05:
5a:5c:72:c5:92:8b:6f:eb:4f:56:bd:97:f2:be:fc:
32:3a:7f:35:25:3b:16:29:4a:2e:36:73:73:96:e3:
54:f7:6b:10:f1:3a:c0:fb:cf:af:f4:70:88:f9:e5:
e6:47:c5:d0:c5:60:4d:78:82:18:86:6d:b1:dc:98:
13:e3:04:da:16:0b:29:77:22:c3:1a:99:79:33:14:
e4:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:21:CE:B5:36:63:2B:03:4A:D1:E9:A4:D4:39:FB:75:74:DA:40:BC
X509v3 Authority Key Identifier:
keyid:F2:70:64:FF:E4:29:36:CD:BF:59:E5:14:65:E0:23:FA:E4:B5:AF:AA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0030113/8nBk_-QpNs2_WeUUZeAj-uS1r6o.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/8nBk_-QpNs2_WeUUZeAj-uS1r6o.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/0030113/ESHOtTZjKwNK0emk1Dn7dXTaQLw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:d90::/32
Signature Algorithm: sha256WithRSAEncryption
8c:87:d7:df:ad:fb:9d:bd:a2:b2:ef:be:ca:be:50:1f:93:35:
da:5d:2d:41:a8:e7:30:c6:58:99:64:4e:f7:49:ad:f4:3f:53:
1a:40:4e:8e:9e:d0:df:d4:67:b8:ff:e1:c8:04:e0:37:9b:fb:
25:61:de:d5:6d:c0:21:08:f4:cc:64:a0:43:b4:39:4a:ec:5e:
77:54:79:44:d6:92:c7:54:1f:4b:17:79:72:fc:19:1f:d5:5c:
48:46:a2:bc:22:19:a2:6e:bb:f1:24:d5:fe:f1:60:e2:d6:96:
56:23:9b:25:70:04:66:a2:f7:f2:e4:71:4f:83:3b:98:f2:27:
c8:35:06:92:21:3d:96:c6:6c:64:51:46:ff:1c:ed:84:36:b0:
0a:18:64:45:4a:20:6e:21:94:09:30:4a:2e:46:5e:15:80:0d:
b6:f4:22:a3:d2:17:16:39:38:f3:9a:ce:9d:93:51:0e:b9:57:
b0:3e:5f:85:19:bf:44:5e:c5:a8:ca:86:8d:4c:5c:5c:9a:75:
44:35:0d:8d:4a:73:22:11:b7:59:9f:7e:66:b0:49:5a:aa:f3:
b3:a7:65:28:8c:fa:a1:86:1f:08:c2:0a:be:65:56:3d:7d:b0:
86:c8:f8:f4:7b:63:d8:b4:05:62:9f:4f:3c:d4:5c:76:50:21:
9e:b0:5b:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:22:32 2025 by rpki-client