Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10173/YO43fxqQVKgRIypKS7fjv-8D4k0.roa
File: YO43fxqQVKgRIypKS7fjv-8D4k0.roa (raw, json)
Hash identifier: XkwCPdMmft8S68zRYOY56o5NQ25sr0jhxJy/lo0Kdmk=
Subject key identifier: 60:EE:37:7F:1A:90:54:A8:11:23:2A:4A:4B:B7:E3:BF:EF:03:E2:4D
Certificate issuer: /CN=101A90E4E74C403ABE8E5E0A1FE8E4157ABD2AE7
Certificate serial: 89
Authority key identifier: 10:1A:90:E4:E7:4C:40:3A:BE:8E:5E:0A:1F:E8:E4:15:7A:BD:2A:E7
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/YO43fxqQVKgRIypKS7fjv-8D4k0.roa
Signing time: Thu 13 Apr 2023 09:53:24 +0000
ROA not before: Thu 13 Apr 2023 09:53:24 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 18126
IP address blocks: 123.1.0.0/17 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:30:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137 (0x89)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=101A90E4E74C403ABE8E5E0A1FE8E4157ABD2AE7
Validity
Not Before: Apr 13 09:53:24 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=60EE377F1A9054A811232A4A4BB7E3BFEF03E24D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:5c:2e:8a:be:74:ff:81:38:3b:27:7f:66:cd:
9c:ab:6f:b5:ec:79:08:76:40:5c:dc:5c:8d:53:78:
06:9b:f7:22:60:4c:dd:07:aa:3f:a9:02:7e:40:8c:
46:fe:bf:b2:09:07:ee:dd:05:3c:48:04:e5:27:80:
81:37:8f:1e:87:b8:18:9b:f2:9e:49:0e:f9:0b:62:
15:ae:bd:48:59:df:38:30:27:84:e7:70:29:0e:cd:
e7:70:6d:aa:ba:cb:ce:11:2e:7a:cf:65:1a:9d:bd:
04:5a:be:e1:a2:f5:d0:34:28:b1:a0:1a:81:76:6e:
aa:fb:d8:f9:c9:c1:ca:52:ea:17:ce:34:13:5c:58:
2f:b3:af:56:2d:f2:04:d6:29:ae:1e:4a:47:e0:14:
0c:58:d8:3c:63:4f:9e:d8:e2:8c:24:05:79:89:f4:
0b:a8:37:88:a3:ac:27:36:b3:0d:8c:d5:80:cc:eb:
a0:a8:37:9d:8c:13:c3:cc:2a:75:e8:a3:ed:b5:1e:
ab:41:54:4f:f9:6c:1f:fe:58:da:6c:f2:5a:a4:01:
74:15:47:d9:0a:ca:1e:b3:21:6b:bb:2f:40:4e:af:
1e:cd:47:2d:f9:2a:57:30:e3:08:02:d6:9d:8a:b8:
dd:c7:6c:8b:49:9b:e0:05:8d:28:63:56:c7:9d:ad:
d3:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:EE:37:7F:1A:90:54:A8:11:23:2A:4A:4B:B7:E3:BF:EF:03:E2:4D
X509v3 Authority Key Identifier:
keyid:10:1A:90:E4:E7:4C:40:3A:BE:8E:5E:0A:1F:E8:E4:15:7A:BD:2A:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/YO43fxqQVKgRIypKS7fjv-8D4k0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
123.1.0.0/17
Signature Algorithm: sha256WithRSAEncryption
7e:22:03:78:93:ad:b3:04:f5:ff:f2:29:34:f4:ee:57:10:fa:
f8:23:ef:5b:20:7d:c6:63:33:7a:b6:de:3a:fc:39:b1:0f:6c:
09:d2:c4:04:7b:55:31:03:d7:e8:8e:dc:17:66:fb:86:3c:45:
3b:8c:4f:e7:92:cb:c4:82:b4:ca:ee:ee:69:b8:bf:3d:88:ad:
ba:46:70:28:ad:33:2d:f7:35:f0:21:5d:6f:dc:58:a1:55:2c:
f5:44:30:84:a8:11:a2:68:61:71:06:9f:92:4a:27:39:e5:d6:
7b:ca:ac:2f:81:34:36:98:69:b1:79:81:ea:52:d7:38:04:1f:
53:87:db:19:05:16:69:08:a2:c7:a1:fc:50:ea:37:a7:99:cb:
b4:ab:97:76:ca:cc:1f:0a:90:10:25:a2:e0:67:b3:56:5e:21:
71:07:2f:14:5a:01:f4:27:d2:65:89:65:0f:da:bf:57:5b:26:
be:da:af:e2:85:6f:41:e0:f4:c9:28:5d:a0:af:61:5a:c7:4b:
c1:a4:31:c9:78:26:39:77:01:35:79:22:6b:a2:34:88:b4:ac:
e1:31:2c:17:ae:3c:fe:9a:38:33:8a:1c:be:41:62:39:bb:48:
88:eb:cb:f0:84:b5:68:5f:33:2b:5e:c8:d7:ee:85:a2:aa:3b:
35:99:58:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 01:58:10 2024 by rpki-client on console-fra.rpki-client.org