Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/11247/Z2-ShR0ZXlkDNt_GbOUAhtOQGXg.roa
File: Z2-ShR0ZXlkDNt_GbOUAhtOQGXg.roa (raw, json)
Hash identifier: 3a4aMgy8zZZLSdvg4t99Ft7Ip7dHBP5gZ/cbQh11nEM=
Subject key identifier: 67:6F:92:85:1D:19:5E:59:03:36:DF:C6:6C:E5:00:86:D3:90:19:78
Certificate issuer: /CN=EFC15649A8257F64FC942167E310AD38AD02CDBC
Certificate serial: 57
Authority key identifier: EF:C1:56:49:A8:25:7F:64:FC:94:21:67:E3:10:AD:38:AD:02:CD:BC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/78FWSaglf2T8lCFn4xCtOK0Czbw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/Z2-ShR0ZXlkDNt_GbOUAhtOQGXg.roa
Signing time: Sun 01 Oct 2023 01:28:34 +0000
ROA not before: Sun 01 Oct 2023 01:28:34 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 7684
IP address blocks: 133.125.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Sat 31 Aug 2024 01:29:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87 (0x57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EFC15649A8257F64FC942167E310AD38AD02CDBC
Validity
Not Before: Oct 1 01:28:34 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=676F92851D195E590336DFC66CE50086D3901978
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:70:8b:55:b5:5f:90:49:0f:07:c3:7e:31:a7:
40:81:62:67:e5:7d:8a:47:fa:3d:d0:d7:0b:eb:b2:
c1:af:68:f5:48:8f:a9:51:d6:ff:7b:8e:56:b6:4d:
10:66:f2:35:2a:28:ff:07:86:71:7c:30:85:18:05:
96:3d:6c:e1:f2:2a:1c:68:f9:ab:2e:e3:19:1d:ef:
94:b4:ab:02:41:4d:ea:f9:d6:eb:63:d0:2a:b6:d1:
0b:f4:dd:d0:bc:b6:b3:24:f0:b8:96:59:f0:60:09:
75:4e:84:a8:05:e3:2a:18:85:90:e0:b6:b5:6a:4c:
9a:ba:6e:f8:b8:07:aa:a1:a4:d9:45:36:93:0d:7c:
98:65:d8:a2:c9:f2:7d:51:b7:c5:91:e4:21:13:fb:
3f:25:bf:d3:46:6b:ab:20:73:af:33:37:c6:4d:00:
5d:5a:be:36:35:02:32:f7:56:9e:8c:82:16:54:63:
30:56:2c:c7:9b:54:b1:df:00:68:3c:fb:45:fd:c9:
a0:21:89:37:de:1c:03:0d:e4:75:a1:00:9b:79:40:
b7:88:b1:83:a6:ba:93:d5:9c:98:70:24:0c:68:12:
71:4c:99:c1:9b:1d:dc:0e:e0:8f:f1:f3:7f:89:28:
64:47:ca:ac:f2:28:ff:8f:be:b4:e0:05:37:4b:cb:
5a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6F:92:85:1D:19:5E:59:03:36:DF:C6:6C:E5:00:86:D3:90:19:78
X509v3 Authority Key Identifier:
keyid:EF:C1:56:49:A8:25:7F:64:FC:94:21:67:E3:10:AD:38:AD:02:CD:BC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/78FWSaglf2T8lCFn4xCtOK0Czbw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/78FWSaglf2T8lCFn4xCtOK0Czbw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11247/Z2-ShR0ZXlkDNt_GbOUAhtOQGXg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
133.125.0.0/16
Signature Algorithm: sha256WithRSAEncryption
a7:43:8d:6e:7e:f2:8e:ce:d9:37:f1:2f:a7:43:d4:f1:97:50:
a9:6a:bf:63:a8:a2:eb:9e:a4:b5:6b:96:49:9f:ca:d6:78:3a:
b1:9d:56:46:53:21:6b:40:c7:84:70:3f:3d:99:9f:fd:aa:3c:
cf:12:df:1e:97:41:d9:04:cc:42:5b:31:59:60:d7:84:29:5c:
6b:d9:94:e4:c7:22:29:d0:1f:e8:16:6d:08:08:2d:b4:e2:3e:
11:98:8a:4b:49:ac:8c:60:e9:4f:79:e3:b3:cb:2b:33:f4:fa:
ff:1e:24:74:ff:72:20:57:46:ac:11:c8:f6:6b:41:f8:68:3a:
1a:d1:cb:6f:5f:66:32:5a:f6:4d:99:67:c6:d4:12:c4:0f:9d:
44:42:13:47:d1:dd:47:c7:c6:e2:48:3a:41:44:0e:75:1f:2e:
b4:34:f4:45:29:d6:62:8c:13:4d:33:28:62:cb:45:9e:e9:b8:
6a:ec:77:ee:ed:77:b2:1b:de:1b:5c:72:16:16:eb:c7:ca:5a:
90:ee:a4:0b:a1:03:e8:ce:17:a8:1e:5d:8b:76:95:98:4a:50:
4a:4e:9e:17:1d:5d:f7:1d:db:4a:cb:b3:6e:16:0b:b5:26:fa:
be:2a:b0:96:c0:c6:ef:f9:e8:0b:ca:b5:c0:22:d0:78:af:f5:
8f:70:ae:f9
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Aug 31 04:06:42 2024 by rpki-client on console-fra.rpki-client.org