Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1639/QfGjLHucOnkh2HjLtzRYvD3ckvg.roa
File: QfGjLHucOnkh2HjLtzRYvD3ckvg.roa (raw, json)
Hash identifier: g8xQnJXn428X6cMYFLijGtMp9QtW/EB+lQjMYR5fMBI=
Subject key identifier: 41:F1:A3:2C:7B:9C:3A:79:21:D8:78:CB:B7:34:58:BC:3D:DC:92:F8
Certificate issuer: /CN=24505A86B00DCD05BA360BCA66ADFF602BD95AA8
Certificate serial: 54
Authority key identifier: 24:50:5A:86:B0:0D:CD:05:BA:36:0B:CA:66:AD:FF:60:2B:D9:5A:A8
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/JFBahrANzQW6NgvKZq3_YCvZWqg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1639/QfGjLHucOnkh2HjLtzRYvD3ckvg.roa
Signing time: Thu 13 Apr 2023 09:52:34 +0000
ROA not before: Thu 13 Apr 2023 09:52:34 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 131078
IP address blocks: 202.255.47.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:29:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84 (0x54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24505A86B00DCD05BA360BCA66ADFF602BD95AA8
Validity
Not Before: Apr 13 09:52:34 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=41F1A32C7B9C3A7921D878CBB73458BC3DDC92F8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:79:2e:21:63:3b:7a:cc:ea:f7:03:2e:c3:6b:
92:b7:c7:ea:9a:2e:56:bc:50:ef:72:1f:fc:e3:e0:
e5:30:99:ff:8b:58:bc:d0:d0:c9:7e:bd:93:86:8c:
9d:2d:8b:cd:46:8b:47:12:78:33:0a:4c:4b:ce:d6:
3f:31:c0:57:1c:84:e4:ac:18:c6:09:07:db:2e:94:
8a:00:95:65:a4:93:ca:ab:09:2b:ed:5c:ae:b4:2c:
1c:76:77:83:fe:a3:33:30:11:75:2d:a0:5c:07:e0:
af:65:2a:26:eb:1e:56:b5:85:c9:98:b8:51:d9:08:
7d:2b:90:e1:cc:3c:2e:1e:54:d7:9f:fb:f7:3d:a1:
36:42:bd:f5:ae:30:95:11:48:a2:dc:e8:5a:f8:31:
60:26:48:b9:8a:9c:44:34:24:28:4f:c2:0f:bd:61:
a4:14:54:48:47:03:fb:79:5f:4e:d7:27:b0:77:5f:
89:27:8e:64:e0:f6:68:b0:29:fb:66:1b:ae:2f:07:
d8:74:38:f2:9f:c7:b1:e7:45:47:5b:ed:a6:f9:3e:
82:b3:e3:bb:b4:c4:05:91:3f:12:a0:dc:d0:2e:49:
7b:10:9b:c7:90:66:6c:85:69:31:cd:7e:cc:17:77:
01:a1:4d:29:b9:b1:16:12:83:79:89:70:12:f0:ee:
b9:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:F1:A3:2C:7B:9C:3A:79:21:D8:78:CB:B7:34:58:BC:3D:DC:92:F8
X509v3 Authority Key Identifier:
keyid:24:50:5A:86:B0:0D:CD:05:BA:36:0B:CA:66:AD:FF:60:2B:D9:5A:A8
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1639/JFBahrANzQW6NgvKZq3_YCvZWqg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/JFBahrANzQW6NgvKZq3_YCvZWqg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1639/QfGjLHucOnkh2HjLtzRYvD3ckvg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.255.47.0/24
Signature Algorithm: sha256WithRSAEncryption
47:cf:0a:37:90:b5:6f:43:da:f9:b2:0e:f4:f8:51:9a:07:75:
fb:d0:a2:0b:30:86:b3:04:07:eb:cd:46:0d:ea:f3:ed:ef:ad:
e5:ec:fd:40:c1:29:70:4b:11:03:2e:18:95:47:b4:43:cb:5a:
08:30:01:ee:7c:e2:72:d8:85:e3:1c:d2:b7:76:35:57:ad:1f:
26:14:ee:ad:8a:76:55:16:53:be:39:97:a0:0a:94:01:d0:12:
ed:ad:9a:fc:71:b7:d9:9c:13:d3:6a:be:a6:26:a0:04:3e:7e:
33:09:34:42:c5:6a:81:f4:3a:4d:f1:d5:a0:b8:c0:fd:64:62:
c7:41:54:2a:09:db:70:fa:49:20:68:ba:b4:7e:7f:dd:c1:71:
33:de:5d:cf:7a:2d:0b:fc:dc:07:d5:29:8b:c8:28:ce:47:5a:
57:60:9f:38:e8:c1:01:38:de:6e:5e:73:93:b5:ea:cc:68:9a:
7e:f6:b2:1f:b0:11:aa:3d:20:e6:c6:18:2d:55:31:f9:a6:73:
b4:ec:1b:17:eb:ee:7b:bd:01:55:eb:5a:ec:b2:ac:43:e3:4c:
82:51:1a:d3:75:57:5f:f2:a6:34:be:5e:06:26:c2:b1:d0:59:
e2:00:2e:df:7e:a0:ab:92:d2:f3:8a:b1:17:65:f8:6c:e8:f0:
04:bc:60:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 01:58:11 2024 by rpki-client on console-fra.rpki-client.org