Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/173/vz9NfH4NO3crkUMI6-UDwRysB4g.roa
File: vz9NfH4NO3crkUMI6-UDwRysB4g.roa (raw, json)
Hash identifier: UIhd5tf413p14U7ojYFAAZ8f0/ovcKIoBjKXcMMH3zA=
Subject key identifier: BF:3F:4D:7C:7E:0D:3B:77:2B:91:43:08:EB:E5:03:C1:1C:AC:07:88
Certificate issuer: /CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5
Certificate serial: 94
Authority key identifier: CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/vz9NfH4NO3crkUMI6-UDwRysB4g.roa
Signing time: Thu 13 Apr 2023 09:53:13 +0000
ROA not before: Thu 13 Apr 2023 09:53:13 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 18126
IP address blocks: 223.29.0.0/17 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:29:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 148 (0x94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CD312427F800B8296DA11540C8B86E5CE12FC6C5
Validity
Not Before: Apr 13 09:53:13 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=BF3F4D7C7E0D3B772B914308EBE503C11CAC0788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:97:e0:04:f5:fa:20:32:8a:b9:fe:f5:22:9d:
53:5e:75:e9:8e:a4:ed:5e:7f:b8:0c:00:82:eb:27:
04:19:bf:b6:11:79:3f:8d:6a:5f:1c:99:70:e9:c5:
5f:00:7f:55:99:8d:28:8b:c5:1b:13:9d:01:84:8f:
95:cb:42:18:6b:fd:55:65:7d:04:7c:e0:2f:56:19:
3f:0e:d4:39:4c:16:ca:a0:ad:57:ec:aa:d8:78:35:
ab:71:bb:d0:f8:35:2d:48:c2:e6:28:a3:57:05:af:
cd:2f:af:25:de:9f:be:28:3a:d5:90:1f:9b:f7:5d:
a1:4d:fd:7d:36:c3:01:d6:2c:be:c0:88:29:a8:5f:
77:58:f6:c3:c6:b8:ae:1c:a0:d8:67:7b:6c:59:cd:
3f:c3:2c:71:94:eb:89:7f:cf:48:9b:31:f1:66:6b:
f5:8f:46:3d:e9:e8:54:73:c3:83:a0:a1:50:29:5a:
43:09:4a:f4:73:ae:3d:d0:fb:ae:07:68:60:d0:70:
ad:68:9f:02:cd:b0:9b:d7:60:5c:65:d7:3a:4f:2d:
4d:c1:13:a0:39:cd:ef:49:a1:e6:4e:e7:bb:37:77:
d2:13:a6:e0:4a:2f:32:8b:cc:e9:80:49:e0:b8:cd:
46:73:0c:4d:e9:3a:2f:79:a5:7c:1d:e7:cb:1c:0e:
a7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:3F:4D:7C:7E:0D:3B:77:2B:91:43:08:EB:E5:03:C1:1C:AC:07:88
X509v3 Authority Key Identifier:
keyid:CD:31:24:27:F8:00:B8:29:6D:A1:15:40:C8:B8:6E:5C:E1:2F:C6:C5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/zTEkJ_gAuCltoRVAyLhuXOEvxsU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/zTEkJ_gAuCltoRVAyLhuXOEvxsU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/173/vz9NfH4NO3crkUMI6-UDwRysB4g.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
223.29.0.0/17
Signature Algorithm: sha256WithRSAEncryption
87:ff:ce:0b:e8:28:b2:90:80:a0:39:8d:9e:83:0e:5b:82:c6:
25:12:2b:60:bc:0d:e3:d5:86:70:c0:14:b3:bf:21:3b:02:d3:
35:61:f7:b5:d1:8b:20:76:71:cb:8c:d1:bf:85:56:d7:4e:13:
f3:fb:d0:67:9d:f9:f8:76:8d:56:ab:4f:de:ec:90:cb:32:36:
c4:52:cc:b1:fd:4f:e7:2c:d0:6c:fd:a1:e9:9a:fc:f6:27:ff:
67:16:84:f0:1f:5c:38:90:41:ad:80:36:6e:fe:0b:35:72:28:
2f:46:19:64:c9:ae:f2:3e:d4:61:3a:69:62:e4:f1:4d:64:48:
6d:2c:24:d1:8f:50:82:00:d9:ea:6d:b3:00:d1:5c:0a:78:e0:
9d:5e:66:51:08:3d:fb:d4:20:53:63:34:ba:74:b5:5d:8f:d4:
3e:19:86:72:b4:d1:b7:2d:01:b5:4e:7a:28:71:4b:92:9a:50:
40:ff:28:86:42:38:47:ab:66:04:f7:5f:3f:9d:4c:4f:63:35:
e9:d7:c9:28:06:10:9f:85:93:a3:b6:cd:06:75:b4:e7:bc:51:
37:90:21:4d:cf:5c:4a:77:73:cd:62:cb:36:85:1e:3e:30:32:
b7:51:f3:7e:84:96:20:8b:7d:2a:6b:36:08:c5:c8:75:b5:b7:
28:59:89:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 01:58:11 2024 by rpki-client on console-fra.rpki-client.org