Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/WEnvdegJNEdBuEbxsoteP4StB8o.roa
File: WEnvdegJNEdBuEbxsoteP4StB8o.roa (raw, json)
Hash identifier: pH8da7lMArJRdi/MQxBnE5SlFVt1hX6rm3P7+89Re3o=
Subject key identifier: 58:49:EF:75:E8:09:34:47:41:B8:46:F1:B2:8B:5E:3F:84:AD:07:CA
Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D
Certificate serial: 1C
Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/WEnvdegJNEdBuEbxsoteP4StB8o.roa
Signing time: Tue 02 Apr 2024 00:08:59 +0000
ROA not before: Tue 02 Apr 2024 00:08:59 +0000
ROA not after: Sat 15 Mar 2025 01:30:02 +0000
asID: 2497
IP address blocks: 157.8.64.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 19 Jul 2024 09:21:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 28 (0x1c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D
Validity
Not Before: Apr 2 00:08:59 2024 GMT
Not After : Mar 15 01:30:02 2025 GMT
Subject: CN=5849EF75E809344741B846F1B28B5E3F84AD07CA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a6:b2:d6:e8:8c:38:1d:25:6e:79:66:87:74:
03:5e:85:cd:70:8b:05:97:bf:15:22:e1:c7:a3:f8:
ef:26:43:6e:49:53:b7:57:18:06:53:d0:59:68:49:
f5:64:a1:e5:0b:96:d9:fa:ea:a7:4f:79:99:f9:09:
5c:fe:e1:7d:38:5b:fc:43:dd:fc:c9:32:50:4f:52:
c2:20:9c:27:e9:dc:d8:f1:59:0e:bd:05:b7:2b:61:
4a:9f:46:51:f0:31:fd:38:8a:4a:d2:ec:d4:8f:b6:
17:d9:08:0f:07:f7:49:45:e7:92:15:37:e6:4b:b4:
46:c4:a1:50:1e:1f:a8:73:64:c4:73:34:7a:11:3e:
06:62:b7:51:be:b5:2e:bf:fe:56:30:b1:69:4b:bf:
94:1a:f2:74:d7:bc:be:8d:a1:a2:c6:22:28:26:04:
7f:8c:d4:2e:fa:c5:db:23:7f:b9:68:48:98:4f:cb:
cf:a5:ef:15:19:38:83:c9:41:f3:65:56:15:38:3b:
ea:94:47:43:bc:44:71:48:47:ec:a2:35:3a:07:9a:
fa:17:5b:05:63:8a:25:77:66:30:a5:76:a6:59:96:
60:06:e0:36:32:ce:45:77:cb:3a:f3:b5:7e:b4:f8:
1f:80:4e:b8:a4:e9:7e:97:0f:28:29:5d:a0:af:ce:
2b:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:49:EF:75:E8:09:34:47:41:B8:46:F1:B2:8B:5E:3F:84:AD:07:CA
X509v3 Authority Key Identifier:
keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/WEnvdegJNEdBuEbxsoteP4StB8o.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.8.64.0/21
Signature Algorithm: sha256WithRSAEncryption
04:4a:0a:03:b7:99:ec:ba:db:d7:f1:76:ce:a7:ae:47:2a:b8:
3b:a3:34:98:0e:dd:9b:d9:ed:68:c6:bd:6d:53:35:6b:4d:bc:
4f:63:6e:a5:4f:56:84:1e:1a:2b:3a:6e:45:c7:5d:b0:c8:f4:
38:20:65:d2:1d:05:f2:e6:61:70:b3:72:70:ff:bc:14:e7:c8:
06:6a:f7:09:53:9f:ad:3e:6e:aa:28:66:6c:f4:1a:d7:b9:64:
1e:67:91:2c:bf:2c:f7:07:bc:13:1b:a3:9a:c3:a2:3f:ba:da:
c9:49:fa:80:bf:f8:63:ba:68:7c:07:e9:39:3a:3b:0d:6c:4f:
e0:b3:13:ca:90:a3:a7:45:36:19:2b:21:a0:d4:d0:c6:19:88:
95:d5:10:43:98:d2:09:a5:d9:c3:58:26:bc:97:67:ae:a8:d6:
a6:e1:f8:ea:c7:6f:35:d1:2f:6c:ae:5e:47:1b:23:9a:a4:d6:
61:aa:b1:bd:16:b1:1e:1b:24:2f:00:ff:4d:b3:5e:45:4d:f0:
6d:ef:f8:41:39:f2:7c:70:c5:f4:7a:19:67:29:05:10:e7:bf:
a3:be:c1:0e:04:e7:72:e0:a1:d2:a7:28:67:cf:95:af:94:77:
25:7c:3e:a2:d2:0b:aa:41:57:ca:0d:8b:e8:cb:6a:0c:79:61:
e3:44:44:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 19 10:50:53 2024 by rpki-client on console-fra.rpki-client.org