Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/hSAgiB8ts9-sIrOJSnNLjyH396c.roa
File: hSAgiB8ts9-sIrOJSnNLjyH396c.roa (raw, json)
Hash identifier: noEyZecLv2w1M1ChhKPFRT9Vls1V0WGvsNceoA3eLZI=
Subject key identifier: 85:20:20:88:1F:2D:B3:DF:AC:22:B3:89:4A:73:4B:8F:21:F7:F7:A7
Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D
Certificate serial: 13
Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/hSAgiB8ts9-sIrOJSnNLjyH396c.roa
Signing time: Tue 02 Apr 2024 00:01:15 +0000
ROA not before: Tue 02 Apr 2024 00:01:15 +0000
ROA not after: Sat 15 Mar 2025 01:30:02 +0000
asID: 2497
IP address blocks: 157.8.22.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 19 Jul 2024 09:21:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 19 (0x13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D
Validity
Not Before: Apr 2 00:01:15 2024 GMT
Not After : Mar 15 01:30:02 2025 GMT
Subject: CN=852020881F2DB3DFAC22B3894A734B8F21F7F7A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:09:84:06:e5:d6:f7:c5:3e:2a:64:38:ee:5f:
6b:84:38:d8:77:49:a4:5b:dc:25:d2:85:09:05:40:
f2:70:37:97:9d:dd:6a:d5:b1:4f:6b:a5:9a:bc:49:
b0:87:43:7b:a2:30:5b:07:9c:7a:71:b7:59:b5:eb:
14:53:51:4b:85:80:37:66:6d:98:e1:b0:68:08:9e:
6b:08:74:1f:c3:0f:f1:90:83:9a:e8:86:37:4d:e6:
fb:f5:93:d5:b3:b0:0d:9c:1e:78:14:08:4f:d7:78:
62:7d:df:89:e4:e3:89:07:bc:05:48:36:d3:c5:b4:
09:33:1a:a4:4b:3d:d1:08:a6:25:59:71:2b:7c:9b:
17:7e:2f:da:b0:c3:f7:d9:37:f1:91:e6:ce:ff:f5:
2c:44:e1:dc:53:ea:df:58:99:a7:ca:71:72:05:74:
df:d4:3e:e1:d5:f1:45:4d:ad:90:6b:50:2e:29:ad:
f4:11:da:1b:0d:a6:37:ee:a8:a6:c5:8c:3f:4f:c8:
fd:10:7c:42:f5:a2:57:3c:72:e0:64:34:56:33:44:
b8:96:c0:c3:6f:66:ab:0e:a1:11:b4:1c:ad:a6:8e:
cb:11:9e:f0:e8:04:2e:94:e5:10:03:38:fd:b8:f5:
05:db:02:b3:3f:57:f8:d7:3c:54:03:30:8c:da:01:
a4:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:20:20:88:1F:2D:B3:DF:AC:22:B3:89:4A:73:4B:8F:21:F7:F7:A7
X509v3 Authority Key Identifier:
keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/hSAgiB8ts9-sIrOJSnNLjyH396c.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.8.22.0/23
Signature Algorithm: sha256WithRSAEncryption
51:f4:5e:14:55:7c:a2:01:e7:ab:6b:88:5f:f5:32:16:f9:b7:
ae:34:b2:e8:7d:57:7f:22:cf:1b:d4:d7:14:9e:8c:61:ee:cf:
73:2f:14:41:f4:0b:85:42:ea:4b:74:a3:e1:ed:a2:65:83:12:
23:a5:e3:af:e0:a4:bb:90:20:5b:49:a5:f1:37:a6:69:73:9a:
e3:b4:f9:6c:c1:db:a5:49:3c:97:35:24:5e:df:93:99:5d:b5:
e1:e0:9a:76:9e:9e:76:ed:43:8d:78:f0:71:d0:a8:42:48:df:
95:9b:59:8d:fc:83:61:5f:36:56:b2:71:82:4f:a5:05:08:3f:
74:d2:5d:97:c8:e3:1d:e7:6a:06:bb:b6:e6:27:ee:de:55:0b:
cd:a1:33:04:67:a0:6d:93:e1:d5:00:e5:1f:b4:0c:4a:e9:7c:
d1:bd:60:e0:15:57:72:a2:7d:62:18:c4:28:0a:cf:6e:c1:50:
6b:1c:b1:ee:4b:b2:61:7f:55:27:a5:f5:11:7b:8e:4e:14:a9:
73:2f:8a:65:17:b4:c2:b1:a9:e5:b4:09:40:73:75:b4:96:ae:
76:67:54:60:c7:15:3a:28:4e:86:8f:dc:a4:10:a8:0d:50:2e:
48:07:7e:ca:20:91:d7:1e:01:eb:c1:d2:f2:82:89:31:e8:c2:
67:fd:8f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:07 2025 by rpki-client