Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/1937/qAv9-QM9WGeEynch7EVOxZ2X3Vo.roa
File: qAv9-QM9WGeEynch7EVOxZ2X3Vo.roa (raw, json)
Hash identifier: Oa3wEaSonWwZHKyYOqLFg33tGK63/ynDSpgy7B00wcs=
Subject key identifier: A8:0B:FD:F9:03:3D:58:67:84:CA:77:21:EC:45:4E:C5:9D:97:DD:5A
Certificate issuer: /CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D
Certificate serial: 17
Authority key identifier: 71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/qAv9-QM9WGeEynch7EVOxZ2X3Vo.roa
Signing time: Tue 02 Apr 2024 00:05:10 +0000
ROA not before: Tue 02 Apr 2024 00:05:10 +0000
ROA not after: Sat 15 Mar 2025 01:30:02 +0000
asID: 2497
IP address blocks: 157.8.54.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 19 Jul 2024 09:21:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 23 (0x17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7191CB9F4C422D3B3D675371B18A8DADDAE8798D
Validity
Not Before: Apr 2 00:05:10 2024 GMT
Not After : Mar 15 01:30:02 2025 GMT
Subject: CN=A80BFDF9033D586784CA7721EC454EC59D97DD5A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d1:2a:2f:a4:38:fe:7a:d7:a2:15:a5:9e:82:
e1:08:87:30:a0:68:3f:01:6d:6d:f4:c2:d9:99:c5:
cf:e5:7b:06:ec:72:15:5c:51:d6:c5:62:56:66:3f:
ea:d7:e7:98:21:8c:3a:8e:60:45:2a:c5:4c:58:7b:
5f:b6:ab:31:14:8a:d8:00:5d:20:78:39:30:7d:87:
d9:1f:e8:57:6c:a4:dd:2f:b9:2b:85:7e:a5:8e:7f:
17:10:1c:a7:45:0a:42:1d:7f:65:80:0e:a6:a2:3b:
09:e2:fd:5b:49:87:5a:24:92:1b:df:7e:2b:55:f5:
52:3c:b7:d4:b7:8d:2e:b0:ea:16:08:85:81:6f:a2:
c7:a0:45:c4:f6:7e:61:25:e1:d6:bd:5d:57:1a:18:
4f:53:e8:7c:c4:20:fc:74:31:8a:43:36:d1:be:92:
65:ec:1f:2f:75:83:5c:a2:12:cb:cc:5f:98:c5:02:
40:48:c7:47:7c:1f:ce:9f:de:35:fa:97:e2:46:7b:
83:5c:56:05:cf:c2:6a:95:76:8c:dd:2c:1f:72:5f:
6b:92:d9:4c:f7:48:4b:4d:59:65:6d:3c:ba:14:a8:
66:5c:aa:5a:1d:8c:08:e4:1f:09:5b:1a:cb:af:41:
24:38:ff:56:bc:1a:ce:e7:fd:d0:36:c5:4f:15:68:
d6:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:0B:FD:F9:03:3D:58:67:84:CA:77:21:EC:45:4E:C5:9D:97:DD:5A
X509v3 Authority Key Identifier:
keyid:71:91:CB:9F:4C:42:2D:3B:3D:67:53:71:B1:8A:8D:AD:DA:E8:79:8D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/cZHLn0xCLTs9Z1NxsYqNrdroeY0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/cZHLn0xCLTs9Z1NxsYqNrdroeY0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/1937/qAv9-QM9WGeEynch7EVOxZ2X3Vo.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.8.54.0/23
Signature Algorithm: sha256WithRSAEncryption
68:51:7b:ac:a9:ce:42:ff:f6:df:5f:08:81:8b:7b:44:60:10:
cc:f2:7d:99:bd:01:6e:98:b8:52:51:3f:6b:3e:08:c5:91:08:
bc:57:43:ba:3e:36:c6:3e:26:a0:84:da:85:65:08:b4:2f:c3:
80:7f:34:a0:1a:2f:51:de:7c:81:44:0d:f2:ad:1b:a7:d4:14:
71:3a:8d:e5:93:e3:c9:e7:0f:7e:b1:84:62:bb:a2:32:df:cc:
ad:61:58:a0:89:7b:9e:d4:52:88:f6:20:fb:e1:31:5c:8d:de:
c0:ce:e3:ed:63:ff:b2:19:d5:35:88:c8:15:ec:25:0e:40:39:
e2:7b:e2:a3:00:09:6c:9e:c0:4b:49:ff:f9:b5:44:60:ee:4b:
52:61:fa:1c:7b:55:9e:86:e8:d8:93:89:0f:96:ee:1a:bd:38:
b8:2c:48:05:b5:df:2d:d7:d3:82:ad:53:c0:3b:55:b9:5a:f8:
9a:d9:f1:c4:30:be:93:9c:36:c6:b0:bc:c3:6b:3e:5c:cd:a3:
d1:01:ab:e0:87:35:86:b1:ce:a9:7d:61:63:79:f4:40:de:7d:
4e:2a:ed:d6:83:8c:6e:68:d3:6f:db:d3:b6:2d:7d:0f:bf:30:
29:69:42:43:33:ca:c8:88:ed:07:f9:33:3e:f7:d1:56:06:f8:
38:c0:5d:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 19 10:50:53 2024 by rpki-client on console-fra.rpki-client.org