Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/bNcoTr52YwCZQuJBWZH6rK1tmtE.roa
File: bNcoTr52YwCZQuJBWZH6rK1tmtE.roa (raw, json)
Hash identifier: oltfUjUYcfrhfB9AH/ovOwA/KppmD4TPUH/kPO2rIo0=
Subject key identifier: 6C:D7:28:4E:BE:76:63:00:99:42:E2:41:59:91:FA:AC:AD:6D:9A:D1
Certificate issuer: /CN=A9415FE9377F3F4B8EA838C662C4BCD8DCFCF1BA
Certificate serial: 29
Authority key identifier: A9:41:5F:E9:37:7F:3F:4B:8E:A8:38:C6:62:C4:BC:D8:DC:FC:F1:BA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qUFf6Td_P0uOqDjGYsS82Nz88bo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/bNcoTr52YwCZQuJBWZH6rK1tmtE.roa
Signing time: Thu 01 Feb 2024 01:30:09 +0000
ROA not before: Thu 01 Feb 2024 01:30:09 +0000
ROA not after: Tue 14 Jan 2025 01:30:02 +0000
asID: 4694
IP address blocks: 216.255.224.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 28 Oct 2024 07:07:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 41 (0x29)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9415FE9377F3F4B8EA838C662C4BCD8DCFCF1BA
Validity
Not Before: Feb 1 01:30:09 2024 GMT
Not After : Jan 14 01:30:02 2025 GMT
Subject: CN=6CD7284EBE7663009942E2415991FAACAD6D9AD1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7e:86:f0:c2:33:e0:59:d5:35:10:ee:aa:f8:
00:8e:40:7c:6f:80:70:89:5d:6c:78:52:b6:38:f8:
58:02:be:9d:e8:11:65:f8:67:11:73:42:0c:77:d3:
7a:31:50:b4:8f:70:35:5f:3a:a7:04:a9:c5:94:e2:
1a:27:38:ae:38:6f:11:b9:18:11:70:9e:7d:f2:d8:
67:59:ed:b6:fd:ec:1c:4e:ff:d8:dc:ad:ce:10:1b:
5e:19:4c:9a:d3:28:27:8e:e1:ce:0c:2d:ad:d3:e7:
7c:c0:b7:d8:1f:b7:e1:19:fd:37:89:ca:c5:1d:71:
7f:6d:31:c5:f7:16:df:ce:aa:2e:07:68:1a:87:c3:
d4:c8:ac:3f:9f:49:10:e4:ca:59:61:e4:a8:5c:1e:
b4:2f:8f:82:0a:7e:c2:e2:c1:bc:a4:b9:8c:bf:93:
52:bf:aa:85:ce:ad:ac:c7:5c:8b:4d:81:32:b5:08:
02:d3:a4:ca:2e:ae:36:29:8b:2f:50:fe:4e:8e:6a:
7f:ec:62:ac:1b:2e:a5:f7:c0:44:45:9f:7e:78:73:
66:1e:0d:42:59:93:7f:12:16:36:04:97:20:97:34:
2f:b2:f1:2e:50:c5:ce:85:76:05:0d:64:f4:d3:31:
da:63:46:c9:48:7e:8a:4a:dc:75:fa:78:8d:39:8b:
4e:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:D7:28:4E:BE:76:63:00:99:42:E2:41:59:91:FA:AC:AD:6D:9A:D1
X509v3 Authority Key Identifier:
keyid:A9:41:5F:E9:37:7F:3F:4B:8E:A8:38:C6:62:C4:BC:D8:DC:FC:F1:BA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/qUFf6Td_P0uOqDjGYsS82Nz88bo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qUFf6Td_P0uOqDjGYsS82Nz88bo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/bNcoTr52YwCZQuJBWZH6rK1tmtE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
216.255.224.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:47:d0:3b:0a:38:6a:a4:88:21:78:d5:7f:27:2a:64:5b:8a:
6a:82:7b:8a:e1:50:13:de:43:e5:11:d3:50:89:3f:71:d1:e8:
44:73:6f:d6:b1:24:e1:e0:9f:a6:ad:ca:70:10:1b:31:e3:3b:
3e:d8:e7:84:e1:6e:eb:8a:91:96:1a:ff:4a:c5:2a:52:0d:38:
8c:c0:26:6d:56:53:19:6e:0f:10:42:e2:d8:87:d1:0b:d7:d8:
4c:5e:01:62:48:02:14:b7:0d:4a:64:63:49:f4:a0:36:c6:72:
32:69:cd:9e:bf:a4:c4:a2:e5:e6:b7:4a:84:c4:fb:da:7f:ec:
ba:c3:e1:23:18:bf:95:1f:54:26:a2:35:ec:12:8d:ec:b8:1a:
b0:5f:d2:8a:9c:4b:81:47:05:77:8f:ca:f3:c7:ed:3e:ec:68:
eb:5d:58:e9:5d:73:27:4f:a8:a6:cf:96:e7:e0:79:af:09:d2:
61:af:72:94:58:02:e2:bc:ed:41:c1:d5:7e:02:e1:de:d0:76:
96:06:87:c5:04:e4:9a:54:6c:1e:b8:37:40:5f:03:97:b2:2e:
af:ff:f6:2d:dc:1d:20:1a:82:54:e8:07:3a:02:58:03:44:56:
31:35:a1:3d:10:71:5e:95:28:7f:58:2d:52:9e:44:ab:74:d6:
c9:e6:7a:94
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Oct 28 09:40:50 2024 by rpki-client on console-ams.rpki-client.org