Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/21042/tJT2wH7LJ7yRbCu2U-mQHvt7BbA.roa
File: tJT2wH7LJ7yRbCu2U-mQHvt7BbA.roa (raw, json)
Hash identifier: 2J5ObpqFtrT4/UpjPBditUaUaSPyaI4/YE/LTBE4rvk=
Subject key identifier: B4:94:F6:C0:7E:CB:27:BC:91:6C:2B:B6:53:E9:90:1E:FB:7B:05:B0
Certificate issuer: /CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837
Certificate serial: 1F
Authority key identifier: 4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/tJT2wH7LJ7yRbCu2U-mQHvt7BbA.roa
Signing time: Tue 01 Aug 2023 01:29:25 +0000
ROA not before: Tue 01 Aug 2023 01:29:25 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 24121
IP address blocks: 112.140.128.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:29:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 31 (0x1f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837
Validity
Not Before: Aug 1 01:29:25 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=B494F6C07ECB27BC916C2BB653E9901EFB7B05B0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:dc:14:3e:e7:a3:10:89:59:a6:4e:7e:e5:8c:
50:1e:52:79:cb:3a:4a:4b:85:10:97:6e:cd:e4:4e:
2b:31:6d:9d:cd:3a:a0:bc:0b:85:e4:41:49:40:4c:
da:3a:23:df:70:1c:e1:4c:8f:5a:e0:dd:e7:08:eb:
73:ce:7d:f8:10:0a:6c:6a:2a:1d:00:45:36:0b:4c:
f6:65:c8:89:4c:40:e1:8d:af:fc:26:96:64:c4:fe:
1b:bd:07:83:48:80:3f:90:66:bf:9a:a1:33:fa:8b:
67:c9:e9:b1:0e:d5:23:7a:b1:6a:e9:8f:9d:2b:07:
84:9d:49:49:83:70:e4:8f:92:2f:37:b8:f8:05:32:
ac:62:42:0c:71:ed:c6:17:0e:4e:e4:33:9a:a3:9d:
3c:b4:04:3a:ad:85:85:f4:2d:40:9f:bb:24:83:0b:
d0:2c:6a:1e:1c:81:4a:a4:f4:e7:44:bf:50:6c:29:
68:3b:b0:8d:66:04:88:3e:dd:6a:86:ed:08:2e:80:
c2:76:ba:73:70:75:cb:c8:c6:9e:c9:d7:7a:de:5e:
57:50:31:19:69:5a:96:b3:b7:5b:66:d1:d4:56:89:
56:5d:f2:f4:62:85:bb:0b:fd:53:9d:b5:5c:68:56:
9f:38:d7:c2:ea:0f:33:29:6e:56:c0:c4:2b:e7:14:
2e:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:94:F6:C0:7E:CB:27:BC:91:6C:2B:B6:53:E9:90:1E:FB:7B:05:B0
X509v3 Authority Key Identifier:
keyid:4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/tJT2wH7LJ7yRbCu2U-mQHvt7BbA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
112.140.128.0/20
Signature Algorithm: sha256WithRSAEncryption
2c:c2:98:0f:6f:a4:51:db:92:e1:26:59:8e:ba:d7:13:3e:db:
29:db:c4:b4:ff:0f:bf:52:8d:97:b4:7a:8c:fc:64:00:06:bb:
b0:f0:9e:e2:81:78:d5:9c:64:ac:17:b1:e5:9b:ae:2c:b3:5c:
48:46:bc:28:03:b1:8e:df:fb:f2:53:de:a0:15:03:de:53:79:
ae:52:8a:2b:ad:ca:ae:fe:73:b2:a2:0b:9c:1b:be:b0:a0:22:
0c:9e:47:f9:44:88:80:13:56:35:14:7f:4a:0a:d9:10:ea:32:
5c:8f:6d:b9:cf:8a:9f:8c:16:c8:0b:09:81:04:e8:b3:3b:d7:
fb:7e:69:24:0f:eb:49:4b:4a:ac:d0:03:f3:64:ad:2f:f1:fa:
b3:54:08:39:af:f6:15:ff:57:bf:72:f2:d7:47:a4:36:83:33:
3f:d5:b7:7c:84:8e:98:da:65:4b:ba:45:1b:f2:64:96:2d:10:
0e:e5:c5:a6:0a:0a:c7:eb:ac:f3:63:c2:57:16:66:5a:98:ef:
03:11:a4:c7:b5:d3:93:e5:55:58:35:27:2e:20:dc:8c:5b:dc:
78:70:a9:99:04:c4:29:ec:34:c2:5b:4f:d1:51:7e:df:ea:d6:
e5:83:d9:9f:62:81:ae:65:2f:8f:da:e6:3e:82:ac:89:fd:19:
e7:f7:68:f2
-----BEGIN CERTIFICATE-----
MIIFCzCCA/OgAwIBAgIBHzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0RjNF
NjM5NkM5RDc2Q0JERjRFRDJENURFN0EyQTc2MDIxNEM5ODM3MB4XDTIzMDgwMTAx
MjkyNVoXDTI0MDcxNDAxMzAwM1owMzExMC8GA1UEAxMoQjQ5NEY2QzA3RUNCMjdC
QzkxNkMyQkI2NTNFOTkwMUVGQjdCMDVCMDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKvcFD7noxCJWaZOfuWMUB5Secs6SkuFEJduzeROKzFtnc06oLwL
heRBSUBM2joj33Ac4UyPWuDd5wjrc859+BAKbGoqHQBFNgtM9mXIiUxA4Y2v/CaW
ZMT+G70Hg0iAP5Bmv5qhM/qLZ8npsQ7VI3qxaumPnSsHhJ1JSYNw5I+SLze4+AUy
rGJCDHHtxhcOTuQzmqOdPLQEOq2FhfQtQJ+7JIML0CxqHhyBSqT050S/UGwpaDuw
jWYEiD7daobtCC6Awna6c3B1y8jGnsnXet5eV1AxGWlalrO3W2bR1FaJVl3y9GKF
uwv9U521XGhWnzjXwuoPMyluVsDEK+cULv8CAwEAAaOCAigwggIkMB0GA1UdDgQW
BBS0lPbAfssnvJFsK7ZT6ZAe+3sFsDAfBgNVHSMEGDAWgBRPPmOWyddsvfTtLV3n
oqdgIUyYNzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMjEwNDIvVHo1amxzblhiTDMwN1MxZDU2S25ZQ0ZNbURjLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvVHo1amxzblhiTDMwN1MxZDU2S25Z
Q0ZNbURjLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzIxMDQyL3RKVDJ3SDdMSjd5UmJDdTJVLW1RSHZ0N0JiQS5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwE
AgABMAYDBARwjIAwDQYJKoZIhvcNAQELBQADggEBACzCmA9vpFHbkuEmWY661xM+
2ynbxLT/D79SjZe0eoz8ZAAGu7DwnuKBeNWcZKwXseWbriyzXEhGvCgDsY7f+/JT
3qAVA95Tea5Siiutyq7+c7KiC5wbvrCgIgyeR/lEiIATVjUUf0oK2RDqMlyPbbnP
ip+MFsgLCYEE6LM71/t+aSQP60lLSqzQA/NkrS/x+rNUCDmv9hX/V79y8tdHpDaD
Mz/Vt3yEjpjaZUu6RRvyZJYtEA7lxaYKCsfrrPNjwlcWZlqY7wMRpMe105PlVVg1
Jy4g3Ixb3HhwqZkExCnsNMJbT9FRft/q1uWD2Z9iga5lL4/a5j6CrIn9Gef3aPI=
-----END CERTIFICATE-----
Generated at Sun Jun 30 02:59:41 2024 by rpki-client on console-ams.rpki-client.org