Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/GIe_n4moUsmDjeVlCEhucxXS2no.roa
File: GIe_n4moUsmDjeVlCEhucxXS2no.roa (raw, json)
Hash identifier: QdckWuZB7hkjsm2IHUY5ha06Bexv9FcpB5JYCyyJ1PU=
Subject key identifier: 18:87:BF:9F:89:A8:52:C9:83:8D:E5:65:08:48:6E:73:15:D2:DA:7A
Certificate issuer: /CN=637B364ED0458526D668CEF8CEE65A09DDC2E4DC
Certificate serial: 24
Authority key identifier: 63:7B:36:4E:D0:45:85:26:D6:68:CE:F8:CE:E6:5A:09:DD:C2:E4:DC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Y3s2TtBFhSbWaM74zuZaCd3C5Nw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/GIe_n4moUsmDjeVlCEhucxXS2no.roa
Signing time: Fri 01 Dec 2023 01:30:46 +0000
ROA not before: Fri 01 Dec 2023 01:30:46 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 9351
IP address blocks: 157.70.160.0/19 maxlen: 19
Validation: Failed, certificate revoked on Thu 31 Oct 2024 01:33:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 36 (0x24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=637B364ED0458526D668CEF8CEE65A09DDC2E4DC
Validity
Not Before: Dec 1 01:30:46 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=1887BF9F89A852C9838DE56508486E7315D2DA7A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:dd:56:a4:79:09:3e:f9:b1:27:f3:57:20:8a:
a7:16:76:0c:6e:46:d3:eb:9f:54:53:aa:d7:31:38:
a3:6b:73:8a:33:c5:bb:35:da:82:18:15:2d:b0:c6:
9d:ce:1e:8b:ef:51:0e:84:12:38:e4:16:b8:89:ec:
89:9b:e3:e1:7c:df:55:66:9a:7c:ca:77:88:34:b2:
3d:85:da:b9:fb:06:ce:e7:24:59:eb:78:7b:46:af:
06:65:7d:47:89:17:24:04:6f:46:8f:8b:ca:ca:a9:
63:69:34:f3:af:61:85:96:8e:ae:32:7c:6c:00:a7:
f3:41:53:3c:d4:5f:9b:81:86:ff:f3:40:2a:74:ba:
df:61:93:df:4b:df:40:54:5a:c4:df:34:97:68:a4:
13:2d:7f:ff:e4:5e:51:72:ce:97:1e:5d:32:0d:85:
29:cf:4b:08:35:8f:73:74:08:e7:c2:ff:9b:e9:af:
ba:f8:7d:bf:11:2a:3d:2e:15:98:d0:8e:3e:d1:42:
c4:fe:5d:2c:d4:03:03:7e:b7:98:9f:87:0f:94:61:
c2:cd:1a:39:0a:96:02:54:52:9b:d6:ec:25:a0:ba:
69:1f:92:b5:a1:e8:a6:7a:ce:66:f0:1c:cb:c3:1c:
bd:da:69:fa:7d:0b:5c:f3:28:b5:a4:38:30:f9:d9:
5e:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:87:BF:9F:89:A8:52:C9:83:8D:E5:65:08:48:6E:73:15:D2:DA:7A
X509v3 Authority Key Identifier:
keyid:63:7B:36:4E:D0:45:85:26:D6:68:CE:F8:CE:E6:5A:09:DD:C2:E4:DC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/Y3s2TtBFhSbWaM74zuZaCd3C5Nw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Y3s2TtBFhSbWaM74zuZaCd3C5Nw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/GIe_n4moUsmDjeVlCEhucxXS2no.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.70.160.0/19
Signature Algorithm: sha256WithRSAEncryption
54:68:38:53:d8:22:75:ab:aa:50:f3:80:6c:55:57:de:7a:8f:
b7:6f:e1:b9:db:e4:d4:cd:02:64:e1:b8:49:9e:18:32:f9:d8:
3b:c1:4e:66:2b:87:74:b8:84:78:89:04:87:d9:b3:72:fa:ea:
7e:8b:01:b8:1a:a5:c0:25:42:9e:7a:63:6e:98:91:65:e4:8b:
21:75:65:1e:d0:e8:ec:f0:58:7c:6a:95:86:a0:97:84:dc:36:
b3:76:ee:46:17:c3:0c:a6:6b:3a:78:df:6b:f7:53:55:6e:30:
9a:09:81:9b:25:78:0b:c2:99:2e:e8:08:3b:f1:52:11:87:3e:
68:61:2c:c8:0a:64:cd:ae:ef:06:77:b5:f0:e5:25:4d:8d:ff:
fb:b2:4e:66:02:59:3f:5b:36:10:2f:36:87:af:86:32:07:93:
31:a0:8e:ae:35:cc:54:cc:29:ea:4d:73:9c:b3:1f:52:c9:ba:
c1:69:79:c3:94:dc:21:03:1e:e1:c4:3d:75:65:e5:21:c6:d8:
3e:d0:7b:80:02:8e:bc:93:df:bd:13:ca:36:03:8f:a3:b4:24:
43:f1:8f:63:b8:9a:47:f2:0f:b0:77:f1:51:bf:42:23:3c:08:
36:ef:9b:4f:f5:b2:41:ba:3d:b9:7b:22:c8:27:62:eb:1b:9c:
93:f5:84:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 03:53:34 2024 by rpki-client on console-fra.rpki-client.org