Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/QMYakTk947QY6S3ZQ2Q8kwYDVuI.roa
File: QMYakTk947QY6S3ZQ2Q8kwYDVuI.roa (raw, json)
Hash identifier: DSUbnTtHpxgXbl1EE024X/458cJfZa4LlU+TMduTnZI=
Subject key identifier: 40:C6:1A:91:39:3D:E3:B4:18:E9:2D:D9:43:64:3C:93:06:03:56:E2
Certificate issuer: /CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Certificate serial: 5B
Authority key identifier: 50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/QMYakTk947QY6S3ZQ2Q8kwYDVuI.roa
Signing time: Wed 01 Feb 2023 01:30:02 +0000
ROA not before: Wed 01 Feb 2023 01:30:02 +0000
ROA not after: Mon 15 Jan 2024 01:30:02 +0000
asID: 9351
IP address blocks: 124.40.64.0/19 maxlen: 19
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91 (0x5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Validity
Not Before: Feb 1 01:30:02 2023 GMT
Not After : Jan 15 01:30:02 2024 GMT
Subject: CN=40C61A91393DE3B418E92DD943643C93060356E2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d5:ed:24:58:bb:88:12:6b:d5:b2:e8:68:2e:
3b:c1:1d:be:1a:4d:6e:08:88:7c:3d:6f:62:eb:ae:
cc:f6:58:6a:ae:d4:58:da:bd:18:57:ab:f4:85:7d:
89:bb:77:41:f1:4b:68:e6:3a:c9:1c:9b:70:d0:b8:
8c:56:15:1c:84:e0:1a:21:19:6f:e7:85:9a:92:09:
99:d8:77:d8:7e:35:ab:58:46:64:90:55:32:a1:87:
9e:08:52:e6:3c:c1:31:ed:31:6d:fa:24:15:0a:62:
b0:01:c8:c0:32:31:45:b8:24:10:a4:bd:60:25:34:
87:b9:2d:de:a8:29:59:a1:f7:5d:fa:cc:0a:d9:2e:
54:03:20:54:fd:f5:cf:5e:30:61:39:3c:6e:8d:2d:
d7:08:1a:1a:a9:03:df:85:28:c9:51:c8:77:f1:e9:
8d:46:01:fc:63:6e:55:7c:5c:e3:ea:28:c7:48:4b:
30:cb:00:65:99:34:af:b4:da:14:bb:00:0e:fe:f9:
d5:a0:d6:af:7c:e6:d2:85:93:88:d1:ff:75:b2:30:
fa:f8:0d:2d:90:e4:be:7a:ee:7b:ef:46:01:73:6b:
28:93:65:fa:ed:51:d3:95:5e:fe:b6:6b:24:80:4a:
be:5e:61:4d:45:bc:82:19:26:55:32:d9:16:33:0b:
ba:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:C6:1A:91:39:3D:E3:B4:18:E9:2D:D9:43:64:3C:93:06:03:56:E2
X509v3 Authority Key Identifier:
keyid:50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/QMYakTk947QY6S3ZQ2Q8kwYDVuI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
124.40.64.0/19
Signature Algorithm: sha256WithRSAEncryption
9d:3c:2f:2b:29:15:bb:64:81:da:62:fe:66:87:60:71:5e:f5:
4a:78:15:29:10:08:d6:20:23:0f:2b:92:02:fd:c0:48:b1:2c:
ff:b6:cb:f2:a9:65:7f:a8:b3:e3:0f:1c:bd:78:4b:9c:7e:a5:
f1:cb:fc:84:d1:96:7e:3f:1c:b5:d3:8c:ee:a3:c0:69:f2:2e:
45:56:4c:11:3e:bb:ef:07:66:06:59:2e:db:9c:5b:86:65:5a:
5e:4c:3e:99:47:53:5e:6d:8d:90:8c:07:ee:67:cf:83:06:ae:
8e:c2:34:60:c9:ec:97:33:51:68:54:27:96:91:53:72:59:9c:
27:78:6c:f2:cf:35:d7:e7:ee:f3:6c:ab:61:8e:b2:8b:f1:fb:
2b:0f:d8:46:fd:73:77:ad:c4:2e:ad:e0:37:ee:aa:50:ec:ea:
67:6d:00:ac:7c:38:b2:61:46:03:02:46:76:a4:f9:0f:a8:df:
0d:2f:56:70:c1:52:14:a3:24:a6:29:30:ff:78:9e:78:0c:0b:
75:4e:52:30:12:d2:ff:ed:e6:79:79:3a:6d:25:1f:13:d3:06:
a8:c2:86:8e:45:21:69:11:37:5b:4c:33:45:b7:b5:b7:a9:2b:
5b:31:e7:04:21:80:f8:fe:ea:1d:8c:b3:3e:81:0e:ba:c1:6c:
77:87:8c:5b
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBWzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1MDBF
RjM1OEJDQkUxNEEzNThDQTRFRUU0MUI0RTkwREM5MjNFOUQyMB4XDTIzMDIwMTAx
MzAwMloXDTI0MDExNTAxMzAwMlowMzExMC8GA1UEAxMoNDBDNjFBOTEzOTNERTNC
NDE4RTkyREQ5NDM2NDNDOTMwNjAzNTZFMjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMXV7SRYu4gSa9Wy6GguO8EdvhpNbgiIfD1vYuuuzPZYaq7UWNq9
GFer9IV9ibt3QfFLaOY6yRybcNC4jFYVHITgGiEZb+eFmpIJmdh32H41q1hGZJBV
MqGHnghS5jzBMe0xbfokFQpisAHIwDIxRbgkEKS9YCU0h7kt3qgpWaH3XfrMCtku
VAMgVP31z14wYTk8bo0t1wgaGqkD34UoyVHId/HpjUYB/GNuVXxc4+oox0hLMMsA
ZZk0r7TaFLsADv751aDWr3zm0oWTiNH/dbIw+vgNLZDkvnrue+9GAXNrKJNl+u1R
05Ve/rZrJIBKvl5hTUW8ghkmVTLZFjMLuvkCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBRAxhqROT3jtBjpLdlDZDyTBgNW4jAfBgNVHSMEGDAWgBRQDvNYvL4Uo1jKTu5B
tOkNySPp0jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMjM0L1VBN3pXTHktRktOWXlrN3VRYlRwRGNrajZkSS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1VBN3pXTHktRktOWXlrN3VRYlRwRGNr
ajZkSS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8yMzQvUU1ZYWtUazk0N1FZNlMzWlEyUThrd1lEVnVJLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBXwoQDANBgkqhkiG9w0BAQsFAAOCAQEAnTwvKykVu2SB2mL+ZodgcV71SngV
KRAI1iAjDyuSAv3ASLEs/7bL8qllf6iz4w8cvXhLnH6l8cv8hNGWfj8ctdOM7qPA
afIuRVZMET677wdmBlku25xbhmVaXkw+mUdTXm2NkIwH7mfPgwaujsI0YMnslzNR
aFQnlpFTclmcJ3hs8s811+fu82yrYY6yi/H7Kw/YRv1zd63ELq3gN+6qUOzqZ20A
rHw4smFGAwJGdqT5D6jfDS9WcMFSFKMkpikw/3ieeAwLdU5SMBLS/+3meXk6bSUf
E9MGqMKGjkUhaRE3W0wzRbe1t6krWzHnBCGA+P7qHYyzPoEOusFsd4eMWw==
-----END CERTIFICATE-----
Generated at Mon Jan 1 03:22:59 2024 by rpki-client on console-fra.rpki-client.org