Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/247/QIDlrwRvP1B3DhrFCNu-_ZZ0l9U.roa
File: QIDlrwRvP1B3DhrFCNu-_ZZ0l9U.roa (raw, json)
Hash identifier: ZniwjIv4g86G5mWVm0xRkSElfi/Zh8rATjeRni76+K0=
Subject key identifier: 40:80:E5:AF:04:6F:3F:50:77:0E:1A:C5:08:DB:BE:FD:96:74:97:D5
Certificate issuer: /CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532
Certificate serial: AE
Authority key identifier: 9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/QIDlrwRvP1B3DhrFCNu-_ZZ0l9U.roa
Signing time: Sat 01 Jul 2023 01:31:12 +0000
ROA not before: Sat 01 Jul 2023 01:31:12 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 9370
IP address blocks: 153.125.224.0/20 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 May 2024 01:31:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174 (0xae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9A21BDFF2DCAFCC138F5BFD6C0330D0219E0F532
Validity
Not Before: Jul 1 01:31:12 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=4080E5AF046F3F50770E1AC508DBBEFD967497D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:27:c9:a0:f6:81:cc:e8:2a:c8:48:94:e8:6e:
dc:7f:bf:cc:c7:fb:85:dc:84:4c:ae:a6:e5:3f:3d:
a7:3f:35:08:94:ae:0f:72:1b:bb:15:7b:25:55:47:
0d:a0:bd:4a:35:61:b7:ab:96:98:2a:56:9d:aa:4c:
ca:4f:dc:40:24:4a:c4:03:96:96:cf:3f:64:85:1f:
b9:4b:67:17:0d:03:68:31:12:f5:13:1a:1c:04:27:
7a:a4:a3:98:51:1a:1f:03:ee:68:1e:5b:bd:a7:5a:
db:19:a5:c7:cf:75:e6:fe:7d:fc:a6:62:a6:07:d3:
45:3f:67:c7:4f:c5:82:ad:55:aa:ae:36:9f:60:70:
cd:56:75:e5:1e:04:ce:9f:07:42:1a:f7:89:75:53:
55:19:f2:3b:09:59:57:b5:64:16:11:2e:8a:a6:04:
3a:1d:06:1d:d9:a4:64:78:33:c9:17:c5:0e:b1:80:
10:ea:76:f0:a6:c6:56:9a:1f:1f:a1:0e:f9:bb:9e:
74:28:91:19:c3:63:3e:30:27:5b:fa:32:c0:23:b1:
57:1b:d2:4e:54:46:d8:c6:d1:67:9a:c7:3f:0d:3a:
f5:0b:29:9b:7b:2a:75:8f:6a:15:1b:9d:de:2c:83:
10:47:24:e8:6d:20:81:df:74:2c:f8:f2:9c:34:78:
1e:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:80:E5:AF:04:6F:3F:50:77:0E:1A:C5:08:DB:BE:FD:96:74:97:D5
X509v3 Authority Key Identifier:
keyid:9A:21:BD:FF:2D:CA:FC:C1:38:F5:BF:D6:C0:33:0D:02:19:E0:F5:32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/miG9_y3K_ME49b_WwDMNAhng9TI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/miG9_y3K_ME49b_WwDMNAhng9TI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/247/QIDlrwRvP1B3DhrFCNu-_ZZ0l9U.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
153.125.224.0/20
Signature Algorithm: sha256WithRSAEncryption
0d:86:f3:4a:13:86:3b:08:be:19:64:ad:22:a6:98:92:1b:22:
0c:83:2f:99:1c:fe:40:4a:35:b6:3f:f9:77:ea:6f:75:2a:6a:
ee:86:73:25:bc:29:26:cd:2c:eb:12:0c:11:8a:06:74:8e:ba:
26:1a:32:d0:76:16:0d:e9:31:56:4a:3d:b1:80:1f:a7:14:47:
f6:d3:0b:5e:ae:1d:16:91:92:b6:9f:62:19:8c:c7:5a:c2:54:
fd:3f:ae:ac:17:59:36:37:89:38:e4:93:a2:24:b2:b8:ea:b8:
5d:21:fe:d0:0e:bf:1e:68:f9:a2:1b:ec:96:5a:90:3c:03:8a:
35:79:69:0d:2c:00:a4:d8:de:e5:56:c1:62:3f:c1:fc:40:0e:
36:0d:28:fa:79:30:b0:3d:98:f6:af:e3:cb:0c:73:4f:f5:08:
71:43:1f:d5:1f:1f:e0:11:07:39:2c:4e:b1:83:eb:57:c9:52:
1d:fd:b7:a8:e1:95:a6:b7:b0:e6:e1:6d:ab:ed:9f:da:d9:2c:
4f:8d:d7:1d:30:68:83:98:33:77:ce:c5:27:ad:df:d8:7f:ed:
53:46:f9:12:92:d1:85:2d:9d:20:d7:73:f6:9a:fe:4d:8c:ca:
21:80:a5:80:c3:b0:47:58:e4:10:84:68:a7:da:50:7c:02:01:
b5:5e:3c:24
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUEy
MUJERkYyRENBRkNDMTM4RjVCRkQ2QzAzMzBEMDIxOUUwRjUzMjAeFw0yMzA3MDEw
MTMxMTJaFw0yNDA2MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDQwODBFNUFGMDQ2RjNG
NTA3NzBFMUFDNTA4REJCRUZEOTY3NDk3RDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCxJ8mg9oHM6CrISJTobtx/v8zH+4XchEyupuU/Pac/NQiUrg9y
G7sVeyVVRw2gvUo1YberlpgqVp2qTMpP3EAkSsQDlpbPP2SFH7lLZxcNA2gxEvUT
GhwEJ3qko5hRGh8D7mgeW72nWtsZpcfPdeb+ffymYqYH00U/Z8dPxYKtVaquNp9g
cM1WdeUeBM6fB0Ia94l1U1UZ8jsJWVe1ZBYRLoqmBDodBh3ZpGR4M8kXxQ6xgBDq
dvCmxlaaHx+hDvm7nnQokRnDYz4wJ1v6MsAjsVcb0k5URtjG0Weaxz8NOvULKZt7
KnWPahUbnd4sgxBHJOhtIIHfdCz48pw0eB6nAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUQIDlrwRvP1B3DhrFCNu+/ZZ0l9UwHwYDVR0jBBgwFoAUmiG9/y3K/ME49b/W
wDMNAhng9TIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzI0Ny9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFobmc5VEkuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9taUc5X3kzS19NRTQ5Yl9Xd0RNTkFo
bmc5VEkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMjQ3L1FJRGxyd1J2UDFCM0RockZDTnUtX1paMGw5VS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBASZfeAwDQYJKoZIhvcNAQELBQADggEBAA2G80oThjsIvhlkrSKmmJIbIgyD
L5kc/kBKNbY/+Xfqb3Uqau6GcyW8KSbNLOsSDBGKBnSOuiYaMtB2Fg3pMVZKPbGA
H6cUR/bTC16uHRaRkrafYhmMx1rCVP0/rqwXWTY3iTjkk6IksrjquF0h/tAOvx5o
+aIb7JZakDwDijV5aQ0sAKTY3uVWwWI/wfxADjYNKPp5MLA9mPav48sMc0/1CHFD
H9UfH+ARBzksTrGD61fJUh39t6jhlaa3sObhbavtn9rZLE+N1x0waIOYM3fOxSet
39h/7VNG+RKS0YUtnSDXc/aa/k2MyiGApYDDsEdY5BCEaKfaUHwCAbVePCQ=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:49 2024 by rpki-client on console-fra.rpki-client.org