Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/249/iap-BH079piOqh9VFi7yBUOFHfk.roa
File: iap-BH079piOqh9VFi7yBUOFHfk.roa (raw, json)
Hash identifier: +rPhly/ayZgYhME7wUZ9GoHxbUsFNm3v8ahRKXIEha8=
Subject key identifier: 89:AA:7E:04:7D:3B:F6:98:8E:AA:1F:55:16:2E:F2:05:43:85:1D:F9
Certificate issuer: /CN=275D9782B13E99128CD34F22C09FE8E7B5CBA70B
Certificate serial: 05
Authority key identifier: 27:5D:97:82:B1:3E:99:12:8C:D3:4F:22:C0:9F:E8:E7:B5:CB:A7:0B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/iap-BH079piOqh9VFi7yBUOFHfk.roa
Signing time: Wed 28 Feb 2024 04:47:54 +0000
ROA not before: Wed 28 Feb 2024 04:47:54 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 7679
IP address blocks: 58.3.0.0/17 maxlen: 17
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:33:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=275D9782B13E99128CD34F22C09FE8E7B5CBA70B
Validity
Not Before: Feb 28 04:47:54 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=89AA7E047D3BF6988EAA1F55162EF20543851DF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:69:87:b9:97:11:be:8e:d1:a3:5b:81:7c:88:
a8:49:81:fd:f5:a7:03:a9:b2:aa:2b:84:4e:c4:7f:
92:b8:72:2c:41:c7:44:a7:d4:fb:a6:b5:a2:58:c3:
6b:3a:0f:d3:02:39:95:54:1f:46:38:39:b0:fb:63:
ee:58:05:4a:ce:82:f7:92:5c:ff:18:e9:82:9b:ff:
2b:b5:3b:a9:7c:99:c6:aa:bd:ac:ac:f6:49:3d:f5:
9e:c7:c5:79:f6:c2:4d:d1:af:91:64:77:c9:cc:74:
60:7c:25:46:32:65:d8:06:77:ac:19:21:f6:15:98:
f5:d4:d9:71:86:4e:82:1c:b6:37:44:95:30:5b:42:
ee:58:02:2f:fa:6f:01:3c:18:96:c3:83:25:bd:c0:
43:91:58:52:fe:ec:8b:b0:38:81:fd:72:5d:c1:29:
89:95:a0:b6:26:ae:40:8c:16:56:5b:09:d6:87:17:
b5:4c:40:b8:28:a4:31:91:a2:b4:ef:0e:53:39:09:
84:4b:aa:78:1f:2a:ef:de:ff:4b:b0:08:38:4f:d5:
a7:29:7d:76:e6:28:f0:f9:35:31:ba:80:ac:d4:b0:
21:a9:12:85:4a:1c:72:ef:fc:76:f8:24:de:9d:ba:
c1:f1:ce:3e:ca:5c:ec:60:2a:d8:ab:78:73:dc:1f:
42:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:AA:7E:04:7D:3B:F6:98:8E:AA:1F:55:16:2E:F2:05:43:85:1D:F9
X509v3 Authority Key Identifier:
keyid:27:5D:97:82:B1:3E:99:12:8C:D3:4F:22:C0:9F:E8:E7:B5:CB:A7:0B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/J12XgrE-mRKM008iwJ_o57XLpws.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/J12XgrE-mRKM008iwJ_o57XLpws.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/249/iap-BH079piOqh9VFi7yBUOFHfk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
58.3.0.0/17
Signature Algorithm: sha256WithRSAEncryption
6f:47:39:46:0d:25:f3:b8:8e:16:d7:1e:f5:78:f4:76:e0:e6:
03:b5:4d:ac:a9:15:b7:f8:2e:3c:96:f0:2e:4c:60:43:8e:4a:
81:d6:d4:b8:9b:2b:ee:f5:65:27:65:88:9f:37:91:b5:ae:8c:
d3:0f:d0:51:70:70:a0:b2:74:fc:ef:2f:35:ca:b3:c6:f8:aa:
b9:3b:67:6e:88:98:ca:3f:46:27:94:dd:00:98:0a:10:1d:ad:
09:30:34:c1:86:7b:d1:33:00:f7:4c:88:79:6e:e8:84:85:84:
52:0a:c1:86:de:df:70:32:9f:4b:72:fa:2e:24:f4:af:aa:28:
8e:c9:7d:14:2d:35:73:2f:15:4f:ab:0c:ad:32:22:83:35:a8:
d2:8c:a9:c9:c4:ba:24:4e:21:de:1d:5a:4e:bf:d0:27:aa:8c:
e2:eb:dd:4e:71:4c:8f:86:2d:30:b1:43:7a:e0:fe:9b:e3:43:
c4:3c:eb:59:e8:01:85:14:2f:30:75:8f:7c:23:5b:18:09:d5:
cb:4e:28:36:1e:da:9c:53:39:18:ce:4c:10:1b:d4:5e:d2:5c:
85:72:34:66:8d:c7:13:e3:ef:98:2d:cb:b8:4b:c8:18:1f:76:
65:db:52:e2:da:a4:30:4d:2b:2e:5f:71:04:2b:90:37:2e:8f:
25:8f:6d:db
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBBTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyNzVE
OTc4MkIxM0U5OTEyOENEMzRGMjJDMDlGRThFN0I1Q0JBNzBCMB4XDTI0MDIyODA0
NDc1NFoXDTI1MDIxNDAxMzAwM1owMzExMC8GA1UEAxMoODlBQTdFMDQ3RDNCRjY5
ODhFQUExRjU1MTYyRUYyMDU0Mzg1MURGOTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALtph7mXEb6O0aNbgXyIqEmB/fWnA6myqiuETsR/krhyLEHHRKfU
+6a1oljDazoP0wI5lVQfRjg5sPtj7lgFSs6C95Jc/xjpgpv/K7U7qXyZxqq9rKz2
ST31nsfFefbCTdGvkWR3ycx0YHwlRjJl2AZ3rBkh9hWY9dTZcYZOghy2N0SVMFtC
7lgCL/pvATwYlsODJb3AQ5FYUv7si7A4gf1yXcEpiZWgtiauQIwWVlsJ1ocXtUxA
uCikMZGitO8OUzkJhEuqeB8q797/S7AIOE/Vpyl9duYo8Pk1MbqArNSwIakShUoc
cu/8dvgk3p26wfHOPspc7GAq2Kt4c9wfQskCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBSJqn4EfTv2mI6qH1UWLvIFQ4Ud+TAfBgNVHSMEGDAWgBQnXZeCsT6ZEozTTyLA
n+jntcunCzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMjQ5L0oxMlhnckUtbVJLTTAwOGl3Sl9vNTdYTHB3cy5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL0oxMlhnckUtbVJLTTAwOGl3Sl9vNTdY
THB3cy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8yNDkvaWFwLUJIMDc5cGlPcWg5VkZpN3lCVU9GSGZrLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBzoDADANBgkqhkiG9w0BAQsFAAOCAQEAb0c5Rg0l87iOFtce9Xj0duDmA7VN
rKkVt/guPJbwLkxgQ45KgdbUuJsr7vVlJ2WInzeRta6M0w/QUXBwoLJ0/O8vNcqz
xviquTtnboiYyj9GJ5TdAJgKEB2tCTA0wYZ70TMA90yIeW7ohIWEUgrBht7fcDKf
S3L6LiT0r6oojsl9FC01cy8VT6sMrTIigzWo0oypycS6JE4h3h1aTr/QJ6qM4uvd
TnFMj4YtMLFDeuD+m+NDxDzrWegBhRQvMHWPfCNbGAnVy04oNh7anFM5GM5MEBvU
XtJchXI0Zo3HE+PvmC3LuEvIGB92ZdtS4tqkME0rLl9xBCuQNy6PJY9t2w==
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:03:10 2025 by rpki-client