Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/299/iCmPkaPesRsIqXM3xLiJ1F3T-F0.roa
File: iCmPkaPesRsIqXM3xLiJ1F3T-F0.roa (raw, json)
Hash identifier: ZptrSknu5OVaIIRdFPwAvtl/PYBCHjKSb60u82YVEH0=
Subject key identifier: 88:29:8F:91:A3:DE:B1:1B:08:A9:73:37:C4:B8:89:D4:5D:D3:F8:5D
Certificate issuer: /CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9
Certificate serial: 31
Authority key identifier: D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/iCmPkaPesRsIqXM3xLiJ1F3T-F0.roa
Signing time: Mon 01 May 2023 01:29:31 +0000
ROA not before: Mon 01 May 2023 01:29:31 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 23637
IP address blocks: 202.9.210.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 31 Mar 2024 01:30:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 49 (0x31)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D8F1514508AFC38E51743B6CB58BA6561EDD3BB9
Validity
Not Before: May 1 01:29:31 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=88298F91A3DEB11B08A97337C4B889D45DD3F85D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:fe:bc:51:30:95:47:56:dd:8e:40:92:12:ca:
c9:ee:a3:64:72:f7:6b:08:74:35:eb:f3:12:8a:50:
e0:b8:20:d6:4c:db:ca:24:d6:29:4a:72:f6:e1:eb:
f8:fb:58:b7:e4:5c:f5:22:4f:86:00:34:9e:33:a9:
c2:8a:06:a8:81:66:12:ba:d3:da:cc:88:b0:ed:b0:
c0:88:84:8e:81:1e:04:89:f0:13:04:e8:4a:78:07:
0e:64:aa:70:b4:5b:af:8e:6e:e0:ea:cf:a1:7d:d2:
9b:1e:fb:c0:8e:bc:89:8f:df:fd:d9:02:a6:b8:d6:
b4:55:d6:e8:ef:56:1e:70:60:0b:e3:46:01:9c:4b:
3c:96:10:14:77:6c:46:46:81:b0:9c:05:ae:2c:c5:
47:84:b5:df:79:94:c7:bb:bf:1e:a5:68:7b:e2:1e:
3e:74:6b:b1:66:c5:be:93:95:52:23:08:82:b2:3c:
ec:2b:52:65:fc:52:f1:0f:93:9f:c5:e8:8d:e0:82:
68:85:50:a7:e7:9a:06:0c:a3:37:ad:4a:9b:98:68:
41:c9:ff:20:19:91:92:14:da:d0:48:26:28:c4:02:
a6:97:e8:bc:cf:38:04:93:c8:99:3e:e7:33:b3:23:
75:3c:d4:ba:7d:3b:78:bf:1f:35:3b:3e:5f:bd:95:
f3:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:29:8F:91:A3:DE:B1:1B:08:A9:73:37:C4:B8:89:D4:5D:D3:F8:5D
X509v3 Authority Key Identifier:
keyid:D8:F1:51:45:08:AF:C3:8E:51:74:3B:6C:B5:8B:A6:56:1E:DD:3B:B9
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/2PFRRQivw45RdDtstYumVh7dO7k.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/2PFRRQivw45RdDtstYumVh7dO7k.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/299/iCmPkaPesRsIqXM3xLiJ1F3T-F0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.9.210.0/24
Signature Algorithm: sha256WithRSAEncryption
a1:b0:08:d5:3e:29:b3:eb:ae:90:eb:d5:21:4a:3a:a1:b7:b4:
15:6e:bc:91:4a:10:e7:07:a4:5c:9d:8b:8a:2b:a2:53:fb:59:
30:04:72:ef:ef:97:aa:fe:21:db:b7:8f:ef:3f:42:39:7e:d4:
14:49:3a:c6:96:a8:67:47:f2:5f:41:dd:db:ba:84:11:15:c1:
b7:95:d4:d3:d8:75:50:17:c8:1d:75:d8:fc:67:cd:66:97:c4:
26:53:62:ad:45:0f:5e:6b:bf:ca:d9:bf:15:23:26:e4:fd:01:
14:5d:4f:ea:1e:e9:ef:39:fd:ec:cf:f9:bb:bd:e1:8f:a2:36:
b3:27:73:3a:2b:5f:48:a4:d3:67:0b:f8:e7:f9:23:ea:82:8c:
c5:54:cd:25:5d:69:69:ed:f0:fd:e4:56:49:f6:c3:ab:31:7b:
72:5a:e1:29:9a:22:cf:3c:a4:f1:53:5e:24:b8:ab:b8:0b:24:
44:bc:02:04:4c:36:94:4c:08:1b:8c:74:42:45:75:7a:6e:cd:
15:dc:c2:6f:ab:34:19:cf:58:f4:3a:8d:80:4c:fa:fa:6f:bd:
a9:dd:e7:85:73:28:32:84:c8:2f:50:d8:69:9e:fe:fb:eb:b9:
53:6b:28:c9:d9:ac:97:2a:04:8e:af:60:04:fb:52:0b:15:29:
a8:5d:9e:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 31 02:49:22 2024 by rpki-client on console-ams.rpki-client.org