Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30068/95Zl5gAzKz2A8_jYtQKbHd3Ojjg.roa
File: 95Zl5gAzKz2A8_jYtQKbHd3Ojjg.roa (raw, json)
Hash identifier: KMyVxryROSmXUk7XFxF7Hx/nBWs58KLjxR8Ic+tFKTo=
Subject key identifier: F7:96:65:E6:00:33:2B:3D:80:F3:F8:D8:B5:02:9B:1D:DD:CE:8E:38
Certificate issuer: /CN=CA02C5C43C00F14E85B5B07599EDD267C5A2B4D2
Certificate serial: 42
Authority key identifier: CA:02:C5:C4:3C:00:F1:4E:85:B5:B0:75:99:ED:D2:67:C5:A2:B4:D2
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ygLFxDwA8U6FtbB1me3SZ8WitNI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/95Zl5gAzKz2A8_jYtQKbHd3Ojjg.roa
Signing time: Thu 13 Apr 2023 09:54:20 +0000
ROA not before: Thu 13 Apr 2023 09:54:20 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9370
IP address blocks: 2001:e46::/32 maxlen: 48
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:31:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 66 (0x42)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=CA02C5C43C00F14E85B5B07599EDD267C5A2B4D2
Validity
Not Before: Apr 13 09:54:20 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=F79665E600332B3D80F3F8D8B5029B1DDDCE8E38
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:d5:fc:82:b4:ae:f5:fd:5c:9a:86:df:ec:63:
b8:45:63:6d:fd:9e:ab:ef:fc:36:96:e5:d7:9c:dc:
0b:77:ba:00:ed:65:89:b8:3b:b7:cf:12:f3:b0:f4:
0b:bd:82:b5:25:1c:f5:21:e8:d6:89:23:1c:0c:94:
aa:a5:65:4d:78:99:4c:8b:92:fa:ce:eb:98:be:24:
af:3a:2c:d8:31:5e:fc:e6:c4:c4:cc:a8:50:3d:51:
cf:54:e3:2a:dc:18:62:23:09:a3:1d:44:ca:92:fe:
7a:49:c9:17:b3:02:cd:4b:35:ea:a0:f9:ba:ed:53:
9a:56:a1:5f:2d:27:56:4d:b1:e0:65:6d:40:73:67:
b9:60:26:cd:5c:e5:c1:49:6a:10:f9:e5:c3:6f:a6:
85:a5:99:b6:5f:c3:23:6a:65:cc:55:95:15:85:f0:
22:97:3d:7a:0f:be:ba:26:51:85:15:27:67:2c:76:
d1:6b:4f:49:ef:46:4c:48:23:b2:17:5a:b9:68:5d:
68:a4:aa:57:8b:7f:9e:93:c5:c6:03:4c:7f:cd:2c:
38:1f:81:7f:eb:2f:5b:3f:91:21:2e:32:5d:0a:40:
5a:43:d9:ea:b7:af:01:21:eb:b5:88:6d:28:38:a1:
3a:48:42:00:3e:b3:a8:1b:fc:54:c3:1c:da:ed:60:
89:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:96:65:E6:00:33:2B:3D:80:F3:F8:D8:B5:02:9B:1D:DD:CE:8E:38
X509v3 Authority Key Identifier:
keyid:CA:02:C5:C4:3C:00:F1:4E:85:B5:B0:75:99:ED:D2:67:C5:A2:B4:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/ygLFxDwA8U6FtbB1me3SZ8WitNI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ygLFxDwA8U6FtbB1me3SZ8WitNI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30068/95Zl5gAzKz2A8_jYtQKbHd3Ojjg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:e46::/32
Signature Algorithm: sha256WithRSAEncryption
02:e4:29:cd:01:cf:40:96:02:ba:c6:78:34:8e:19:98:96:69:
24:ab:e4:41:00:87:45:66:dd:8a:38:ea:9a:7e:8c:c8:f1:79:
cd:fc:c3:d7:a3:7f:78:b1:5b:e4:1f:83:a4:94:67:27:b7:7d:
bc:9d:cb:15:4b:43:90:21:d0:45:de:bf:5f:9c:06:5b:d9:48:
d1:37:56:6d:77:ab:58:16:1f:aa:48:3c:4a:95:3c:61:df:bb:
b4:5c:f0:35:47:a5:7e:96:6e:b7:eb:44:66:c4:01:f6:ec:0f:
d8:6d:a9:12:7a:f8:a4:6d:ba:9c:1a:37:1d:0c:90:e6:5c:9b:
0c:48:62:0d:e6:af:7d:ab:ff:c7:17:bf:29:31:80:ef:7d:63:
6a:13:4e:8b:ce:f4:58:dc:07:ee:23:80:ee:9a:05:70:8a:4b:
50:36:17:09:78:d3:2b:45:10:86:96:87:38:e6:1d:38:e2:08:
02:ba:f8:85:29:88:0a:40:49:33:21:21:84:94:33:6c:2f:ad:
88:c9:9c:6a:ea:88:93:00:74:f3:37:a2:29:ef:06:aa:5d:02:
96:25:36:72:59:34:a8:1b:b0:c6:72:b3:16:5f:7b:4b:a1:0f:
45:80:d7:24:80:d9:01:54:0b:3e:6f:65:2e:73:01:fa:ec:53:
f6:02:d6:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 01:58:11 2024 by rpki-client on console-fra.rpki-client.org