Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30102/2iEQF3FnTCXzvwgKtPcsH21Izrk.roa
File: 2iEQF3FnTCXzvwgKtPcsH21Izrk.roa (raw, json)
Hash identifier: kRXtfjLkYwMArxyAnBlhPMmTKnhUZ0khrZk9d7NJx7s=
Subject key identifier: DA:21:10:17:71:67:4C:25:F3:BF:08:0A:B4:F7:2C:1F:6D:48:CE:B9
Certificate issuer: /CN=39CE09592C9DA61CC03C3D324A7C6CAC4777CCCF
Certificate serial: 1E
Authority key identifier: 39:CE:09:59:2C:9D:A6:1C:C0:3C:3D:32:4A:7C:6C:AC:47:77:CC:CF
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Oc4JWSydphzAPD0ySnxsrEd3zM8.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30102/2iEQF3FnTCXzvwgKtPcsH21Izrk.roa
Signing time: Fri 01 Sep 2023 01:30:38 +0000
ROA not before: Fri 01 Sep 2023 01:30:38 +0000
ROA not after: Wed 14 Aug 2024 01:30:02 +0000
asID: 9824
IP address blocks: 2400:3800::/32 maxlen: 48
Validation: Failed, certificate revoked on Wed 31 Jul 2024 01:29:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 30 (0x1e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=39CE09592C9DA61CC03C3D324A7C6CAC4777CCCF
Validity
Not Before: Sep 1 01:30:38 2023 GMT
Not After : Aug 14 01:30:02 2024 GMT
Subject: CN=DA21101771674C25F3BF080AB4F72C1F6D48CEB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:7d:75:34:6c:ad:46:ff:59:c2:49:75:92:12:
cd:ec:99:f0:3a:1e:86:77:53:8e:a4:11:21:04:27:
f2:cd:03:c7:af:77:db:54:44:7f:c4:fb:f6:f6:25:
f1:f2:31:94:ef:8c:11:7b:b6:8f:36:88:a1:df:72:
bb:36:3c:16:9b:60:30:94:0c:6c:bc:38:10:71:94:
68:bf:07:d7:90:22:f2:34:21:9e:4b:50:5f:70:3b:
c4:0c:b5:7d:f7:82:1f:ab:64:31:35:00:14:55:7d:
b3:94:04:fc:11:11:e2:76:f0:b1:55:a9:78:74:c3:
56:95:12:c5:04:5a:78:f5:53:3e:c5:d0:fe:42:50:
ee:15:94:4b:e0:6b:28:f6:a2:77:3a:c1:f3:68:36:
7e:f0:5d:ab:cf:3c:7a:d0:2a:6c:50:c0:9e:72:60:
a1:44:d2:ba:2f:ce:13:3d:44:7d:19:bf:72:1e:1d:
19:12:65:72:24:1f:6e:cc:3b:d5:25:33:9a:a6:cd:
53:a6:4b:1f:4f:30:eb:ec:b0:62:c4:2f:f3:b2:2a:
d4:f6:7e:94:fd:62:34:63:0f:d7:88:32:f5:a7:0a:
ff:85:fe:d2:31:ba:c3:dc:8c:d3:e9:4e:6c:eb:0c:
47:d5:6d:c4:d8:21:14:8c:ba:b1:2e:50:da:0e:6e:
01:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:21:10:17:71:67:4C:25:F3:BF:08:0A:B4:F7:2C:1F:6D:48:CE:B9
X509v3 Authority Key Identifier:
keyid:39:CE:09:59:2C:9D:A6:1C:C0:3C:3D:32:4A:7C:6C:AC:47:77:CC:CF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30102/Oc4JWSydphzAPD0ySnxsrEd3zM8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Oc4JWSydphzAPD0ySnxsrEd3zM8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30102/2iEQF3FnTCXzvwgKtPcsH21Izrk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:3800::/32
Signature Algorithm: sha256WithRSAEncryption
47:39:62:f7:8c:fb:1c:73:fc:35:3d:3d:5a:60:a3:d3:3f:5d:
fa:b5:c5:eb:d9:cd:8b:22:bc:d1:3d:2f:df:b0:20:21:bf:7e:
06:30:b3:c0:11:42:9f:45:c0:2c:4c:e7:1e:87:35:84:e0:f9:
6e:2c:2b:39:84:67:27:62:b2:c8:20:e5:5f:56:1e:0a:be:2c:
2d:1b:05:20:34:6a:ca:0b:8b:7d:14:ae:c5:64:27:f7:88:98:
e1:ed:a7:93:ab:33:b6:d7:90:35:ee:c7:b3:c7:e8:e7:c4:9c:
d3:6e:dd:0b:e0:27:99:a3:e8:87:6a:e8:9a:7e:56:02:89:f9:
72:d6:d3:b3:bd:e0:16:84:8f:43:b1:0a:59:da:d0:57:4c:e4:
fa:4b:51:17:0a:81:a3:c1:09:9e:8d:90:86:8d:12:e9:fa:98:
43:6e:6c:57:66:0d:83:61:8e:02:26:c6:1b:b0:e3:f7:5d:15:
c6:17:b7:4b:e8:3f:3e:01:cf:32:4b:9a:61:96:b8:82:3b:f3:
86:2d:8f:1a:16:24:0a:68:29:4f:de:b7:f3:63:c2:5d:dd:78:
9f:92:fc:61:cb:78:57:cd:84:13:98:ff:74:a6:5c:e1:57:2c:
08:ef:c1:30:eb:5d:b6:06:fa:60:16:e0:d9:b0:bc:47:99:9b:
3b:c6:22:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 03:15:26 2024 by rpki-client on console-fra.rpki-client.org