Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/2HnY5Z-EvE3m2zkqjGKZrzXzKB4.roa
File: 2HnY5Z-EvE3m2zkqjGKZrzXzKB4.roa (raw, json)
Hash identifier: YD0jxSUxtQIwdsx2FnRSrIhVE4IlfhdKH5/P7Cn0gXc=
Subject key identifier: D8:79:D8:E5:9F:84:BC:4D:E6:DB:39:2A:8C:62:99:AF:35:F3:28:1E
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 0257
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/2HnY5Z-EvE3m2zkqjGKZrzXzKB4.roa
Signing time: Thu 27 Jul 2023 17:23:37 +0000
ROA not before: Thu 27 Jul 2023 17:23:37 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 240a:0:100::/41 maxlen: 41
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:32:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 599 (0x257)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: Jul 27 17:23:37 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=D879D8E59F84BC4DE6DB392A8C6299AF35F3281E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:1f:70:64:c4:80:ad:a4:82:62:bf:ba:43:8a:
e7:5f:4a:2d:a3:c9:00:86:f3:86:31:e2:2c:e1:c9:
f5:b4:f7:76:c4:51:20:e6:09:58:9c:b6:e0:88:20:
27:ac:69:2f:17:f5:a7:19:1d:d4:35:41:2e:0a:fc:
40:26:5d:26:c9:5c:ae:15:86:29:91:6d:fb:0a:50:
28:7f:12:16:10:bb:6b:2c:a2:fc:8a:f8:a1:ca:8b:
4d:6c:e1:fa:d7:68:7e:43:b1:62:5f:4a:0f:19:9a:
d0:02:75:ee:8e:5c:3b:58:69:5e:09:54:5b:b4:9e:
0f:df:f6:3d:cb:88:c9:56:03:03:fb:3b:16:91:e7:
29:05:b0:75:1c:48:96:88:e2:70:89:e5:71:30:b5:
5c:9d:28:a3:ef:ea:16:f0:d7:53:5a:e8:8e:39:0d:
cb:71:93:fe:8c:a8:d0:d7:32:1a:7d:70:63:0a:f2:
cc:95:21:e0:d9:d3:33:c9:6d:50:f4:c0:b6:4a:f6:
55:b8:3f:99:f5:2a:2d:c5:55:e8:c8:21:e3:76:e1:
33:17:ed:fd:f8:78:0a:a3:64:d9:b6:52:5a:af:53:
dc:45:77:b8:de:71:c6:e1:08:65:00:52:67:c9:fe:
6c:26:f5:a7:71:83:81:ab:f8:70:47:f6:06:8a:33:
ae:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:79:D8:E5:9F:84:BC:4D:E6:DB:39:2A:8C:62:99:AF:35:F3:28:1E
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/2HnY5Z-EvE3m2zkqjGKZrzXzKB4.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:0:100::/41
Signature Algorithm: sha256WithRSAEncryption
56:a7:f3:50:bf:cb:30:ed:39:81:8a:f3:50:56:a1:76:e1:1f:
b6:2f:d5:b6:bf:7a:00:25:5a:14:f1:66:18:63:51:25:0c:0d:
49:fc:fe:7d:ff:6b:f9:d4:a0:02:b1:ca:46:05:29:e1:4c:13:
ab:80:d1:e5:12:e7:42:a4:28:bc:26:29:bd:0a:16:af:35:80:
cd:b3:6a:82:85:a0:bc:97:08:49:8d:26:33:d2:77:4a:ef:a4:
bb:b3:70:f9:90:f2:3f:be:24:15:36:6e:9e:c1:eb:39:a6:ff:
35:38:b2:98:31:27:15:1a:49:77:49:90:77:e1:4f:a4:da:8f:
10:04:93:8d:be:47:26:4a:65:48:13:bc:37:ad:c9:2c:2c:f6:
18:6a:ac:87:3e:c4:57:d5:62:c7:0b:3d:28:d7:4d:9c:13:60:
84:8b:ce:0a:47:1c:28:a6:d2:c1:19:1f:9b:26:6f:a8:2b:5a:
00:94:08:20:11:e3:55:62:85:6f:dd:25:eb:c8:f7:c5:43:3b:
a3:43:e5:4b:a9:d0:6b:32:f3:68:7a:f1:b5:48:ee:32:1b:36:
23:6a:1f:ba:42:88:e8:83:e3:a7:3f:2b:ab:06:6c:a5:78:da:
dc:a2:bc:e0:6d:5b:91:e4:47:f8:fb:37:d6:35:11:fa:63:59:
4d:71:fe:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 02:59:41 2024 by rpki-client on console-ams.rpki-client.org