Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30129/QDU6j0DbeRXZ8wFBAI1-XPJyec4.roa
File: QDU6j0DbeRXZ8wFBAI1-XPJyec4.roa (raw, json)
Hash identifier: f+KaGc7ZcAmQDG1k8SCQmvmHtJtK/VrS2YOyn1FLpjg=
Subject key identifier: 40:35:3A:8F:40:DB:79:15:D9:F3:01:41:00:8D:7E:5C:F2:72:79:CE
Certificate issuer: /CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Certificate serial: 0130
Authority key identifier: 51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/QDU6j0DbeRXZ8wFBAI1-XPJyec4.roa
Signing time: Tue 30 May 2023 17:30:01 +0000
ROA not before: Tue 30 May 2023 17:30:01 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 240a:6b:4a00::/40 maxlen: 40
Validation: Failed, certificate revoked on Tue 30 Apr 2024 01:32:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 304 (0x130)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5126173B8D6B3FF10E3F03FB0560FE6551DEA2DB
Validity
Not Before: May 30 17:30:01 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=40353A8F40DB7915D9F30141008D7E5CF27279CE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ef:d7:59:2c:c2:85:b8:01:f6:0b:f0:26:0b:
b7:50:4b:9c:19:63:fa:4f:b7:c0:2e:50:d7:af:a2:
ac:f0:d9:b8:d3:54:fd:ea:33:04:72:11:8c:69:29:
f4:ee:8b:e5:a2:71:f8:0e:21:12:a7:fe:78:ad:3e:
f3:54:f3:f3:20:1a:66:eb:d7:25:ee:d6:78:bd:48:
f4:18:86:fb:24:e2:a8:47:60:fb:b3:4b:4b:3b:80:
86:f8:d9:ba:3f:d5:13:64:50:c6:b5:73:d0:54:bc:
f9:b3:b9:ea:36:12:da:a3:8d:13:d6:83:31:48:90:
c3:d9:16:8c:d7:3a:37:51:10:1e:1d:2a:1f:fb:8e:
24:07:eb:ac:eb:16:07:92:8f:e7:d1:42:72:56:87:
05:02:7d:59:f2:b2:8b:82:b1:d2:aa:35:fd:29:da:
e7:61:e4:e4:1e:51:c2:74:40:d9:d0:7e:da:be:9a:
95:8c:79:25:83:c1:ed:61:22:7c:08:5e:8a:e4:fa:
4a:25:de:66:b9:ee:6e:6d:26:ba:3d:d3:79:99:5d:
01:0e:04:c1:15:d6:aa:2e:f9:a2:2d:59:6c:42:26:
e1:1d:b1:c0:ca:e7:4e:17:9d:6b:70:e3:6d:10:4b:
12:23:7a:7d:7d:13:31:be:45:fd:cc:f5:39:05:63:
2f:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:35:3A:8F:40:DB:79:15:D9:F3:01:41:00:8D:7E:5C:F2:72:79:CE
X509v3 Authority Key Identifier:
keyid:51:26:17:3B:8D:6B:3F:F1:0E:3F:03:FB:05:60:FE:65:51:DE:A2:DB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/USYXO41rP_EOPwP7BWD-ZVHeots.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/USYXO41rP_EOPwP7BWD-ZVHeots.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30129/QDU6j0DbeRXZ8wFBAI1-XPJyec4.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
240a:6b:4a00::/40
Signature Algorithm: sha256WithRSAEncryption
c3:c0:66:93:b3:8d:f6:6e:f1:6f:b9:a7:19:6a:ec:69:67:95:
12:a6:ab:5e:84:45:6c:c3:ba:59:8e:86:dd:d4:9b:3d:1d:84:
30:9e:72:e2:d0:53:64:d3:8f:c5:94:b2:d6:36:27:85:dc:3f:
86:1a:4f:18:67:b2:06:60:f9:42:54:50:ec:f5:4f:28:17:fb:
40:44:73:3f:e9:a4:65:89:7c:4b:93:97:85:62:68:a2:e4:06:
58:d0:cb:e1:d2:09:99:f1:38:13:0c:ac:30:32:0e:36:81:31:
86:fd:ff:82:3a:9e:22:eb:99:72:9f:60:29:9c:aa:1e:2f:37:
fc:bd:93:70:43:4a:79:e3:9c:7e:a8:58:97:79:82:e8:e9:89:
b2:ba:d6:29:ce:0b:d6:3b:75:40:02:f6:4a:a9:c0:d4:85:30:
98:6c:a7:22:6c:ac:3c:15:bd:2b:bb:0d:77:bd:dc:ca:04:dd:
ed:b3:96:4e:a1:4c:b7:52:fe:14:83:58:c1:21:93:bb:94:6c:
57:87:58:a8:cc:03:45:3d:b6:03:af:c0:83:0b:b1:b5:e9:fb:
57:da:75:b6:52:d0:7b:0d:9d:21:07:53:27:73:36:6c:76:7e:
77:0e:5b:b2:f7:b2:70:f3:70:70:13:8f:8f:a8:ba:c2:83:4c:
17:d6:74:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:29 2024 by rpki-client on console-fra.rpki-client.org