Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30291/DIUfl8ZpmPoO9-evMfVL58D81AE.roa
File: DIUfl8ZpmPoO9-evMfVL58D81AE.roa (raw, json)
Hash identifier: oozTJxRE9d9/vbPodC1PO7vnamgYHHZmylc02gYlI0A=
Subject key identifier: 0C:85:1F:97:C6:69:98:FA:0E:F7:E7:AF:31:F5:4B:E7:C0:FC:D4:01
Certificate issuer: /CN=1CB60B40A98AEAE054CAEE4C09CB7D9AEADE3E9D
Certificate serial: 09
Authority key identifier: 1C:B6:0B:40:A9:8A:EA:E0:54:CA:EE:4C:09:CB:7D:9A:EA:DE:3E:9D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HLYLQKmK6uBUyu5MCct9murePp0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/DIUfl8ZpmPoO9-evMfVL58D81AE.roa
Signing time: Fri 01 Dec 2023 09:32:52 +0000
ROA not before: Fri 01 Dec 2023 09:32:52 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 131925
IP address blocks: 2401:4d44::/30 maxlen: 30
Validation: Failed, certificate revoked on Thu 31 Oct 2024 01:31:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 9 (0x9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1CB60B40A98AEAE054CAEE4C09CB7D9AEADE3E9D
Validity
Not Before: Dec 1 09:32:52 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=0C851F97C66998FA0EF7E7AF31F54BE7C0FCD401
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:08:ce:36:1e:aa:fb:8c:ba:99:8a:ad:d6:dd:
65:63:a3:db:4e:fa:21:16:f8:18:ed:ab:37:9b:0c:
2c:de:05:2a:2b:9f:13:ea:5b:c9:9f:68:cd:44:ac:
29:7f:b2:4d:a6:13:93:85:41:f5:15:9a:6a:b1:05:
eb:51:1b:17:a8:2b:9f:e2:5d:28:23:bf:59:5a:a4:
6c:18:75:40:48:c4:9c:2e:21:50:1c:5f:64:45:92:
1c:5b:f8:45:b7:a7:52:63:ed:a1:93:46:40:15:21:
5e:7b:c7:50:35:58:3a:ca:ca:e4:8d:57:ef:5d:17:
bb:61:44:30:6e:f9:04:31:db:05:0a:ad:0f:58:a1:
8b:55:26:fe:78:47:4c:9b:71:92:79:f5:6c:fd:68:
45:38:20:62:7a:1a:b5:83:82:e3:58:d8:cc:93:1d:
d2:c2:30:9a:f2:84:94:26:95:19:78:ab:77:a4:6a:
46:44:88:3f:fc:ea:a0:50:06:62:ec:5c:95:ab:3d:
30:00:d2:6b:69:ee:4e:d4:fc:b8:78:4f:1b:ea:52:
20:66:30:19:5e:36:70:b3:df:19:41:d3:0c:5a:f1:
a2:44:11:73:82:73:cd:98:b6:b9:57:cc:12:a2:91:
13:59:98:be:69:cc:b3:af:45:82:9e:27:f2:08:2c:
5a:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:85:1F:97:C6:69:98:FA:0E:F7:E7:AF:31:F5:4B:E7:C0:FC:D4:01
X509v3 Authority Key Identifier:
keyid:1C:B6:0B:40:A9:8A:EA:E0:54:CA:EE:4C:09:CB:7D:9A:EA:DE:3E:9D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/HLYLQKmK6uBUyu5MCct9murePp0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/HLYLQKmK6uBUyu5MCct9murePp0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30291/DIUfl8ZpmPoO9-evMfVL58D81AE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:4d44::/30
Signature Algorithm: sha256WithRSAEncryption
3a:ac:90:c1:ce:db:cc:19:fb:09:54:5d:bd:8a:43:0a:d6:de:
65:b8:bb:ff:62:74:e5:38:7d:3d:ff:89:45:60:1b:6f:85:15:
e2:c7:95:40:2b:58:f3:6b:90:e2:a3:c5:2f:6a:1c:9a:74:ca:
a6:a8:63:c6:4b:bd:64:2c:7f:a1:2f:78:b7:b4:8b:cb:55:31:
11:54:70:64:cb:a8:6b:11:8b:a4:4b:74:55:71:2f:e1:3d:91:
3c:c9:77:11:eb:fc:98:da:ec:48:d9:5d:7a:69:f8:5f:2c:78:
ec:5d:64:b4:62:0d:29:4d:66:f5:72:f4:a7:fd:99:d6:86:4c:
e7:c3:b1:db:b3:1c:85:7a:ac:42:c9:69:02:65:aa:ae:1d:ec:
4a:9b:ec:fc:a5:0d:25:7f:f4:4e:b9:79:3c:c6:39:1b:fd:f7:
43:9c:7b:ce:00:16:b2:d9:d7:12:b3:4d:74:05:d3:40:b5:75:
8d:55:e7:83:76:ce:1a:21:a7:1f:9d:13:1e:93:c3:06:ab:db:
d4:37:ef:32:91:8c:30:b3:6b:01:de:d4:cf:99:44:46:de:bc:
e6:0b:95:56:6b:a9:47:ac:44:e5:d1:cd:ab:9c:62:51:db:44:
85:ea:ec:1e:be:8f:4a:51:4a:3d:6f:b2:56:e5:ba:ff:d8:e4:
73:d6:b0:a9
-----BEGIN CERTIFICATE-----
MIIFDDCCA/SgAwIBAgIBCTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxQ0I2
MEI0MEE5OEFFQUUwNTRDQUVFNEMwOUNCN0Q5QUVBREUzRTlEMB4XDTIzMTIwMTA5
MzI1MloXDTI0MTExNDAxMzAwM1owMzExMC8GA1UEAxMoMEM4NTFGOTdDNjY5OThG
QTBFRjdFN0FGMzFGNTRCRTdDMEZDRDQwMTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANkIzjYeqvuMupmKrdbdZWOj2076IRb4GO2rN5sMLN4FKiufE+pb
yZ9ozUSsKX+yTaYTk4VB9RWaarEF61EbF6grn+JdKCO/WVqkbBh1QEjEnC4hUBxf
ZEWSHFv4RbenUmPtoZNGQBUhXnvHUDVYOsrK5I1X710Xu2FEMG75BDHbBQqtD1ih
i1Um/nhHTJtxknn1bP1oRTggYnoatYOC41jYzJMd0sIwmvKElCaVGXird6RqRkSI
P/zqoFAGYuxclas9MADSa2nuTtT8uHhPG+pSIGYwGV42cLPfGUHTDFrxokQRc4Jz
zZi2uVfMEqKRE1mYvmnMs69Fgp4n8ggsWgsCAwEAAaOCAikwggIlMB0GA1UdDgQW
BBQMhR+XxmmY+g73568x9UvnwPzUATAfBgNVHSMEGDAWgBQctgtAqYrq4FTK7kwJ
y32a6t4+nTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzAyOTEvSExZTFFLbUs2dUJVeXU1TUNjdDltdXJlUHAwLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvSExZTFFLbUs2dUJVeXU1TUNjdDlt
dXJlUHAwLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzMwMjkxL0RJVWZsOFpwbVBvTzktZXZNZlZMNThEODFBRS5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0E
AgACMAcDBQIkAU1EMA0GCSqGSIb3DQEBCwUAA4IBAQA6rJDBztvMGfsJVF29ikMK
1t5luLv/YnTlOH09/4lFYBtvhRXix5VAK1jza5Dio8UvahyadMqmqGPGS71kLH+h
L3i3tIvLVTERVHBky6hrEYukS3RVcS/hPZE8yXcR6/yY2uxI2V16afhfLHjsXWS0
Yg0pTWb1cvSn/ZnWhkznw7HbsxyFeqxCyWkCZaquHexKm+z8pQ0lf/ROuXk8xjkb
/fdDnHvOABay2dcSs010BdNAtXWNVeeDds4aIacfnRMek8MGq9vUN+8ykYwws2sB
3tTPmURG3rzmC5VWa6lHrETl0c2rnGJR20SF6uwevo9KUUo9b7JW5br/2ORz1rCp
-----END CERTIFICATE-----
Generated at Thu Oct 31 05:07:19 2024 by rpki-client on console-ams.rpki-client.org