Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30406/U_p1ARma1pfrh54LXQaxiB3BOvk.roa
File: U_p1ARma1pfrh54LXQaxiB3BOvk.roa (raw, json)
Hash identifier: yObh1iy1lmlBgl+ifD8vh9sndeBKANjoCesNcKIw6Cg=
Subject key identifier: 53:FA:75:01:19:9A:D6:97:EB:87:9E:0B:5D:06:B1:88:1D:C1:3A:F9
Certificate issuer: /CN=E2CB211F293E54E84E3CBD9D22B0884675BB1C63
Certificate serial: 02
Authority key identifier: E2:CB:21:1F:29:3E:54:E8:4E:3C:BD:9D:22:B0:88:46:75:BB:1C:63
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/4sshHyk-VOhOPL2dIrCIRnW7HGM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30406/U_p1ARma1pfrh54LXQaxiB3BOvk.roa
Signing time: Mon 29 May 2023 16:19:22 +0000
ROA not before: Mon 29 May 2023 16:19:22 +0000
ROA not after: Tue 28 May 2024 16:13:02 +0000
asID: 24271
IP address blocks: 2400:99a0::/32 maxlen: 48
Validation: Failed, certificate revoked on Tue 14 May 2024 16:13:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E2CB211F293E54E84E3CBD9D22B0884675BB1C63
Validity
Not Before: May 29 16:19:22 2023 GMT
Not After : May 28 16:13:02 2024 GMT
Subject: CN=53FA7501199AD697EB879E0B5D06B1881DC13AF9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:89:7d:e4:97:98:0e:4f:3b:2f:0f:2e:fc:be:
0d:53:68:30:06:9c:55:5d:22:fe:24:a6:f2:c9:74:
68:00:60:f9:9d:98:e6:04:ba:fd:7d:c0:5f:b4:d4:
72:29:15:54:88:63:6a:fa:01:83:02:d9:15:eb:37:
52:5b:86:61:34:f6:39:ec:e2:8f:ad:3b:6c:cb:15:
d1:df:b1:7a:63:1e:35:22:5e:79:6f:dd:18:de:2c:
1c:9b:13:87:04:1b:02:ca:b0:94:01:b1:9e:94:c3:
e5:2e:a9:f8:03:75:ef:2f:ca:50:d8:4f:bb:63:a7:
0b:90:79:7c:7a:af:eb:d6:be:0b:60:9f:02:d9:90:
da:07:5b:fd:db:4f:92:6d:49:57:31:13:25:76:b9:
21:78:be:0f:a8:e8:c0:64:07:87:01:e8:93:5d:2e:
62:a4:fc:b2:b9:77:59:42:74:a7:0b:07:79:68:3e:
4b:da:a5:25:5f:cf:45:30:b4:66:6a:0a:61:b7:73:
2f:e0:a2:55:b7:01:5f:9f:80:f9:bf:30:b6:57:28:
3e:2d:09:8c:bb:16:84:57:4a:b6:c1:db:14:ad:20:
ef:30:db:f3:f5:fe:c0:e8:6f:62:88:34:ea:6b:a7:
8b:7b:fa:8d:c2:83:84:e9:c2:33:3f:77:59:18:1b:
3c:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:FA:75:01:19:9A:D6:97:EB:87:9E:0B:5D:06:B1:88:1D:C1:3A:F9
X509v3 Authority Key Identifier:
keyid:E2:CB:21:1F:29:3E:54:E8:4E:3C:BD:9D:22:B0:88:46:75:BB:1C:63
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30406/4sshHyk-VOhOPL2dIrCIRnW7HGM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/4sshHyk-VOhOPL2dIrCIRnW7HGM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30406/U_p1ARma1pfrh54LXQaxiB3BOvk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:99a0::/32
Signature Algorithm: sha256WithRSAEncryption
0b:92:a4:2c:e3:b2:b9:ca:ce:a3:ed:c7:62:09:c4:de:ec:19:
af:4e:1b:30:f7:8c:e7:e7:ec:6c:f7:37:41:7f:4c:c2:1f:03:
f8:96:7d:7e:05:ad:12:fc:21:be:4b:45:26:af:ec:b6:25:f4:
5a:e4:05:e4:5a:ba:30:3d:fa:df:06:49:53:cf:d2:7f:83:d4:
f3:ba:b3:7c:2f:1e:16:f4:50:bf:37:8d:2c:43:01:47:6e:4e:
fd:bb:dc:e5:c5:cc:4a:41:b8:f5:92:70:7c:8d:b1:e6:81:79:
7d:9b:93:8f:f9:66:b7:49:47:7b:5b:94:8b:5e:fe:bd:ae:d0:
ce:dd:ae:3d:78:40:7a:9b:45:6d:04:44:43:2f:cd:9a:69:42:
0d:ff:31:f5:45:75:98:d1:01:e8:19:18:80:e5:79:c5:66:fd:
6f:71:e3:09:24:c4:2d:8f:a8:73:41:2f:1a:0f:de:57:ab:b7:
eb:72:55:87:56:e8:fb:84:ef:f9:92:c9:67:31:0a:66:ce:75:
b8:e7:d9:9b:24:88:a7:34:1e:bf:a8:85:5e:9e:9f:c4:fe:7e:
d6:79:9e:32:1f:6b:a3:14:b3:00:ae:c2:1e:de:13:3c:e5:d3:
2c:3d:4a:1e:c9:8f:7a:ae:88:11:39:fb:bb:22:a5:86:6c:23:
ed:0d:c5:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 14 20:44:35 2024 by rpki-client on console-ams.rpki-client.org