Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/30420/HRn1yXnSgLfxZR5W-d0L6yA1BBQ.roa
File: HRn1yXnSgLfxZR5W-d0L6yA1BBQ.roa (raw, json)
Hash identifier: 5H6xaEThlzN6KkcXO6zW69joG8HGJdWlMwIRLAsCS9w=
Subject key identifier: 1D:19:F5:C9:79:D2:80:B7:F1:65:1E:56:F9:DD:0B:EB:20:35:04:14
Certificate issuer: /CN=A815D76D5926B645F19939B1DFE9F62AD39C1E15
Certificate serial: 02
Authority key identifier: A8:15:D7:6D:59:26:B6:45:F1:99:39:B1:DF:E9:F6:2A:D3:9C:1E:15
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qBXXbVkmtkXxmTmx3-n2KtOcHhU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30420/HRn1yXnSgLfxZR5W-d0L6yA1BBQ.roa
Signing time: Sat 28 Oct 2023 15:36:50 +0000
ROA not before: Sat 28 Oct 2023 15:36:50 +0000
ROA not after: Sun 27 Oct 2024 15:25:08 +0000
asID: 150362
IP address blocks: 2400:f7a0::/32 maxlen: 32
Validation: Failed, certificate revoked on Wed 10 Jan 2024 16:43:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A815D76D5926B645F19939B1DFE9F62AD39C1E15
Validity
Not Before: Oct 28 15:36:50 2023 GMT
Not After : Oct 27 15:25:08 2024 GMT
Subject: CN=1D19F5C979D280B7F1651E56F9DD0BEB20350414
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:ce:38:94:81:6b:f0:28:1c:50:4b:7c:ad:87:
c9:c6:2a:79:ea:a0:d8:f5:3d:44:e0:75:b9:bb:ce:
d0:96:26:13:e1:1f:f9:17:1e:56:10:13:47:99:02:
22:5f:04:0e:87:05:ee:5c:4e:28:9a:57:09:60:ac:
20:67:29:dc:63:83:cc:27:c1:68:f7:0b:77:13:e1:
c6:71:da:29:83:9a:f1:c5:fa:cd:ab:9a:97:52:15:
c3:a6:96:e4:2a:c3:37:9a:86:6d:d9:c2:ac:57:41:
95:ee:38:67:d2:a6:f8:c6:53:3c:55:ae:21:f0:cf:
fb:aa:1b:29:1d:46:53:6e:86:f8:fa:5e:e7:8b:06:
d1:cf:90:b7:16:b9:c1:9b:fc:59:51:e0:53:75:61:
9e:46:09:68:6a:b0:d4:b9:f4:0c:76:5c:ea:29:4f:
b1:3c:81:72:28:a8:a2:08:af:30:c4:5d:97:cd:98:
40:26:6c:c0:98:e4:b1:e0:e0:5b:aa:c1:99:f1:fa:
15:48:89:72:fa:7e:96:b0:43:6a:07:1d:98:55:86:
d5:93:a6:87:d1:83:c9:f4:09:ab:e3:1a:f7:b9:08:
4a:34:bf:57:f2:de:b1:24:ab:e9:52:f6:9e:7f:59:
ae:81:86:03:31:02:aa:3a:d4:18:13:46:30:e8:8e:
84:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:19:F5:C9:79:D2:80:B7:F1:65:1E:56:F9:DD:0B:EB:20:35:04:14
X509v3 Authority Key Identifier:
keyid:A8:15:D7:6D:59:26:B6:45:F1:99:39:B1:DF:E9:F6:2A:D3:9C:1E:15
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30420/qBXXbVkmtkXxmTmx3-n2KtOcHhU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qBXXbVkmtkXxmTmx3-n2KtOcHhU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/30420/HRn1yXnSgLfxZR5W-d0L6yA1BBQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:f7a0::/32
Signature Algorithm: sha256WithRSAEncryption
04:2f:0f:ea:c0:bd:1f:ba:60:72:80:6f:b2:ee:24:2b:dc:8b:
0d:2c:75:64:60:e5:58:14:86:29:8c:0c:f9:b6:f9:ae:38:0a:
e4:b1:0f:da:66:7f:df:2e:07:22:b0:de:d3:a9:b9:11:a3:13:
65:85:02:36:10:4b:9e:cb:d4:65:10:20:9a:71:ba:5e:8d:7b:
27:83:d4:ac:2d:e2:06:a7:a8:e3:01:59:8e:be:2f:ae:4c:21:
11:b1:46:ea:5a:21:0b:f5:45:63:57:a4:c5:a5:1a:31:80:12:
35:48:26:9e:a7:47:b1:0f:4c:24:2b:47:e0:d3:42:15:7a:db:
c0:5b:05:f9:ee:44:6f:2e:9c:b4:30:2f:12:05:b2:53:93:d6:
87:a8:44:69:29:62:fe:f4:98:b0:39:fd:53:6f:00:94:e7:49:
18:42:84:2f:75:6c:da:b3:bf:1c:72:01:5b:d7:28:50:9f:b1:
fa:1f:5e:74:e0:98:80:fb:73:44:26:09:67:0e:b5:52:8e:07:
f3:f2:11:17:f9:5f:ea:c2:9f:12:18:d1:05:18:0b:6e:19:0a:
e5:13:ba:7d:a2:5a:8a:61:8f:21:c0:ca:5d:7b:d2:f8:77:ac:
10:3b:e3:54:20:8a:3e:3e:21:ec:35:7f:6a:c3:25:48:ae:6b:
38:c6:08:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jan 10 19:48:44 2024 by rpki-client on console-ams.rpki-client.org