Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/307/qMTX4W5hKJRiMVaUkmaRt1ZaBQE.roa
File: qMTX4W5hKJRiMVaUkmaRt1ZaBQE.roa (raw, json)
Hash identifier: pNIcxDEfV9kyx/b1RchjS/GYrBajwBZOpjEGlXb58tk=
Subject key identifier: A8:C4:D7:E1:6E:61:28:94:62:31:56:94:92:66:91:B7:56:5A:05:01
Certificate issuer: /CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061
Certificate serial: 0F
Authority key identifier: 6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/qMTX4W5hKJRiMVaUkmaRt1ZaBQE.roa
Signing time: Thu 16 Nov 2023 02:52:48 +0000
ROA not before: Thu 16 Nov 2023 02:52:48 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 18266
IP address blocks: 219.124.96.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 01:32:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15 (0xf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6D1ED16D8C6D3BA40BF42CB3A29652ADAB76D061
Validity
Not Before: Nov 16 02:52:48 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=A8C4D7E16E61289462315694926691B7565A0501
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:28:1d:c5:d1:7c:11:93:30:e7:8c:55:08:ba:
35:a7:47:82:62:fa:ed:7d:c8:0c:40:9d:f1:96:f8:
56:fb:2b:97:5b:7d:68:45:ac:21:f7:92:14:80:89:
84:ad:63:16:14:59:22:0b:84:29:0f:e9:6b:ea:a1:
aa:8c:dd:44:ad:77:21:49:3a:1f:c8:68:dd:46:9f:
03:1c:f8:3d:af:cd:8d:26:b0:65:2c:c8:c0:4a:fe:
fe:94:07:4b:a2:2c:5a:7f:d2:01:29:10:f9:b1:59:
59:08:dd:7b:b8:5d:89:4c:2b:cc:54:a5:98:3b:b7:
32:22:cf:1f:8a:3b:3b:95:5d:19:6e:6a:90:91:b5:
d9:a4:7f:a4:fd:46:28:c3:d6:66:db:cc:9f:2b:92:
b0:b1:88:7d:b6:56:b2:44:57:89:dd:d9:93:7d:86:
95:0a:44:99:86:c9:d0:01:b7:7c:94:13:3c:37:62:
2d:e6:4a:a8:4c:72:77:bb:ff:36:e4:b8:07:e1:03:
75:e1:c1:0f:16:a3:d2:28:14:16:ba:d3:e0:78:21:
ab:37:2a:76:e9:61:cd:7f:bc:5a:b2:18:fe:98:4d:
59:d8:69:bc:70:ff:b4:3b:7e:c6:02:e1:d6:49:49:
c4:78:f1:f7:1d:f3:52:fe:03:20:a1:cd:e3:b5:2a:
2c:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:C4:D7:E1:6E:61:28:94:62:31:56:94:92:66:91:B7:56:5A:05:01
X509v3 Authority Key Identifier:
keyid:6D:1E:D1:6D:8C:6D:3B:A4:0B:F4:2C:B3:A2:96:52:AD:AB:76:D0:61
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/bR7RbYxtO6QL9CyzopZSrat20GE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/bR7RbYxtO6QL9CyzopZSrat20GE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/307/qMTX4W5hKJRiMVaUkmaRt1ZaBQE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.124.96.0/20
Signature Algorithm: sha256WithRSAEncryption
06:25:e4:1d:b8:49:bb:c8:2d:6b:c2:9e:37:17:30:98:5e:5d:
65:57:f1:be:b6:61:38:6a:ba:a4:6b:e5:b3:c4:08:e5:83:bd:
9e:6d:cd:42:50:4d:dc:14:36:1e:90:e4:46:5b:3b:97:a4:27:
41:5d:32:5f:0d:a3:33:90:78:cd:1e:4b:22:e7:c6:8b:70:bf:
4e:7a:96:67:a3:88:d1:b3:9d:2a:63:de:e3:29:87:c6:55:da:
ee:af:ce:f6:b7:2d:7e:47:ac:5f:e6:8d:89:b8:c7:ef:e7:c0:
41:c4:dd:24:24:a9:42:88:e0:7a:1d:e4:4d:ff:d2:fd:96:7e:
09:8b:31:b7:09:ce:74:60:da:03:1c:d8:3c:79:19:48:42:a7:
b0:df:65:09:82:19:d4:cf:b5:bb:70:65:ce:a5:5a:7a:f9:21:
3f:6a:45:ca:dc:43:42:4b:0a:d1:83:5d:3a:74:50:eb:e5:ad:
99:5b:88:39:10:83:35:59:d4:b1:85:55:0b:2e:1f:60:10:ef:
82:b1:23:38:62:59:a5:94:82:6f:26:07:3e:7a:eb:ec:d4:29:
83:da:08:4e:01:63:4c:2a:39:b3:59:8a:14:6b:ef:f3:f3:f5:
38:14:42:75:c3:18:aa:16:ec:b6:31:8c:fc:86:ab:84:82:19:
b7:34:da:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 05:07:19 2024 by rpki-client on console-ams.rpki-client.org