Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/-Nq5Cc2-1n5ME4rOurOpWIlq3nQ.roa
File: -Nq5Cc2-1n5ME4rOurOpWIlq3nQ.roa (raw, json)
Hash identifier: 5LYR/NFGbLDheuk+4Lw+7PIBOzC4t6iDl2k7jIzHUqY=
Subject key identifier: F8:DA:B9:09:CD:BE:D6:7E:4C:13:8A:CE:BA:B3:A9:58:89:6A:DE:74
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0291
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-Nq5Cc2-1n5ME4rOurOpWIlq3nQ.roa
Signing time: Tue 30 May 2023 16:36:28 +0000
ROA not before: Tue 30 May 2023 16:36:28 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.159.250.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:24:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 657 (0x291)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:36:28 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=F8DAB909CDBED67E4C138ACEBAB3A958896ADE74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:53:7c:bc:42:19:69:7e:bf:98:35:fc:61:32:
1e:6d:66:18:4e:77:36:63:f6:cc:5f:1a:71:6f:27:
16:d8:a5:02:92:cb:2b:e2:bb:90:a2:19:eb:17:48:
eb:3a:db:61:ec:84:2d:29:ff:e2:87:20:45:54:82:
57:46:1a:94:42:be:c9:c9:36:2d:75:7c:3d:8f:62:
24:8e:fb:de:35:7d:93:3a:ae:a5:77:72:0e:14:b3:
4d:12:ac:67:92:10:00:ed:4f:5a:67:42:52:37:c7:
62:1b:77:34:cd:9e:3f:7b:12:47:fd:8d:c3:3f:aa:
1a:ec:3d:36:4b:34:8b:4e:9c:e8:1a:8c:90:35:37:
28:b2:4c:df:c1:15:5a:41:bf:26:11:6d:60:13:41:
c2:9c:36:24:e1:45:2d:e3:fd:fd:ce:70:11:59:62:
6f:50:e8:ad:22:36:17:a6:58:53:11:fb:5e:53:fc:
00:a0:e2:a6:10:6a:d3:ad:90:7e:ea:b5:eb:9f:17:
50:95:2d:14:83:b1:11:fd:6d:34:6c:2d:65:a8:51:
f0:fe:db:e3:80:c6:25:b7:da:d3:a8:74:ca:ea:4b:
3f:6d:01:88:d0:3e:5a:40:6c:39:88:2d:8a:b4:e1:
ab:e6:8b:70:11:15:bf:95:7b:f9:46:42:48:a6:b6:
38:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:DA:B9:09:CD:BE:D6:7E:4C:13:8A:CE:BA:B3:A9:58:89:6A:DE:74
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/-Nq5Cc2-1n5ME4rOurOpWIlq3nQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.159.250.0/23
Signature Algorithm: sha256WithRSAEncryption
1b:29:39:09:e0:d5:c7:19:ac:a1:2c:fd:ae:e8:5a:da:bc:7a:
60:20:37:5a:eb:46:41:50:dc:f0:e4:a5:fb:ff:fe:91:e3:0f:
ae:85:90:8c:bb:be:8e:66:21:d7:96:65:68:42:72:f8:12:16:
ef:08:1e:0d:ea:3e:ca:a8:e1:48:07:39:92:93:46:87:ae:1e:
b1:e2:88:1a:ca:a0:b3:62:3c:97:97:c8:e9:73:bd:92:41:55:
8a:ba:41:52:c9:9f:c8:51:6d:9a:05:ac:27:5e:c7:8c:75:ab:
42:d1:55:60:b9:5b:3b:82:d5:e7:35:c6:a4:cd:0e:7a:d4:e0:
72:32:14:07:dd:ce:b1:1a:e5:f5:02:7d:b6:63:79:a9:64:c5:
29:4e:88:d0:eb:b4:ce:c9:11:e0:8f:2e:c2:3a:7e:75:6e:0a:
66:11:de:ce:09:51:97:31:b9:cf:83:8b:e6:f0:4b:0d:6a:cc:
b4:77:ab:9a:51:5f:ba:f1:23:9a:68:ae:35:f7:85:94:44:d7:
43:20:cc:6d:3e:da:da:41:7b:29:7c:ce:ff:52:1d:cb:e5:d2:
1a:b7:bd:ba:23:41:1d:f4:41:5f:a9:e0:51:3a:c7:e1:33:99:
38:39:b6:00:08:b0:1f:79:36:53:49:86:5d:bf:3c:71:c5:e2:
b1:53:7a:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:31 2024 by rpki-client on console-fra.rpki-client.org