Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3kUFWIUlp-Rpek5Rat6_IOtAUlU.roa
File: 3kUFWIUlp-Rpek5Rat6_IOtAUlU.roa (raw, json)
Hash identifier: +gn6MHr5pxgpI2yeqRVfInsmwFkMjzCiBLbYKdb+/5k=
Subject key identifier: DE:45:05:58:85:25:A7:E4:69:7A:4E:51:6A:DE:BF:20:EB:40:52:55
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 04E6
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3kUFWIUlp-Rpek5Rat6_IOtAUlU.roa
Signing time: Thu 27 Jul 2023 16:50:14 +0000
ROA not before: Thu 27 Jul 2023 16:50:14 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 211.14.120.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:42:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1254 (0x4e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:50:14 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=DE4505588525A7E4697A4E516ADEBF20EB405255
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:bc:dd:68:61:de:f3:b8:be:ac:da:c6:82:38:
ae:b5:f2:1d:35:22:c2:04:4b:30:16:28:f0:28:1a:
05:d4:43:79:b9:f6:f0:65:27:89:e8:6b:c1:c5:f7:
1d:f3:62:06:07:23:09:1c:6c:63:99:da:43:84:ce:
16:1a:ce:a9:0d:0b:64:ce:20:f1:fe:77:87:5f:0f:
71:65:1d:19:75:bb:e7:70:d8:cf:37:b5:57:8e:92:
26:3e:68:3e:b2:a7:85:43:26:dc:22:be:09:f4:39:
5d:33:58:4a:67:21:33:89:e9:8d:a2:87:15:8d:f7:
0e:ce:c4:4d:7d:8e:9c:53:56:d5:f6:4d:a3:2a:8c:
95:12:e9:a9:ef:62:c7:40:1a:1b:9b:5d:34:c8:7d:
06:5b:22:b5:10:4a:24:4e:35:9e:5e:8c:44:8b:51:
e6:01:50:aa:df:61:4a:b2:5b:74:e5:1a:b8:e6:37:
70:5c:da:1b:66:a8:cc:55:03:2f:db:30:5a:58:83:
38:cb:fd:a3:c7:0f:22:23:b2:d8:43:7d:5f:2d:e5:
f1:e6:dc:be:e9:11:f0:d4:e4:4e:55:a4:10:ba:27:
1d:5a:84:1b:2e:99:96:85:0d:4c:2f:d6:95:a3:e2:
21:05:30:03:88:e6:eb:13:4b:8d:13:84:b1:5f:38:
bd:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:45:05:58:85:25:A7:E4:69:7A:4E:51:6A:DE:BF:20:EB:40:52:55
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3kUFWIUlp-Rpek5Rat6_IOtAUlU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.14.120.0/22
Signature Algorithm: sha256WithRSAEncryption
c0:f4:ca:9f:72:45:e1:b5:19:20:a3:ed:a5:ff:0a:f9:5f:9a:
77:ea:77:16:68:42:e3:ad:24:70:1f:50:8a:bd:88:3f:4c:ad:
ee:58:fb:32:9e:67:05:17:5f:5b:db:aa:fd:c1:d2:13:f4:66:
27:53:26:fb:47:fe:c9:bb:e7:d0:aa:be:08:d0:3f:f1:7b:26:
ea:76:69:3b:3f:ae:bd:b9:be:70:43:3c:6d:27:24:56:52:ca:
07:73:41:ee:b7:c2:0d:f3:7a:41:a8:d5:90:ec:6f:fb:d6:ba:
2d:27:be:12:a3:c9:26:2a:78:0c:17:3e:c3:60:6b:c2:d4:aa:
06:38:78:b4:9b:80:4a:a9:b8:9b:87:6a:d9:11:e4:a4:c4:3c:
74:66:27:66:1d:ac:10:26:db:75:41:e6:eb:a8:ed:d9:e4:74:
36:90:5e:1c:5b:5e:ef:69:bc:2a:0d:36:97:eb:8b:34:eb:1e:
1e:74:c3:e9:65:24:fe:96:13:e5:04:6c:00:a4:b3:49:c5:b7:
5d:7b:38:22:50:3a:ad:46:4d:44:d7:a0:71:7d:a5:b4:e5:6a:
9e:bf:c6:7e:33:03:e8:40:91:78:37:67:a8:d6:7a:b7:84:f1:
a4:f8:e1:74:9b:49:d2:14:61:ed:8c:57:d5:30:6f:2f:c6:4e:
81:3e:ac:5f
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBOYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx
NjUwMTRaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKERFNDUwNTU4ODUyNUE3
RTQ2OTdBNEU1MTZBREVCRjIwRUI0MDUyNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCrvN1oYd7zuL6s2saCOK618h01IsIESzAWKPAoGgXUQ3m59vBl
J4noa8HF9x3zYgYHIwkcbGOZ2kOEzhYazqkNC2TOIPH+d4dfD3FlHRl1u+dw2M83
tVeOkiY+aD6yp4VDJtwivgn0OV0zWEpnITOJ6Y2ihxWN9w7OxE19jpxTVtX2TaMq
jJUS6anvYsdAGhubXTTIfQZbIrUQSiRONZ5ejESLUeYBUKrfYUqyW3TlGrjmN3Bc
2htmqMxVAy/bMFpYgzjL/aPHDyIjsthDfV8t5fHm3L7pEfDU5E5VpBC6Jx1ahBsu
mZaFDUwv1pWj4iEFMAOI5usTS40ThLFfOL35AgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQU3kUFWIUlp+Rpek5Rat6/IOtAUlUwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5LzNrVUZXSVVscC1ScGVrNVJhdDZfSU90QVVsVS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBALTDngwDQYJKoZIhvcNAQELBQADggEBAMD0yp9yReG1GSCj7aX/Cvlfmnfq
dxZoQuOtJHAfUIq9iD9Mre5Y+zKeZwUXX1vbqv3B0hP0ZidTJvtH/sm759CqvgjQ
P/F7Jup2aTs/rr25vnBDPG0nJFZSygdzQe63wg3zekGo1ZDsb/vWui0nvhKjySYq
eAwXPsNga8LUqgY4eLSbgEqpuJuHatkR5KTEPHRmJ2YdrBAm23VB5uuo7dnkdDaQ
XhxbXu9pvCoNNpfrizTrHh50w+llJP6WE+UEbACks0nFt117OCJQOq1GTUTXoHF9
pbTlap6/xn4zA+hAkXg3Z6jWereE8aT44XSbSdIUYe2MV9Uwby/GToE+rF8=
-----END CERTIFICATE-----
Generated at Sun Jun 30 04:02:47 2024 by rpki-client on console-ams.rpki-client.org