Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/9VkG0H1Ih9UAM9i6GFeOLxdDLTE.roa
File: 9VkG0H1Ih9UAM9i6GFeOLxdDLTE.roa (raw, json)
Hash identifier: +hcIOQa6SVh4qakWKEW1i3SS5twcKQvuy3EyYGtkLIM=
Subject key identifier: F5:59:06:D0:7D:48:87:D5:00:33:D8:BA:18:57:8E:2F:17:43:2D:31
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 01D7
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9VkG0H1Ih9UAM9i6GFeOLxdDLTE.roa
Signing time: Wed 24 May 2023 16:40:35 +0000
ROA not before: Wed 24 May 2023 16:40:35 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.78.32.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:04:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 471 (0x1d7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:40:35 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=F55906D07D4887D50033D8BA18578E2F17432D31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:0f:fc:3e:f1:a8:43:b7:5f:4c:81:f7:61:ea:
97:4e:2c:1f:01:68:8e:a0:c5:a1:83:9b:e2:d4:86:
d7:78:6b:b3:c6:16:f6:e1:09:89:5a:1f:d0:c0:35:
c1:90:1e:0c:bf:e3:3b:a6:9d:e3:ba:d6:5c:7e:97:
7a:88:c2:dd:dc:9d:4c:0c:78:fa:ea:89:f8:ef:1a:
c3:ce:68:d7:21:b7:ba:67:0d:63:4b:21:d5:56:6f:
2f:8a:8b:16:e6:df:6c:14:96:17:de:ae:1b:80:38:
fe:52:27:e0:b0:65:49:9b:5c:c6:96:f5:51:0f:b5:
d6:98:0d:14:dd:b5:40:18:a0:4d:02:5e:24:15:57:
03:bd:0a:79:3b:a6:23:dc:9a:66:b9:e5:55:ed:5e:
51:9f:ef:e3:3d:d7:0e:9c:fe:81:59:4c:81:5b:78:
d9:35:ec:4a:f5:e1:e3:16:d5:fb:f0:2b:ee:1d:a0:
67:2d:97:fa:dc:e7:88:2d:5a:33:19:27:ac:d0:d3:
f7:b9:ce:1d:8e:6c:59:92:a5:01:f7:62:7d:44:6c:
c6:a1:90:4b:e3:35:95:a0:71:b5:7c:ab:28:2c:48:
f9:85:bb:cb:95:cc:f4:56:41:a8:65:b9:c5:9c:78:
d2:8d:68:98:74:ec:33:59:fa:66:4a:f2:29:7c:d0:
f4:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:59:06:D0:7D:48:87:D5:00:33:D8:BA:18:57:8E:2F:17:43:2D:31
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9VkG0H1Ih9UAM9i6GFeOLxdDLTE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.78.32.0/22
Signature Algorithm: sha256WithRSAEncryption
e3:09:6b:0d:2f:73:af:e9:7e:7c:32:65:a4:39:d0:bb:f0:0e:
e9:1f:34:da:ec:c2:1c:dc:4b:e4:c5:5c:45:2c:a9:71:ee:05:
07:fd:d5:6f:ef:fc:11:66:4e:35:5b:78:2d:1a:4f:4a:f7:d3:
d9:3b:25:83:5b:3f:f3:c4:05:71:3b:d3:b8:80:c8:25:e5:11:
57:ee:f0:02:3e:d1:33:cb:ab:de:7b:79:0c:63:be:bf:e8:5c:
4f:c5:3f:08:95:a8:82:e7:97:62:e0:dd:f4:db:4d:73:a6:67:
7d:a3:8f:69:7e:10:8f:8c:4b:ff:68:fc:d8:50:bf:f6:f4:82:
43:31:b7:60:bb:87:b7:3f:d5:db:8d:75:b9:db:89:30:c1:2b:
b8:f6:29:21:52:c1:f5:22:91:c2:d6:39:78:6a:16:5f:64:a3:
58:de:54:89:9d:c0:71:59:b6:da:cc:dc:b0:fc:a8:9e:e0:8d:
d6:87:96:b8:27:ed:1f:db:de:bc:9d:90:61:d2:a9:ae:40:3d:
5b:50:04:8e:ed:ff:0a:41:8b:0b:3d:8c:d9:fc:c9:a4:a6:d4:
9e:c9:cc:1c:3b:31:04:f6:b1:aa:08:96:cd:18:a6:97:9d:56:
79:c7:31:76:bc:99:b1:61:1e:d9:5d:75:5c:64:00:d3:41:50:
ab:09:a0:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:32 2024 by rpki-client on console-fra.rpki-client.org