Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/9mmHiYTDH2rQwXyD1KJZ2QJadcM.roa
File: 9mmHiYTDH2rQwXyD1KJZ2QJadcM.roa (raw, json)
Hash identifier: tQHj77jScM5IUylOAINfmey81W7GCF4B6CuZoTd5Y50=
Subject key identifier: F6:69:87:89:84:C3:1F:6A:D0:C1:7C:83:D4:A2:59:D9:02:5A:75:C3
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0271
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9mmHiYTDH2rQwXyD1KJZ2QJadcM.roa
Signing time: Tue 30 May 2023 16:34:19 +0000
ROA not before: Tue 30 May 2023 16:34:19 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.210.70.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:18:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 625 (0x271)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:34:19 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=F669878984C31F6AD0C17C83D4A259D9025A75C3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:14:1c:61:26:72:61:3c:ef:dc:85:f0:8b:f6:
93:47:51:71:50:15:3e:2e:30:62:61:a3:a6:98:d5:
c8:66:31:6f:2f:9d:37:f9:2c:53:ea:e6:20:06:2c:
f9:b1:10:88:00:18:63:cf:d2:8f:42:5e:6f:cd:13:
8a:9e:72:9c:0f:cd:2b:74:6e:37:aa:29:0b:ae:07:
f6:06:f4:c8:bb:15:87:42:77:a1:a5:88:aa:46:67:
a2:38:1c:36:5e:b7:e4:9a:12:7b:2f:23:b6:0e:45:
3a:da:58:ea:dd:07:8a:3d:38:3a:5e:67:53:39:56:
ea:21:7d:92:fb:0a:0f:79:70:40:12:dd:4c:2b:b1:
bc:82:e6:6b:35:a1:ba:3b:84:5d:74:bd:df:3f:e1:
9d:ba:37:f1:e0:9a:fb:96:53:0a:96:05:ef:82:67:
e2:01:21:4f:50:4b:50:a1:7d:dc:c7:bb:78:ca:be:
1f:4f:8f:72:f5:6a:bb:26:c7:88:6a:a3:be:86:56:
d7:7a:5e:4f:33:95:fd:58:5f:ae:74:01:91:c5:cb:
f3:3f:92:cc:96:d5:c7:ea:1b:55:6b:57:5b:05:d9:
dd:f9:9a:c7:88:91:f3:5b:21:b0:dc:40:72:bc:21:
5d:cb:97:fe:86:8d:e6:10:e0:70:b1:16:db:15:fa:
6b:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:69:87:89:84:C3:1F:6A:D0:C1:7C:83:D4:A2:59:D9:02:5A:75:C3
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/9mmHiYTDH2rQwXyD1KJZ2QJadcM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.70.0/23
Signature Algorithm: sha256WithRSAEncryption
bd:e9:80:26:01:0f:dc:3d:6d:bf:f5:8a:a0:82:3b:57:bc:81:
7c:0e:4f:15:da:37:c7:fa:74:22:00:7d:aa:bf:e9:74:16:0a:
ac:49:fc:bb:45:3d:72:7d:26:88:01:e5:5b:76:a9:48:d5:58:
0a:e4:56:45:2f:70:7c:4a:c9:32:c9:5c:8c:34:e3:d1:c6:72:
f3:5e:59:30:bc:ca:8a:75:e6:f3:11:92:a0:59:81:db:9e:25:
a2:b5:2c:5a:f3:0f:9b:91:00:cb:a5:3d:fc:da:1b:a6:00:76:
d9:87:98:6f:eb:a6:5f:cb:58:2f:3d:d5:78:d6:9a:bd:a0:b5:
94:22:0a:bd:ad:b8:86:89:ad:08:c5:8f:ae:51:12:01:19:87:
6e:4c:b2:7d:fd:07:c3:93:db:58:79:bb:2d:12:be:bc:cc:a9:
ca:cb:d3:8d:65:41:2a:32:28:97:6d:13:6b:72:f6:2b:38:23:
06:aa:df:5e:8c:57:3d:79:c9:44:b8:d0:fc:6f:52:2e:16:76:
48:c9:16:bb:e4:1b:3a:5c:32:7d:50:8b:b0:e1:47:28:a7:4e:
a5:6c:59:7d:b3:5d:bc:f7:07:aa:50:99:fd:f4:8a:8a:6d:39:
d7:dc:a9:14:e3:de:cc:34:01:78:1e:3d:84:b5:70:d1:f3:47:
f6:8b:cd:41
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAnEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx
NjM0MTlaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEY2Njk4Nzg5ODRDMzFG
NkFEMEMxN0M4M0Q0QTI1OUQ5MDI1QTc1QzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIFBxhJnJhPO/chfCL9pNHUXFQFT4uMGJho6aY1chmMW8vnTf5
LFPq5iAGLPmxEIgAGGPP0o9CXm/NE4qecpwPzSt0bjeqKQuuB/YG9Mi7FYdCd6Gl
iKpGZ6I4HDZet+SaEnsvI7YORTraWOrdB4o9ODpeZ1M5VuohfZL7Cg95cEAS3Uwr
sbyC5ms1obo7hF10vd8/4Z26N/HgmvuWUwqWBe+CZ+IBIU9QS1ChfdzHu3jKvh9P
j3L1arsmx4hqo76GVtd6Xk8zlf1YX650AZHFy/M/ksyW1cfqG1VrV1sF2d35mseI
kfNbIbDcQHK8IV3Ll/6GjeYQ4HCxFtsV+mt5AgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQU9mmHiYTDH2rQwXyD1KJZ2QJadcMwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5LzltbUhpWVRESDJyUXdYeUQxS0paMlFKYWRjTS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAHc0kYwDQYJKoZIhvcNAQELBQADggEBAL3pgCYBD9w9bb/1iqCCO1e8gXwO
TxXaN8f6dCIAfaq/6XQWCqxJ/LtFPXJ9JogB5Vt2qUjVWArkVkUvcHxKyTLJXIw0
49HGcvNeWTC8yop15vMRkqBZgdueJaK1LFrzD5uRAMulPfzaG6YAdtmHmG/rpl/L
WC891XjWmr2gtZQiCr2tuIaJrQjFj65REgEZh25Msn39B8OT21h5uy0SvrzMqcrL
041lQSoyKJdtE2ty9is4Iwaq316MVz15yUS40PxvUi4WdkjJFrvkGzpcMn1Qi7Dh
RyinTqVsWX2zXbz3B6pQmf30ioptOdfcqRTj3sw0AXgePYS1cNHzR/aLzUE=
-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:32 2024 by rpki-client on console-fra.rpki-client.org