Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/AoOwL5LKkawwWnpKWF3uxC26eMk.roa
File: AoOwL5LKkawwWnpKWF3uxC26eMk.roa (raw, json)
Hash identifier: xYd/UE3Af4GohBp6FzsvQGIls6w4p9MiDyxZeeOR5k4=
Subject key identifier: 02:83:B0:2F:92:CA:91:AC:30:5A:7A:4A:58:5D:EE:C4:2D:BA:78:C9
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0122
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/AoOwL5LKkawwWnpKWF3uxC26eMk.roa
Signing time: Wed 24 May 2023 16:30:17 +0000
ROA not before: Wed 24 May 2023 16:30:17 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.78.26.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 30 Apr 2024 01:43:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290 (0x122)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:30:17 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=0283B02F92CA91AC305A7A4A585DEEC42DBA78C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0c:53:e0:6b:02:57:9a:14:be:1c:fa:f4:e1:
36:5e:46:26:ab:52:8f:bb:35:c2:2b:6d:9a:64:13:
42:c6:5b:45:69:f9:a2:b2:5a:33:d9:4b:ad:e7:35:
71:44:d2:62:33:22:6f:03:99:a7:72:f9:eb:64:80:
d6:49:4d:85:ed:3d:1d:00:c8:d1:37:00:ab:ec:11:
6e:e1:42:6f:ab:e2:aa:e9:8d:d0:58:aa:5b:2b:1e:
e6:bc:d2:cd:f6:fe:75:4f:a4:96:86:fb:45:71:8f:
19:d6:90:ec:bb:1e:38:df:c7:d2:b4:ad:ed:b1:b8:
3f:d0:e1:8d:a7:36:06:9d:e4:5b:3e:ea:b3:7d:4b:
16:a4:47:3a:ea:16:77:e0:3a:1f:ba:7f:c3:e2:54:
55:a9:0c:0d:f1:fd:a2:24:fd:ec:69:3d:7a:9c:95:
9c:12:85:e9:c2:82:cd:f4:6b:c5:fc:da:f9:6b:fb:
28:eb:66:ae:47:3b:1a:8e:57:dd:9a:5b:db:4e:4d:
05:5c:40:bf:ae:f2:a4:33:3b:72:bb:3a:9a:94:c5:
66:bb:bb:88:2b:5b:08:b8:86:f1:b9:1f:eb:d7:fd:
a5:72:cf:ce:8f:69:51:13:b8:91:59:1a:9c:28:0e:
62:85:a5:70:36:c4:d5:92:6e:a4:a1:4a:9e:57:e8:
84:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:83:B0:2F:92:CA:91:AC:30:5A:7A:4A:58:5D:EE:C4:2D:BA:78:C9
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/AoOwL5LKkawwWnpKWF3uxC26eMk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.78.26.0/23
Signature Algorithm: sha256WithRSAEncryption
da:00:94:03:0a:87:56:e2:68:e3:01:52:44:72:75:f2:ab:5c:
ae:92:1d:8f:8b:fa:47:5a:c5:0c:89:f2:5a:54:cc:b1:f9:f6:
44:c5:e0:05:8d:bd:d7:b5:24:56:f6:91:b2:dd:b8:f9:a9:68:
fb:b1:b1:6e:86:4d:a3:1d:f5:46:04:8c:0d:8a:02:86:dc:e7:
c3:ca:14:e8:77:45:d2:70:bf:07:08:69:bd:2d:60:70:c5:4a:
43:6c:c3:da:45:c5:f1:5b:87:06:5e:e8:7d:9d:a1:9b:16:72:
05:bf:ce:09:52:a5:7a:0b:44:5e:df:0a:fb:86:74:40:11:32:
fb:56:44:18:1c:e6:54:fb:d8:78:29:63:08:fb:89:59:52:be:
17:44:0b:bd:42:a4:a8:a0:0f:b7:8d:d3:2e:8f:f0:3c:a4:1c:
11:56:e4:a5:65:b7:5a:2f:11:eb:74:04:3d:74:1b:75:a3:7a:
0a:c0:f4:cb:6a:b1:3a:19:3b:e7:aa:22:16:da:40:4f:6e:78:
1f:46:60:80:63:fb:98:8f:24:9d:22:7b:ff:df:a8:71:02:30:
7d:6d:57:b9:ca:47:4a:30:2f:d8:4e:26:97:8c:70:a0:8a:f0:
6a:d3:ba:12:0c:55:52:18:7f:b1:e9:8e:70:ca:07:7d:91:0c:
77:45:2d:e6
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICASIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx
NjMwMTdaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDAyODNCMDJGOTJDQTkx
QUMzMDVBN0E0QTU4NURFRUM0MkRCQTc4QzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC1DFPgawJXmhS+HPr04TZeRiarUo+7NcIrbZpkE0LGW0Vp+aKy
WjPZS63nNXFE0mIzIm8Dmady+etkgNZJTYXtPR0AyNE3AKvsEW7hQm+r4qrpjdBY
qlsrHua80s32/nVPpJaG+0VxjxnWkOy7Hjjfx9K0re2xuD/Q4Y2nNgad5Fs+6rN9
SxakRzrqFnfgOh+6f8PiVFWpDA3x/aIk/expPXqclZwShenCgs30a8X82vlr+yjr
Zq5HOxqOV92aW9tOTQVcQL+u8qQzO3K7OpqUxWa7u4grWwi4hvG5H+vX/aVyz86P
aVETuJFZGpwoDmKFpXA2xNWSbqShSp5X6IShAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUAoOwL5LKkawwWnpKWF3uxC26eMkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L0FvT3dMNUxLa2F3d1ducEtXRjN1eEMyNmVNay5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAEBThowDQYJKoZIhvcNAQELBQADggEBANoAlAMKh1biaOMBUkRydfKrXK6S
HY+L+kdaxQyJ8lpUzLH59kTF4AWNvde1JFb2kbLduPmpaPuxsW6GTaMd9UYEjA2K
Aobc58PKFOh3RdJwvwcIab0tYHDFSkNsw9pFxfFbhwZe6H2doZsWcgW/zglSpXoL
RF7fCvuGdEARMvtWRBgc5lT72HgpYwj7iVlSvhdEC71CpKigD7eN0y6P8DykHBFW
5KVlt1ovEet0BD10G3WjegrA9MtqsToZO+eqIhbaQE9ueB9GYIBj+5iPJJ0ie//f
qHECMH1tV7nKR0owL9hOJpeMcKCK8GrTuhIMVVIYf7HpjnDKB32RDHdFLeY=
-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:32 2024 by rpki-client on console-fra.rpki-client.org