Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GLiiG2N67GysPyDJNkKwVegEwy0.roa
File: GLiiG2N67GysPyDJNkKwVegEwy0.roa (raw, json)
Hash identifier: ZCc9YBlCnqTOmwQAFowlolobsuia0DHlNjKrC2KGRdQ=
Subject key identifier: 18:B8:A2:1B:63:7A:EC:6C:AC:3F:20:C9:36:42:B0:55:E8:04:C3:2D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 06AF
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GLiiG2N67GysPyDJNkKwVegEwy0.roa
Signing time: Tue 30 Apr 2024 01:43:21 +0000
ROA not before: Tue 30 Apr 2024 01:43:21 +0000
ROA not after: Tue 15 Apr 2025 01:30:02 +0000
asID: 9605
IP address blocks: 110.163.160.0/22 maxlen: 22
Validation: Failed, certificate revoked on Mon 20 Jan 2025 11:11:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1711 (0x6af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Apr 30 01:43:21 2024 GMT
Not After : Apr 15 01:30:02 2025 GMT
Subject: CN=18B8A21B637AEC6CAC3F20C93642B055E804C32D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:67:03:8c:97:26:6b:13:a1:7b:9e:bc:54:91:
2c:0e:95:b8:9d:a6:c4:09:7f:43:ba:29:2b:a7:6d:
d0:0f:2f:23:5c:98:9c:03:f1:9b:e3:c3:89:21:bf:
dc:7c:be:82:d9:41:ff:b6:91:ce:4f:44:b6:2c:e6:
fd:3b:4a:3e:1e:35:06:7e:b3:d7:11:fb:9b:0b:07:
5e:e9:2b:e1:e4:69:d5:76:2f:07:1e:47:23:73:32:
f0:43:03:4f:47:ed:21:a4:a1:fe:67:e8:2b:c5:16:
71:c1:28:d5:2b:20:81:fe:e5:72:c7:65:ff:bc:66:
36:fb:30:00:55:55:85:6d:11:98:c8:21:41:21:75:
d0:d1:3b:f9:66:02:4c:68:2c:b6:e8:be:c5:6e:b3:
0b:40:c3:a2:cd:2e:08:e3:8b:04:0f:69:49:22:c6:
3a:62:78:75:dc:9b:c8:2f:b9:03:d3:bf:45:bb:47:
bb:44:be:3b:e6:b2:4d:32:f6:29:df:9f:56:46:84:
ea:0f:ff:40:b0:f5:4a:27:00:95:f0:09:18:96:39:
e6:c8:ab:1a:05:f9:db:53:d2:d5:f5:6d:a5:ff:89:
cd:28:78:89:c9:ee:73:56:c7:b0:1d:f9:f7:18:94:
ae:c8:e9:3f:1a:b6:6f:4a:b7:2a:0b:b8:3c:5e:3e:
9d:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:B8:A2:1B:63:7A:EC:6C:AC:3F:20:C9:36:42:B0:55:E8:04:C3:2D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GLiiG2N67GysPyDJNkKwVegEwy0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
110.163.160.0/22
Signature Algorithm: sha256WithRSAEncryption
b3:e6:ad:58:99:31:fe:43:1d:c3:cc:ce:50:04:c5:7c:71:5b:
c8:6f:37:f8:a5:5f:62:09:5f:23:80:27:2b:49:36:d5:ba:23:
3f:ed:ed:47:d8:7f:f7:6c:80:ec:34:4e:32:bd:59:32:5b:09:
3a:dd:27:fe:b6:d9:88:52:b0:a8:bd:c4:b7:dc:3b:4a:ac:9c:
87:d9:90:6c:47:b8:32:6c:86:7b:11:11:4f:97:4c:11:18:d2:
87:8e:95:1d:11:77:be:9c:10:d3:63:07:f9:b2:99:49:54:a4:
7d:5f:d6:4f:f3:ad:d2:20:d0:67:60:33:8d:a1:25:bf:ce:a8:
4e:27:64:5b:fe:1c:f5:98:05:22:36:f3:b1:b4:ba:1c:86:13:
9d:b2:e0:70:1d:78:f3:ac:c5:4c:4f:12:74:8f:6e:8e:3e:6b:
2a:eb:38:a4:8b:82:fa:18:da:bd:ff:ad:04:19:48:17:1c:44:
bc:3b:19:03:96:c2:1e:65:7d:67:8d:39:c2:3a:20:6c:c2:9c:
1d:d0:70:fe:f7:db:79:a0:90:90:70:59:da:52:21:c0:0c:97:
53:9e:17:79:8c:ab:e6:af:29:d2:ad:09:38:62:ea:8e:6c:e5:
b0:5b:9d:1d:79:50:df:cb:a7:e8:5c:84:5b:69:6c:04:14:e6:
ea:53:1d:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:30:03 2025 by rpki-client