Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GThC1RRM2Tm_a_Aa-ebSToFYXKQ.roa
File: GThC1RRM2Tm_a_Aa-ebSToFYXKQ.roa (raw, json)
Hash identifier: YJ1FJxUtsFeAmPpW8j2y1BC81jMwDn21nDW5Yt9HxUY=
Subject key identifier: 19:38:42:D5:14:4C:D9:39:BF:6B:F0:1A:F9:E6:D2:4E:81:58:5C:A4
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 031D
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GThC1RRM2Tm_a_Aa-ebSToFYXKQ.roa
Signing time: Thu 01 Jun 2023 16:05:35 +0000
ROA not before: Thu 01 Jun 2023 16:05:35 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.52.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:12:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 797 (0x31d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:05:35 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=193842D5144CD939BF6BF01AF9E6D24E81585CA4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:92:db:cf:cf:43:88:3b:a7:9b:4c:e8:55:d9:
12:24:65:65:0c:55:68:03:52:7b:9c:21:4d:6d:1e:
a5:80:ee:79:74:c7:8d:b4:18:2c:55:12:b0:31:73:
9f:95:d5:fb:f9:c8:49:27:12:87:35:08:9f:5f:61:
91:d6:8f:b6:39:7a:df:7a:d9:9d:96:ef:9c:25:d5:
32:38:cd:73:2b:98:23:b0:19:cd:81:6f:94:bd:a2:
57:af:33:6c:05:1f:9e:c3:3a:de:c7:9c:8f:86:e2:
8b:23:9a:d6:9b:6d:2f:3a:8d:08:24:47:a9:7a:bb:
a9:62:71:5a:cd:28:25:76:b6:b1:8b:ab:00:02:6a:
3f:ee:89:f6:15:5f:ca:c2:92:39:52:30:54:ef:05:
b6:d8:b8:f0:10:52:b0:0a:a1:ab:5f:55:ef:f5:28:
5b:c7:8a:cf:2e:c2:97:00:82:08:ba:5d:55:43:1c:
5f:42:f2:1a:71:a8:53:08:5a:8f:97:d4:ba:88:1f:
7d:43:f6:6c:46:a0:4e:b4:09:ba:68:cd:63:de:15:
fb:f6:ec:30:c0:c8:ea:f1:72:87:35:0f:d3:03:dc:
71:d5:00:ef:a5:b7:43:91:6d:2e:c2:f6:ec:e6:ae:
73:15:36:8b:b3:a7:68:b5:f1:0c:c7:e0:3c:76:90:
c8:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:38:42:D5:14:4C:D9:39:BF:6B:F0:1A:F9:E6:D2:4E:81:58:5C:A4
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GThC1RRM2Tm_a_Aa-ebSToFYXKQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.52.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:25:f1:f3:12:e9:e1:f6:46:03:a9:0b:81:a1:52:2f:14:a2:
e7:0d:87:23:ab:89:39:91:b1:f2:4c:58:ee:ba:4b:ff:e9:ec:
80:b4:eb:fd:84:ff:55:1a:5b:f3:bc:92:09:a5:ca:f1:f1:5c:
82:1c:5d:1b:97:19:82:77:3a:88:4b:f9:9d:68:0a:04:94:42:
9a:e9:8c:95:e3:d2:92:14:6a:87:8a:25:3a:4c:03:77:b6:92:
27:2d:b1:70:09:aa:bb:26:60:37:ea:0c:de:7e:c9:29:5f:49:
86:5d:c3:2a:50:a3:d0:f8:a9:4c:d4:55:75:ad:4c:b3:03:b2:
b8:6e:4e:79:49:60:c4:b2:42:4e:d8:b3:29:51:9c:81:37:0e:
bf:e1:08:36:76:94:ab:73:0b:2c:89:e3:82:53:57:9b:40:83:
de:27:c6:2d:6a:86:d1:bf:20:f6:00:6b:1f:0e:f9:18:16:bf:
0a:5a:92:ff:ed:5a:a6:b2:81:d4:b7:97:a5:b0:7a:33:f1:1d:
0b:4f:06:bc:f5:d4:da:d8:bc:e9:69:20:03:75:e7:c0:26:94:
fb:fd:a0:6d:a1:28:9e:b3:89:35:f4:07:1a:06:97:6b:f8:34:
da:17:5f:b1:41:a2:51:94:70:79:9f:e7:6d:a9:a7:05:22:04:
47:30:39:9a
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAx0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx
NjA1MzVaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDE5Mzg0MkQ1MTQ0Q0Q5
MzlCRjZCRjAxQUY5RTZEMjRFODE1ODVDQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCZktvPz0OIO6ebTOhV2RIkZWUMVWgDUnucIU1tHqWA7nl0x420
GCxVErAxc5+V1fv5yEknEoc1CJ9fYZHWj7Y5et962Z2W75wl1TI4zXMrmCOwGc2B
b5S9olevM2wFH57DOt7HnI+G4osjmtabbS86jQgkR6l6u6licVrNKCV2trGLqwAC
aj/uifYVX8rCkjlSMFTvBbbYuPAQUrAKoatfVe/1KFvHis8uwpcAggi6XVVDHF9C
8hpxqFMIWo+X1LqIH31D9mxGoE60CbpozWPeFfv27DDAyOrxcoc1D9MD3HHVAO+l
t0ORbS7C9uzmrnMVNouzp2i18QzH4Dx2kMgLAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUGThC1RRM2Tm/a/Aa+ebSToFYXKQwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L0dUaEMxUlJNMlRtX2FfQWEtZWJTVG9GWVhLUS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAIxYDQwDQYJKoZIhvcNAQELBQADggEBALUl8fMS6eH2RgOpC4GhUi8UoucN
hyOriTmRsfJMWO66S//p7IC06/2E/1UaW/O8kgmlyvHxXIIcXRuXGYJ3OohL+Z1o
CgSUQprpjJXj0pIUaoeKJTpMA3e2kictsXAJqrsmYDfqDN5+ySlfSYZdwypQo9D4
qUzUVXWtTLMDsrhuTnlJYMSyQk7YsylRnIE3Dr/hCDZ2lKtzCyyJ44JTV5tAg94n
xi1qhtG/IPYAax8O+RgWvwpakv/tWqaygdS3l6WwejPxHQtPBrz11NrYvOlpIAN1
58AmlPv9oG2hKJ6ziTX0BxoGl2v4NNoXX7FBolGUcHmf522ppwUiBEcwOZo=
-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:32 2024 by rpki-client on console-fra.rpki-client.org