Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/HcfpGp_oXSUemDPXgg05xdJIOJw.roa
File: HcfpGp_oXSUemDPXgg05xdJIOJw.roa (raw, json)
Hash identifier: qqhldc7bQnGRmMcqSiEx6l5Z23wWoy1YaOZzd5j/ysA=
Subject key identifier: 1D:C7:E9:1A:9F:E8:5D:25:1E:98:33:D7:82:0D:39:C5:D2:48:38:9C
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 01DA
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HcfpGp_oXSUemDPXgg05xdJIOJw.roa
Signing time: Wed 24 May 2023 16:40:37 +0000
ROA not before: Wed 24 May 2023 16:40:37 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.75.208.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 30 Apr 2024 01:43:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 474 (0x1da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:40:37 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=1DC7E91A9FE85D251E9833D7820D39C5D248389C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:ba:c0:7c:ab:bf:c4:e8:c3:ab:6c:d0:81:10:
63:b1:c5:ee:6e:ef:f1:41:86:31:35:2a:aa:7d:0a:
fe:2e:bb:c1:35:84:6f:16:0b:ba:c0:b6:78:96:64:
39:28:28:41:28:9a:da:d9:38:60:06:0a:f3:08:70:
86:af:62:3a:f6:ca:b0:fa:cd:65:d6:3d:71:4c:4c:
a4:aa:c4:a2:3e:d0:f3:e2:7d:f6:6c:9d:80:27:f6:
bd:ac:30:1e:2d:84:aa:8d:2b:7f:77:08:42:65:22:
2e:08:9e:07:24:28:75:be:df:34:0b:be:fa:09:6f:
ba:02:90:c3:2f:de:b0:00:5f:de:45:31:13:d6:7c:
38:5f:36:79:34:28:f3:04:d1:af:07:aa:95:d2:01:
3e:0d:85:39:e5:5c:f7:f0:93:0c:27:b8:e0:48:e5:
f5:e2:96:54:56:57:1f:88:2d:20:24:85:6f:46:9e:
72:9c:d8:e5:86:81:54:5b:12:4d:0e:70:96:01:7b:
78:6c:6b:b0:2a:35:84:a3:4a:d5:44:5e:99:5c:f9:
ee:48:43:c1:7e:c2:3c:de:81:12:a5:3d:5b:3f:29:
0a:8e:f2:a1:a1:35:93:cd:ed:ad:78:4c:5d:6c:e9:
48:92:98:40:5b:5a:17:d4:92:7a:f5:6e:49:26:00:
4b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:C7:E9:1A:9F:E8:5D:25:1E:98:33:D7:82:0D:39:C5:D2:48:38:9C
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HcfpGp_oXSUemDPXgg05xdJIOJw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.75.208.0/22
Signature Algorithm: sha256WithRSAEncryption
90:57:b3:91:15:05:32:63:22:ef:7c:ae:7b:75:d2:20:88:80:
5b:8f:58:2d:af:2e:15:f1:eb:9e:52:96:f3:20:c8:dd:0d:50:
5d:96:c8:c0:9f:07:a0:c2:33:92:ae:b2:f8:26:82:d2:05:89:
b6:be:58:99:06:dc:b5:83:34:ea:fd:b7:5e:b0:a4:73:da:9b:
58:34:92:1a:c1:bb:8f:8f:37:35:87:c9:58:ab:a4:76:95:05:
9e:2a:5a:80:f6:4f:f0:c1:2f:d8:18:f7:c9:cd:ee:f6:f6:b3:
53:c6:ee:72:fe:24:26:06:e5:ff:22:c0:9c:c3:c0:38:d8:62:
56:fb:a0:b0:17:fc:6c:5e:70:87:30:d7:48:4d:f3:05:37:d0:
78:dc:de:b6:9f:15:ec:65:52:5a:22:45:e2:77:8e:15:5b:e6:
46:6e:ab:d3:fb:a8:81:b0:53:55:cd:92:12:7b:4a:dc:7c:a7:
ba:81:d7:21:96:7f:f9:d2:2e:86:c7:15:e5:41:58:9d:ff:d8:
a5:0e:cf:80:62:01:0b:c0:02:f9:a6:84:09:54:11:ef:04:0a:
c8:c2:d6:93:23:5d:38:6b:07:64:6c:59:01:6e:29:7a:66:10:
f5:fa:6f:a0:ab:b8:17:49:e5:cc:6d:b3:e1:37:2f:94:f2:3a:
3b:aa:d2:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:32 2024 by rpki-client on console-fra.rpki-client.org