Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/N9S9b3RUj8QBPt4HD_u5RR1hDhE.roa
File: N9S9b3RUj8QBPt4HD_u5RR1hDhE.roa (raw, json)
Hash identifier: FoylxScSv6vlx0Z/hR2BmpokX21WlPPoX9GszewfXvg=
Subject key identifier: 37:D4:BD:6F:74:54:8F:C4:01:3E:DE:07:0F:FB:B9:45:1D:61:0E:11
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05BA
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/N9S9b3RUj8QBPt4HD_u5RR1hDhE.roa
Signing time: Tue 22 Aug 2023 05:29:30 +0000
ROA not before: Tue 22 Aug 2023 05:29:30 +0000
ROA not after: Wed 14 Aug 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.109.16.0/20 maxlen: 20
Validation: Failed, certificate revoked on Wed 31 Jul 2024 01:28:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1466 (0x5ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Aug 22 05:29:30 2023 GMT
Not After : Aug 14 01:30:02 2024 GMT
Subject: CN=37D4BD6F74548FC4013EDE070FFBB9451D610E11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:92:89:0b:02:5f:8e:1b:69:18:35:f3:e8:72:
5e:f7:99:40:08:18:b4:56:bd:47:17:72:5b:c6:8c:
af:7e:8b:3e:6a:be:8a:86:27:f6:79:2c:b8:89:7e:
c8:c7:58:55:6e:1e:af:53:91:b7:ae:b7:f5:34:fe:
f3:b3:18:26:6a:43:8c:89:73:52:a3:db:89:27:1d:
47:91:3e:14:12:98:24:9a:dd:13:08:47:f1:2a:62:
5d:f6:92:f8:58:05:30:f7:41:a9:fb:a2:bc:8c:33:
8b:79:ce:a8:6c:d2:b9:c1:34:37:a9:16:4b:30:41:
cf:31:46:ba:48:73:65:1e:ea:49:bf:f6:66:46:78:
f7:de:5d:8b:86:1a:3d:90:9b:c5:d5:6c:a2:b5:01:
6c:f4:d6:a3:11:db:76:1c:b0:b1:d3:d2:7c:c5:d5:
b0:04:ee:e6:83:d3:bb:33:16:19:53:ae:e9:48:3d:
36:e4:37:e8:90:ed:48:4a:d3:17:bb:9a:7a:ba:08:
dc:f0:65:6b:b0:80:2c:65:5b:e4:81:e5:b1:c5:44:
e5:4a:79:a6:30:de:67:60:d8:a1:c0:14:02:07:08:
27:65:30:8b:ef:48:3c:99:8b:28:20:65:67:b0:5e:
e4:ce:ff:1a:8a:04:87:eb:fe:84:6f:57:df:f7:35:
af:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:D4:BD:6F:74:54:8F:C4:01:3E:DE:07:0F:FB:B9:45:1D:61:0E:11
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/N9S9b3RUj8QBPt4HD_u5RR1hDhE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.109.16.0/20
Signature Algorithm: sha256WithRSAEncryption
a5:44:7e:7f:dc:44:7b:e5:9c:88:e5:77:1c:5c:1d:c2:2b:99:
b9:dd:17:76:22:75:73:65:25:8e:ef:47:16:76:28:03:69:6c:
55:d2:4f:77:87:1e:d8:2a:14:10:2a:4e:b0:d2:f2:0a:ce:88:
24:5b:7f:7e:a1:0d:4e:b8:84:fe:f1:d7:aa:25:b0:44:fa:4a:
66:d5:af:80:b0:f6:47:dd:1f:0b:0a:47:97:e5:fa:c1:22:97:
5b:e0:61:4f:3e:f5:98:2f:a8:d6:2d:76:86:14:29:57:8f:c5:
ef:28:ac:c9:85:f3:31:18:da:74:02:82:4c:6c:ab:30:22:90:
71:60:a9:da:37:48:d9:17:0e:4b:a0:16:28:9b:4c:b8:99:75:
8f:d5:c4:57:f1:56:79:b2:ff:b7:24:5d:98:be:61:df:d4:6b:
64:d0:3a:11:60:fa:4f:8e:97:6f:59:52:58:d3:37:a8:66:24:
7a:ce:95:ca:e3:b9:42:4c:e9:7e:26:ad:75:f6:04:84:38:ec:
a5:0b:1e:01:c6:f8:b6:5d:7c:67:ce:62:ae:1d:1b:7b:12:77:
eb:76:6c:ad:3b:ba:c8:61:de:2c:d1:8c:7f:d0:5c:ed:0d:74:
a9:f8:51:8d:49:9d:10:09:50:3d:a9:8a:d1:6d:67:34:a9:5b:
ec:21:90:c0
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBbowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA4MjIw
NTI5MzBaFw0yNDA4MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDM3RDRCRDZGNzQ1NDhG
QzQwMTNFREUwNzBGRkJCOTQ1MUQ2MTBFMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDIkokLAl+OG2kYNfPocl73mUAIGLRWvUcXclvGjK9+iz5qvoqG
J/Z5LLiJfsjHWFVuHq9Tkbeut/U0/vOzGCZqQ4yJc1Kj24knHUeRPhQSmCSa3RMI
R/EqYl32kvhYBTD3Qan7oryMM4t5zqhs0rnBNDepFkswQc8xRrpIc2Ue6km/9mZG
ePfeXYuGGj2Qm8XVbKK1AWz01qMR23YcsLHT0nzF1bAE7uaD07szFhlTrulIPTbk
N+iQ7UhK0xe7mnq6CNzwZWuwgCxlW+SB5bHFROVKeaYw3mdg2KHAFAIHCCdlMIvv
SDyZiyggZWewXuTO/xqKBIfr/oRvV9/3Na9TAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUN9S9b3RUj8QBPt4HD/u5RR1hDhEwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L045UzliM1JVajhRQlB0NEhEX3U1UlIxaERoRS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAQxbRAwDQYJKoZIhvcNAQELBQADggEBAKVEfn/cRHvlnIjldxxcHcIrmbnd
F3YidXNlJY7vRxZ2KANpbFXST3eHHtgqFBAqTrDS8grOiCRbf36hDU64hP7x16ol
sET6SmbVr4Cw9kfdHwsKR5fl+sEil1vgYU8+9ZgvqNYtdoYUKVePxe8orMmF8zEY
2nQCgkxsqzAikHFgqdo3SNkXDkugFiibTLiZdY/VxFfxVnmy/7ckXZi+Yd/Ua2TQ
OhFg+k+Ol29ZUljTN6hmJHrOlcrjuUJM6X4mrXX2BIQ47KULHgHG+LZdfGfOYq4d
G3sSd+t2bK07ushh3izRjH/QXO0NdKn4UY1JnRAJUD2pitFtZzSpW+whkMA=
-----END CERTIFICATE-----
Generated at Wed Jul 31 03:15:26 2024 by rpki-client on console-fra.rpki-client.org