Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NN8gFxladou-_iaoFVjj4K8qR8s.roa
File: NN8gFxladou-_iaoFVjj4K8qR8s.roa (raw, json)
Hash identifier: G9bJTI0K679qUvMfNimFXVi6EavNLk0lOD3ecpgOTiA=
Subject key identifier: 34:DF:20:17:19:5A:76:8B:BE:FE:26:A8:15:58:E3:E0:AF:2A:47:CB
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02A1
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NN8gFxladou-_iaoFVjj4K8qR8s.roa
Signing time: Tue 30 May 2023 16:36:35 +0000
ROA not before: Tue 30 May 2023 16:36:35 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.108.0.0/17 maxlen: 17
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:28:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 673 (0x2a1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:36:35 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=34DF2017195A768BBEFE26A81558E3E0AF2A47CB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:fa:9e:c7:d0:16:c9:d8:9f:61:d4:0e:e3:35:
fa:63:58:e3:48:4f:a7:ef:db:e8:15:4c:18:4c:b9:
e8:1c:ed:07:39:40:bc:ab:bb:1b:40:65:66:83:6d:
80:d5:66:6a:af:20:59:f6:6f:50:e6:26:ee:09:05:
a9:da:0a:62:f1:0c:84:60:6c:c4:e6:ee:52:bc:94:
3e:7f:3e:b9:e9:cc:83:3c:ce:30:55:5d:0c:8c:22:
2d:68:1d:e5:e4:3a:1c:1d:18:7a:eb:ea:f6:aa:b2:
43:df:03:a8:05:b5:14:ae:1e:cc:b4:b8:27:3e:64:
7e:0b:15:01:6e:e2:04:07:59:20:35:f2:6e:8e:6e:
de:ab:bc:cd:68:19:28:84:5c:ac:e0:b5:7c:ab:05:
ad:ee:e7:26:24:a2:c3:de:c8:16:2a:94:be:df:0f:
c7:ca:c6:4d:aa:7c:41:ff:b0:e4:54:ae:b0:6f:06:
2d:00:45:b2:6a:d1:a2:e7:a0:71:a4:4b:f0:db:ae:
f3:06:b5:11:84:cd:1c:26:70:89:67:90:56:6f:17:
db:53:15:bd:63:0f:67:32:6c:3b:ef:ab:11:54:95:
8e:7c:45:aa:80:07:dc:f4:14:b5:11:af:6b:4d:c0:
f0:8a:1d:2d:a0:8c:95:cf:04:90:e6:b6:ae:2f:97:
2f:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:DF:20:17:19:5A:76:8B:BE:FE:26:A8:15:58:E3:E0:AF:2A:47:CB
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NN8gFxladou-_iaoFVjj4K8qR8s.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.108.0.0/17
Signature Algorithm: sha256WithRSAEncryption
9c:93:44:4f:ef:fc:74:ac:61:85:07:e4:19:f1:8a:ef:ab:8b:
8b:1c:a1:ba:6d:0b:26:a5:40:ef:22:c9:e9:5a:20:f8:88:6f:
66:dd:6b:9a:11:5c:31:a7:6f:81:85:0d:ee:f0:02:5b:47:b0:
29:af:99:7d:cf:21:73:40:24:44:38:4b:e2:da:c0:56:cb:fe:
b1:45:64:5b:2c:0e:38:2d:c5:72:53:39:13:c9:02:d6:a9:75:
f6:40:e2:70:43:46:25:9a:fe:91:9e:2a:9d:0b:30:05:10:a2:
b0:73:1b:b2:d6:d5:75:25:81:6c:8f:92:cf:0f:97:8d:b2:c1:
c8:85:da:7a:43:f9:40:a9:4d:92:d3:d6:ae:72:18:bb:cd:90:
28:bd:f6:1f:65:6b:29:c1:f0:d2:80:25:81:ef:d8:e8:51:0e:
b7:e7:85:74:8f:9f:5a:b0:59:38:15:72:1e:50:46:c3:58:2d:
c2:bb:3f:2a:1a:4e:b9:92:7e:f5:57:c8:c3:f9:05:bd:f8:9d:
7f:7f:4c:af:c0:0c:11:2a:62:9b:36:01:5b:4c:e1:f1:c0:16:
7a:57:92:91:79:8f:ee:cb:81:0a:77:61:e4:8b:90:e4:24:8c:
da:a7:8c:7b:f8:a2:d1:4c:f9:68:da:fb:b7:27:8e:0b:31:73:
9f:69:4d:94
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAqEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MzAx
NjM2MzVaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDM0REYyMDE3MTk1QTc2
OEJCRUZFMjZBODE1NThFM0UwQUYyQTQ3Q0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCo+p7H0BbJ2J9h1A7jNfpjWONIT6fv2+gVTBhMuegc7Qc5QLyr
uxtAZWaDbYDVZmqvIFn2b1DmJu4JBanaCmLxDIRgbMTm7lK8lD5/PrnpzIM8zjBV
XQyMIi1oHeXkOhwdGHrr6vaqskPfA6gFtRSuHsy0uCc+ZH4LFQFu4gQHWSA18m6O
bt6rvM1oGSiEXKzgtXyrBa3u5yYkosPeyBYqlL7fD8fKxk2qfEH/sORUrrBvBi0A
RbJq0aLnoHGkS/DbrvMGtRGEzRwmcIlnkFZvF9tTFb1jD2cybDvvqxFUlY58RaqA
B9z0FLURr2tNwPCKHS2gjJXPBJDmtq4vly9ZAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUNN8gFxladou+/iaoFVjj4K8qR8swHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L05OOGdGeGxhZG91LV9pYW9GVmpqNEs4cVI4cy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAcxbAAwDQYJKoZIhvcNAQELBQADggEBAJyTRE/v/HSsYYUH5Bnxiu+ri4sc
obptCyalQO8iyelaIPiIb2bda5oRXDGnb4GFDe7wAltHsCmvmX3PIXNAJEQ4S+La
wFbL/rFFZFssDjgtxXJTORPJAtapdfZA4nBDRiWa/pGeKp0LMAUQorBzG7LW1XUl
gWyPks8Pl42ywciF2npD+UCpTZLT1q5yGLvNkCi99h9laynB8NKAJYHv2OhRDrfn
hXSPn1qwWTgVch5QRsNYLcK7PyoaTrmSfvVXyMP5Bb34nX9/TK/ADBEqYps2AVtM
4fHAFnpXkpF5j+7LgQp3YeSLkOQkjNqnjHv4otFM+Wja+7cnjgsxc59pTZQ=
-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:33 2024 by rpki-client on console-fra.rpki-client.org