Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/NWvREIPUp7-eeIooivBJCGGHXdc.roa
File: NWvREIPUp7-eeIooivBJCGGHXdc.roa (raw, json)
Hash identifier: ZvrRmi4imSu1iAjsSHqb/kvRnFxgygQ4blvjHeh527Y=
Subject key identifier: 35:6B:D1:10:83:D4:A7:BF:9E:78:8A:28:8A:F0:49:08:61:87:5D:D7
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 04D8
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NWvREIPUp7-eeIooivBJCGGHXdc.roa
Signing time: Thu 27 Jul 2023 16:50:05 +0000
ROA not before: Thu 27 Jul 2023 16:50:05 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 220.210.66.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:40:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1240 (0x4d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:50:05 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=356BD11083D4A7BF9E788A288AF0490861875DD7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:6a:d5:bf:08:8f:39:a2:60:38:ff:0f:de:f5:
c4:62:b0:28:f6:72:0c:f5:21:f0:9f:fb:27:43:d1:
7c:0e:63:9b:83:da:a9:79:a3:d3:02:88:c1:4b:8d:
be:ad:fb:10:45:76:d5:6e:5b:ad:fa:c8:fd:33:1e:
03:18:97:f4:03:02:4d:40:4c:67:f1:4c:6c:e6:41:
85:5f:07:4a:25:8b:06:5c:27:66:c8:b4:f0:f1:89:
34:33:4f:e6:60:d8:42:fe:ca:b8:25:10:bd:b3:15:
cf:49:95:6c:a4:b3:a5:3e:2b:42:ff:48:85:37:9d:
2f:31:0c:4c:3b:7b:19:e0:8e:78:80:d7:23:12:4c:
a0:ae:48:9f:12:a2:4c:fc:98:ce:45:17:22:7f:b6:
ba:d9:7d:5f:73:c4:be:ce:f2:d9:85:d0:9d:eb:75:
99:be:77:af:30:41:65:18:93:92:5d:19:ce:80:0a:
26:e6:32:1f:3d:98:e5:78:d0:c9:b7:d1:fc:c4:37:
db:15:66:8a:c3:32:ca:27:69:be:e1:45:03:a1:af:
e6:c7:75:0f:1d:91:f7:fe:61:bb:0f:3c:56:3a:4c:
b2:42:2e:e3:4d:2e:aa:55:c2:d1:ce:e5:72:29:9a:
c3:e4:79:27:b7:2a:08:52:67:8a:f8:c6:84:51:2d:
ec:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:6B:D1:10:83:D4:A7:BF:9E:78:8A:28:8A:F0:49:08:61:87:5D:D7
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/NWvREIPUp7-eeIooivBJCGGHXdc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.66.0/23
Signature Algorithm: sha256WithRSAEncryption
92:03:c5:94:95:ab:a5:f7:a0:1a:73:e1:26:7b:c0:8b:30:50:
89:ed:1d:80:ab:6e:4e:61:e1:02:0d:13:d5:a1:f2:66:f9:c1:
ef:d9:10:6e:b5:9f:6e:c7:11:d3:73:9b:cb:a9:5e:28:53:1c:
60:74:58:64:a5:d7:a7:8e:32:70:57:5c:e4:c3:50:af:5f:dd:
9d:60:4b:1f:08:7e:72:f8:35:05:ee:88:1b:a0:d4:2e:2c:93:
8a:a2:00:a0:4a:c0:fe:38:b9:50:51:05:fa:c2:2e:50:a2:e4:
18:62:c0:0d:b7:a8:66:40:85:6b:b3:c3:2a:56:a0:17:ee:b9:
bf:3f:46:17:96:0c:d3:a4:74:ce:27:8f:04:88:ee:12:32:a0:
9f:58:0a:b4:52:90:9a:f9:32:5f:b5:aa:61:0e:d0:93:d2:13:
cb:0a:8b:07:a8:96:7f:60:97:53:14:64:c5:97:bd:e9:72:65:
96:a3:73:ac:c6:ee:cb:06:8c:25:43:ce:10:25:25:12:12:45:
2a:c6:be:d6:9e:30:c6:e6:44:1d:a7:78:fe:2f:7b:c2:c3:36:
d7:6d:20:1f:b4:f0:fc:e1:72:3b:59:6d:2f:35:f7:0a:85:4e:
0e:56:8a:16:e7:3b:de:3d:ea:e7:91:02:6c:86:b0:4b:e3:cf:
46:a1:f7:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 03:11:26 2024 by rpki-client on console-fra.rpki-client.org