Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QRwBfoayXI216iEJ8aOUYQpMQIc.roa
File: QRwBfoayXI216iEJ8aOUYQpMQIc.roa (raw, json)
Hash identifier: uJvOIiWcb/B7z2YjBYNIKIJp6Oi2K9OfKyp0gKguy10=
Subject key identifier: 41:1C:01:7E:86:B2:5C:8D:B5:EA:21:09:F1:A3:94:61:0A:4C:40:87
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 03C3
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QRwBfoayXI216iEJ8aOUYQpMQIc.roa
Signing time: Tue 06 Jun 2023 16:02:57 +0000
ROA not before: Tue 06 Jun 2023 16:02:57 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.159.236.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 01:34:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 963 (0x3c3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 6 16:02:57 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=411C017E86B25C8DB5EA2109F1A394610A4C4087
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:72:e8:27:bd:88:b8:60:4a:17:af:59:2c:d3:
42:72:a8:26:7e:68:7b:d6:82:87:7e:50:ca:df:bc:
ec:29:68:0f:20:6e:05:0b:e0:23:80:b6:d9:8d:5f:
38:27:a2:3f:df:1d:e7:80:15:5a:fe:9d:a8:ed:91:
28:db:c1:84:4c:2e:dd:53:e5:d4:3c:1d:a3:6a:29:
ea:30:51:62:bf:5b:04:f1:b1:db:6a:0b:9c:51:df:
f6:5a:4d:62:db:8f:a8:e7:c9:35:4d:92:a7:81:e3:
da:b3:f2:97:46:d5:d6:2f:45:fa:e2:4e:be:76:a0:
76:33:96:be:a8:cb:88:c3:26:a7:67:b8:e7:94:12:
e2:62:77:43:e1:60:74:86:a5:e7:7f:4a:34:02:f5:
e8:24:c5:7f:70:5e:08:9d:28:74:ca:2c:34:cd:43:
86:c3:10:e6:e3:b6:5b:98:32:a2:53:22:3e:8e:67:
d2:81:8c:4b:e2:6f:71:9e:e3:33:e8:af:bb:70:84:
fc:39:a8:b3:76:2d:38:e2:b6:7e:43:d9:69:50:85:
99:20:8c:a2:a3:48:ec:3a:68:94:b0:22:21:e3:66:
b8:10:20:24:2c:4b:db:ff:62:97:fc:1c:fc:a0:e7:
95:99:9e:93:52:aa:54:11:29:e3:43:74:8f:ca:fe:
f7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:1C:01:7E:86:B2:5C:8D:B5:EA:21:09:F1:A3:94:61:0A:4C:40:87
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QRwBfoayXI216iEJ8aOUYQpMQIc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.159.236.0/24
Signature Algorithm: sha256WithRSAEncryption
24:ac:96:a6:4c:fe:21:1f:be:bf:d5:b4:65:86:21:2f:d1:10:
2f:b7:12:f8:41:86:54:6b:5e:0a:f9:24:05:d4:03:c2:5e:b0:
6e:1a:8c:dd:ba:fe:f8:95:b1:ec:cb:55:d5:72:67:d3:98:85:
bb:18:29:89:ef:a7:ca:7f:46:2e:4b:0f:3d:db:2c:85:de:d3:
85:2c:74:a4:af:6c:55:1d:25:a3:8a:e8:76:f7:ef:7b:62:4b:
c7:3d:a6:e8:b4:22:02:f8:4f:19:d0:9c:45:19:45:81:36:a0:
12:24:2c:c8:a2:32:48:2c:dc:f7:11:d1:6d:af:23:00:a5:a9:
0c:5a:02:38:12:e9:3c:9b:fb:fa:9a:6e:f2:0c:c6:9a:5a:f8:
a3:51:d0:76:c5:93:36:bc:40:76:88:e6:09:72:d6:80:a9:63:
51:90:fd:0e:68:ee:2b:6d:57:42:cc:72:4c:8f:e5:c5:6d:de:
7e:27:fc:ab:db:9e:26:19:27:b8:a2:94:4a:33:7a:2f:2d:6c:
c0:cb:3d:c5:20:48:9c:92:ee:78:97:5d:b3:66:d1:7e:e1:2e:
1c:dc:36:83:10:f3:2a:d1:b3:c2:1f:d4:8c:bd:5c:98:a6:e7:
3e:24:d6:cf:f5:c9:39:0e:86:ee:68:d6:79:a5:fa:1f:80:57:
76:4e:fe:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:33 2024 by rpki-client on console-fra.rpki-client.org