Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/RVQ8igIvSZCxXOZUoSeIYPNFq4k.roa
File: RVQ8igIvSZCxXOZUoSeIYPNFq4k.roa (raw, json)
Hash identifier: 0kSW+JYQMwXQ4Bia+I04NvX/gRANCKDx0s+w74vOQHw=
Subject key identifier: 45:54:3C:8A:02:2F:49:90:B1:5C:E6:54:A1:27:88:60:F3:45:AB:89
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0571
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RVQ8igIvSZCxXOZUoSeIYPNFq4k.roa
Signing time: Thu 27 Jul 2023 16:58:04 +0000
ROA not before: Thu 27 Jul 2023 16:58:04 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 220.210.16.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:50:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1393 (0x571)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:58:04 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=45543C8A022F4990B15CE654A1278860F345AB89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:96:ca:72:ad:89:83:92:15:07:25:9d:2d:95:
f4:72:c1:5f:f3:d4:c5:45:03:39:b2:d3:6e:06:78:
4c:5f:62:d6:b5:61:d4:61:f5:b1:57:cd:f7:6e:f6:
6a:09:45:de:ac:ce:cf:ed:98:e5:06:5d:9b:32:44:
dc:4f:d7:a4:10:86:3a:ae:78:85:8d:9e:cd:6b:47:
1a:01:9f:3f:74:20:0f:58:d6:c8:d5:49:80:ce:a2:
04:7f:c8:9f:09:40:be:6d:58:e8:4e:83:f7:f5:37:
44:3b:15:36:c9:f4:8f:29:40:7f:3f:2b:17:99:a4:
bb:ad:02:2f:d7:92:7c:b4:60:64:d6:df:20:ce:73:
e9:6b:6b:3d:f2:ce:67:52:30:10:c4:a6:8c:2d:ec:
25:78:aa:bc:7e:04:d9:14:6e:07:ae:1a:88:82:3f:
d1:ad:0f:aa:51:b9:f0:bf:43:8c:59:93:a7:5e:7a:
ba:45:02:f2:23:42:52:f3:f0:3b:ae:31:9d:40:6e:
6d:98:ab:2d:06:24:5f:c1:99:9a:7e:f2:a0:cd:a4:
f5:34:61:92:54:79:c6:5f:b2:e3:30:26:72:d0:3b:
20:c4:c6:a1:b0:fd:02:98:bb:f5:d0:5b:cb:28:dd:
e0:20:b8:1d:90:27:44:23:98:d7:8c:b6:7e:2b:f7:
9d:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:54:3C:8A:02:2F:49:90:B1:5C:E6:54:A1:27:88:60:F3:45:AB:89
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/RVQ8igIvSZCxXOZUoSeIYPNFq4k.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.16.0/23
Signature Algorithm: sha256WithRSAEncryption
58:22:0e:ea:d0:95:14:27:4f:1a:18:dc:e5:33:d8:fe:6f:ea:
83:3e:79:9b:bc:52:aa:de:5e:e6:b1:f0:2f:6f:65:ff:03:b5:
31:a6:fc:86:5c:58:8c:f5:d6:7c:97:bf:a2:da:b2:c9:61:3e:
eb:68:78:80:33:0d:40:0e:e4:41:ce:be:16:b8:88:e9:bf:cf:
15:f0:8b:86:bf:c0:74:7f:f0:cc:ec:49:51:24:8f:f1:12:20:
82:06:c8:ec:dc:53:59:9d:04:85:49:76:a4:06:8e:41:df:0a:
44:b7:33:f6:65:b6:88:87:93:90:70:9f:1b:d7:af:20:6d:fc:
6e:e8:37:d0:24:1d:d0:6a:83:7b:21:ec:fe:87:63:c4:ad:cd:
5f:58:06:59:d2:45:3b:11:c6:bd:a9:02:a9:6f:9b:81:ff:54:
31:40:77:ed:49:6c:46:14:d4:9e:9c:de:ca:1e:39:27:23:25:
f7:0a:03:88:ba:6f:5a:2b:b5:40:e2:f3:ba:50:0d:46:04:98:
7e:cf:1f:1a:26:8a:d8:e3:a5:9e:d4:0f:f7:b3:fd:3e:bb:c0:
10:d7:bc:64:39:b2:b2:ef:df:eb:5d:02:91:2e:19:21:0b:09:
a8:ec:10:32:70:3f:7d:03:bc:dd:54:82:08:e1:d9:ad:4a:11:
27:b3:86:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 04:02:47 2024 by rpki-client on console-ams.rpki-client.org