Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/S56k9GNAEZNLsQ4a-wL1_MD3Jy8.roa
File: S56k9GNAEZNLsQ4a-wL1_MD3Jy8.roa (raw, json)
Hash identifier: eTK+LoJYnLMDJQW2XekHY2OXuVLgs/1YYbANFLj+xx0=
Subject key identifier: 4B:9E:A4:F4:63:40:11:93:4B:B1:0E:1A:FB:02:F5:FC:C0:F7:27:2F
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0487
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/S56k9GNAEZNLsQ4a-wL1_MD3Jy8.roa
Signing time: Thu 27 Jul 2023 16:44:13 +0000
ROA not before: Thu 27 Jul 2023 16:44:13 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 1.66.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:36:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1159 (0x487)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:44:13 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=4B9EA4F4634011934BB10E1AFB02F5FCC0F7272F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:ea:b5:c7:32:59:f5:f1:21:cf:48:c0:e2:51:
0f:64:03:eb:8f:37:15:54:ab:cc:d2:75:be:8b:4e:
61:72:00:4a:78:7e:5d:02:5c:25:64:7e:e8:d7:00:
d7:0f:42:d3:82:38:8a:4d:a5:5e:bc:0b:f4:de:49:
24:45:24:6d:75:fe:ac:8a:fa:7c:e4:78:72:0c:1b:
e7:fb:0e:7a:e5:6c:76:c4:4e:a6:df:c7:b1:01:1e:
04:9d:d8:ec:e6:94:ba:3c:05:1d:05:9a:c4:11:e5:
42:92:4a:07:8c:10:2a:50:3b:1c:6f:4a:c0:c9:d5:
b4:49:63:f1:95:e6:e4:b5:52:44:69:8c:39:74:25:
49:a5:ef:0e:59:57:05:7a:b4:a8:e5:01:22:03:a6:
a1:39:5c:d1:b3:79:18:14:c7:f4:87:fe:7a:4c:71:
8b:ef:ad:10:c2:19:ea:7c:c2:23:70:e8:fd:67:42:
5d:ae:76:d6:c8:b2:33:c7:aa:63:9e:65:b9:c2:f5:
0b:df:3c:e1:be:db:fe:d0:50:c4:86:ac:ad:bc:e1:
fe:43:24:99:83:b4:79:37:4c:50:da:0c:6d:ab:f9:
bc:a4:6f:4b:1f:4a:39:59:0c:5f:06:b0:de:7a:d6:
0a:5f:98:2f:d8:22:0d:54:a5:d2:4d:43:72:54:9d:
fa:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:9E:A4:F4:63:40:11:93:4B:B1:0E:1A:FB:02:F5:FC:C0:F7:27:2F
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/S56k9GNAEZNLsQ4a-wL1_MD3Jy8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.66.107.0/24
Signature Algorithm: sha256WithRSAEncryption
da:19:44:75:97:e5:6b:e8:17:8e:06:6a:0f:04:62:0c:d2:a0:
bd:0c:07:20:80:df:f2:d9:e3:d0:a7:c1:5c:7b:63:1a:2b:cb:
a9:90:91:68:fd:72:b6:e4:6d:03:a8:05:06:12:ae:b0:ba:78:
f4:47:8f:03:b1:da:d0:73:fe:73:2a:67:05:12:a9:e1:2c:e9:
a4:ab:db:3c:c6:1a:bc:db:9a:37:8a:6f:d3:8f:5f:aa:9c:6a:
96:62:fe:e3:ba:2e:2e:62:06:59:5a:68:40:4d:87:8a:e4:4a:
d2:f8:66:98:5b:ec:2c:27:4b:b2:5b:77:2d:dc:f9:1c:67:96:
0e:77:09:dd:6a:20:0c:4f:30:e9:41:ba:e9:fc:67:e0:a9:6b:
28:b1:ba:5c:5a:63:3f:7c:02:2e:96:89:4d:da:91:e4:02:cf:
8e:75:2e:9c:18:12:4a:6f:59:95:ce:ad:be:0c:66:ab:03:19:
f6:8f:2d:5c:44:c5:da:2f:e8:30:69:5e:c2:bc:88:7d:2b:f6:
7f:08:3c:1a:9b:ef:5b:55:ba:dd:a7:e5:67:8f:1c:ef:7f:80:
11:e3:30:fa:9c:6a:ad:4c:16:5f:89:31:a7:da:9f:3b:5e:cf:
9b:a1:66:f2:46:2f:ff:37:f4:2d:10:39:d9:ca:ea:05:85:55:
95:ac:e3:99
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA3Mjcx
NjQ0MTNaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKDRCOUVBNEY0NjM0MDEx
OTM0QkIxMEUxQUZCMDJGNUZDQzBGNzI3MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDa6rXHMln18SHPSMDiUQ9kA+uPNxVUq8zSdb6LTmFyAEp4fl0C
XCVkfujXANcPQtOCOIpNpV68C/TeSSRFJG11/qyK+nzkeHIMG+f7DnrlbHbETqbf
x7EBHgSd2OzmlLo8BR0FmsQR5UKSSgeMECpQOxxvSsDJ1bRJY/GV5uS1UkRpjDl0
JUml7w5ZVwV6tKjlASIDpqE5XNGzeRgUx/SH/npMcYvvrRDCGep8wiNw6P1nQl2u
dtbIsjPHqmOeZbnC9QvfPOG+2/7QUMSGrK284f5DJJmDtHk3TFDaDG2r+bykb0sf
SjlZDF8GsN561gpfmC/YIg1UpdJNQ3JUnfonAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUS56k9GNAEZNLsQ4a+wL1/MD3Jy8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L1M1Nms5R05BRVpOTHNRNGEtd0wxX01EM0p5OC5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAABQmswDQYJKoZIhvcNAQELBQADggEBANoZRHWX5WvoF44Gag8EYgzSoL0M
ByCA3/LZ49CnwVx7Yxory6mQkWj9crbkbQOoBQYSrrC6ePRHjwOx2tBz/nMqZwUS
qeEs6aSr2zzGGrzbmjeKb9OPX6qcapZi/uO6Li5iBllaaEBNh4rkStL4Zphb7Cwn
S7Jbdy3c+Rxnlg53Cd1qIAxPMOlBuun8Z+CpayixulxaYz98Ai6WiU3akeQCz451
LpwYEkpvWZXOrb4MZqsDGfaPLVxExdov6DBpXsK8iH0r9n8IPBqb71tVut2n5WeP
HO9/gBHjMPqcaq1MFl+JMafanztez5uhZvJGL/839C0QOdnK6gWFVZWs45k=
-----END CERTIFICATE-----
Generated at Sun Jun 30 03:11:26 2024 by rpki-client on console-fra.rpki-client.org