Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZcDti6dGg8aAl-QskIE9ZTKTYAg.roa
File: ZcDti6dGg8aAl-QskIE9ZTKTYAg.roa (raw, json)
Hash identifier: RaajvBOuHUgJV+oA6W3ZqqCg4pGSdJvPAEO/DVSCfa8=
Subject key identifier: 65:C0:ED:8B:A7:46:83:C6:80:97:E4:2C:90:81:3D:65:32:93:60:08
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 70
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZcDti6dGg8aAl-QskIE9ZTKTYAg.roa
Signing time: Mon 27 Mar 2023 16:06:43 +0000
ROA not before: Mon 27 Mar 2023 16:06:43 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.75.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112 (0x70)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:06:43 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=65C0ED8BA74683C68097E42C90813D6532936008
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:08:df:19:32:68:7f:3a:2b:60:43:ea:89:6f:
26:6a:e9:ff:bc:b1:db:76:47:04:04:67:d2:a2:98:
ee:8b:0a:f6:e0:6f:ee:f3:6b:62:be:23:ea:94:b0:
cb:2a:27:c6:b9:f1:d0:f0:e3:ff:d4:5d:5f:4d:44:
5d:d4:10:13:33:3d:63:85:e2:df:8c:be:99:07:56:
98:a6:42:47:91:ef:ce:41:41:d6:83:b3:bc:81:d1:
f9:d3:2c:9e:39:39:03:51:bb:a2:6f:4b:da:7e:ea:
7d:69:21:f6:90:5c:87:11:b8:bc:ea:f9:cf:66:64:
df:ea:76:a9:cc:81:4c:2d:cb:83:0d:52:e3:66:7d:
c5:18:7a:51:c6:fd:ca:e3:80:63:56:9f:9e:cc:32:
15:f7:ff:2b:47:5f:e3:a9:5f:47:c1:f6:21:e7:a0:
9d:73:8f:46:65:40:37:22:34:49:0b:d6:41:93:a1:
6a:b5:bd:70:43:d4:19:76:30:ea:db:71:33:40:51:
d6:19:05:bb:09:1f:92:11:31:62:cd:8f:2b:fc:79:
b6:79:6c:89:01:1a:46:a5:6e:e9:81:56:04:6c:ea:
ea:78:02:6d:16:50:fa:b8:c6:10:8a:88:58:d4:99:
bf:dd:a6:1e:d8:1a:39:f7:86:88:55:bf:52:1c:ba:
8a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:C0:ED:8B:A7:46:83:C6:80:97:E4:2C:90:81:3D:65:32:93:60:08
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ZcDti6dGg8aAl-QskIE9ZTKTYAg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.75.9.0/24
Signature Algorithm: sha256WithRSAEncryption
20:8e:bf:f0:c7:c4:db:34:7d:c6:b9:fd:0e:f6:de:7c:d5:b1:
82:df:6d:0c:cc:34:51:ed:75:bf:73:c3:72:bb:bd:54:69:1c:
60:10:04:48:0a:9a:8b:ce:19:91:5f:28:03:b6:6a:b8:a6:8b:
fa:08:f2:21:e1:fc:a7:58:49:5f:4f:0a:3c:9f:b9:92:43:ee:
0d:30:ad:fc:ed:44:6b:45:49:83:9b:17:dd:c5:ef:6d:8e:49:
4e:dc:74:99:87:58:d9:17:d5:3a:a0:4e:d2:80:64:8e:88:7d:
26:c8:f8:49:28:cc:ca:3b:07:eb:24:9d:0c:7b:20:c9:0d:b0:
8b:ea:16:43:3a:4d:d8:e0:68:ba:cb:33:3b:5f:9a:68:d9:9e:
3c:03:d1:bb:79:aa:58:4e:9c:0f:9e:f4:f5:32:69:89:95:c1:
58:d5:30:fb:25:4c:49:65:09:f6:46:ee:fe:7e:c8:70:88:90:
7e:a7:ec:91:16:a9:ed:35:4f:7e:97:8c:6f:c8:62:4f:99:d9:
d7:04:a0:2a:81:98:1f:cf:7b:68:ac:67:fc:1d:6b:0d:24:82:
aa:40:24:31:a4:aa:a1:6f:7a:07:45:8f:a0:d0:ab:ac:43:6d:
04:b5:a4:a1:97:d2:ce:3c:b1:75:81:af:e4:a5:17:aa:1d:ad:
44:26:a7:a2
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBcDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2OTY1
QjBCMjBEREUwN0E0Qzk3OEUyNDA3M0VBMEUxMTE3QjM3NDczMB4XDTIzMDMyNzE2
MDY0M1oXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoNjVDMEVEOEJBNzQ2ODND
NjgwOTdFNDJDOTA4MTNENjUzMjkzNjAwODCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALkI3xkyaH86K2BD6olvJmrp/7yx23ZHBARn0qKY7osK9uBv7vNr
Yr4j6pSwyyonxrnx0PDj/9RdX01EXdQQEzM9Y4Xi34y+mQdWmKZCR5HvzkFB1oOz
vIHR+dMsnjk5A1G7om9L2n7qfWkh9pBchxG4vOr5z2Zk3+p2qcyBTC3Lgw1S42Z9
xRh6Ucb9yuOAY1afnswyFff/K0df46lfR8H2IeegnXOPRmVANyI0SQvWQZOharW9
cEPUGXYw6ttxM0BR1hkFuwkfkhExYs2PK/x5tnlsiQEaRqVu6YFWBGzq6ngCbRZQ
+rjGEIqIWNSZv92mHtgaOfeGiFW/Uhy6itUCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBRlwO2Lp0aDxoCX5CyQgT1lMpNgCDAfBgNVHSMEGDAWgBRpZbCyDd4HpMl44kBz
6g4RF7N0czAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzA5L2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJlemRITS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJl
emRITS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8zMDkvWmNEdGk2ZEdnOGFBbC1Rc2tJRTlaVEtUWUFnLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAAFLCTANBgkqhkiG9w0BAQsFAAOCAQEAII6/8MfE2zR9xrn9DvbefNWxgt9t
DMw0Ue11v3PDcru9VGkcYBAESAqai84ZkV8oA7ZquKaL+gjyIeH8p1hJX08KPJ+5
kkPuDTCt/O1Ea0VJg5sX3cXvbY5JTtx0mYdY2RfVOqBO0oBkjoh9Jsj4SSjMyjsH
6ySdDHsgyQ2wi+oWQzpN2OBousszO1+aaNmePAPRu3mqWE6cD5709TJpiZXBWNUw
+yVMSWUJ9kbu/n7IcIiQfqfskRap7TVPfpeMb8hiT5nZ1wSgKoGYH897aKxn/B1r
DSSCqkAkMaSqoW96B0WPoNCrrENtBLWkoZfSzjyxdYGv5KUXqh2tRCanog==
-----END CERTIFICATE-----
Generated at Thu Feb 29 03:00:58 2024 by rpki-client on console-fra.rpki-client.org