Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/fDTl9x5XSMXTppHV6JeOH0f2zGI.roa
File: fDTl9x5XSMXTppHV6JeOH0f2zGI.roa (raw, json)
Hash identifier: 5ie4GPVG5fkLecVlTKm2fYjcTXXELysgMkUHxxJCIvI=
Subject key identifier: 7C:34:E5:F7:1E:57:48:C5:D3:A6:91:D5:E8:97:8E:1F:47:F6:CC:62
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 025F
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fDTl9x5XSMXTppHV6JeOH0f2zGI.roa
Signing time: Tue 30 May 2023 16:34:12 +0000
ROA not before: Tue 30 May 2023 16:34:12 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.210.96.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:12:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 607 (0x25f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:34:12 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=7C34E5F71E5748C5D3A691D5E8978E1F47F6CC62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:26:f6:05:b2:ba:d6:8a:e7:33:cc:22:73:d5:
40:09:24:90:66:41:2d:fe:06:2e:4c:f9:cf:22:d4:
51:e5:87:72:fa:8d:ab:02:ae:11:d2:d3:d4:20:99:
0a:39:14:b4:89:08:c4:73:2b:b0:e6:5a:20:f3:75:
b0:95:e4:ab:ad:aa:b2:50:bc:26:61:8c:1c:c1:df:
82:b7:32:34:3b:90:87:e0:72:65:09:ad:94:58:d4:
96:d2:e3:7a:e9:3f:4f:5c:3b:7f:08:aa:db:f5:f6:
12:d8:83:e0:95:90:a7:eb:55:c7:4e:a9:69:32:c1:
b8:90:53:a3:e6:f0:12:74:93:c1:65:43:cf:58:e4:
b0:10:56:c8:a1:ec:e3:38:73:fe:c2:15:c3:87:0b:
4f:e5:8b:9e:6f:05:61:20:36:73:0b:63:49:70:ce:
05:45:e4:81:2d:17:a4:81:e2:6c:68:39:27:af:02:
04:a9:07:6a:94:b4:3a:97:b2:b9:86:af:87:6a:0a:
ca:7b:84:71:17:d1:bc:58:09:8d:b8:1c:51:19:e5:
8e:90:0b:5f:4c:dd:08:db:61:dc:26:08:78:27:b7:
73:4b:75:ab:c2:c1:37:14:2c:9b:59:af:df:f5:8d:
3d:70:6b:6e:9f:39:ec:4b:e1:59:65:bf:b5:5f:9c:
82:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:34:E5:F7:1E:57:48:C5:D3:A6:91:D5:E8:97:8E:1F:47:F6:CC:62
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fDTl9x5XSMXTppHV6JeOH0f2zGI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.96.0/21
Signature Algorithm: sha256WithRSAEncryption
70:b9:b2:98:af:f3:0c:5a:eb:66:14:ef:9c:8b:e7:54:90:73:
6f:a2:22:e1:18:aa:68:62:ff:32:f0:13:cc:cb:83:c6:20:36:
87:28:a6:15:de:a3:f4:16:aa:1a:eb:b8:6e:26:5a:05:1f:fc:
47:7b:ab:b7:39:51:7d:45:4c:5d:99:fb:04:1f:b6:2e:d7:a6:
e7:51:45:46:b7:15:53:26:23:a4:12:d6:61:77:ef:b7:9d:aa:
41:87:7b:be:0c:e9:c6:32:50:b6:9f:4f:6a:03:86:14:9c:8e:
61:da:00:6c:3a:29:cd:51:2a:ae:a1:5b:25:71:18:04:69:c1:
9d:14:e2:bc:e2:67:20:58:e9:22:0d:b3:7b:fb:77:04:10:bf:
fb:35:3f:bb:4c:0b:04:5d:3d:9e:b8:4b:c1:d8:1a:96:d4:b8:
49:c5:94:d3:d7:e3:5c:df:6b:c6:2e:21:16:86:09:a5:71:38:
f5:a5:5f:e2:ac:3b:45:22:36:d9:3c:b3:31:7f:d7:ad:9d:ad:
da:75:63:c6:77:d6:9a:46:6e:0a:a3:20:82:8f:70:92:08:dd:
21:fe:43:89:6a:d8:e0:ef:5d:fc:8f:d5:90:76:1a:6e:60:19:
40:b4:ae:1b:09:ee:ec:31:ed:57:6b:0f:0f:8e:50:e2:c0:5d:
d6:3e:bf:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:35 2024 by rpki-client on console-fra.rpki-client.org