Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/gF9lelFqQL-2bdvs60Fun0RRXAA.roa
File: gF9lelFqQL-2bdvs60Fun0RRXAA.roa (raw, json)
Hash identifier: nThTJGJrwG53QlDu9dblTw/5tjCRLCxIz5vgTD/gJpM=
Subject key identifier: 80:5F:65:7A:51:6A:40:BF:B6:6D:DB:EC:EB:41:6E:9F:44:51:5C:00
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0462
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gF9lelFqQL-2bdvs60Fun0RRXAA.roa
Signing time: Thu 27 Jul 2023 16:44:00 +0000
ROA not before: Thu 27 Jul 2023 16:44:00 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 220.159.232.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:33:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1122 (0x462)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:44:00 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=805F657A516A40BFB66DDBECEB416E9F44515C00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:37:b9:13:af:b2:db:bc:e9:56:bd:0e:0a:93:
ae:79:72:5a:8c:8b:65:68:e8:74:75:92:47:d0:d9:
f3:15:13:05:b3:87:76:f0:36:5a:a1:10:83:5d:de:
70:70:55:b5:10:3a:53:c0:ee:06:e2:6a:ad:5f:b4:
c7:5f:97:8f:37:c4:82:06:e0:2a:af:ff:7c:58:20:
d9:bb:3e:ac:f9:0f:0f:b3:9e:6c:e2:ef:a1:ba:c2:
59:05:89:60:dc:12:23:91:f8:4d:d7:64:f8:5d:60:
5d:c4:c6:2d:ed:12:31:17:60:4b:0c:8a:0c:0f:e7:
7c:a2:4e:a7:bb:b6:b7:32:1a:b6:b9:89:4e:78:6e:
98:3d:aa:47:c2:61:a6:3b:6c:c5:61:55:26:0d:7c:
d5:9a:e7:3e:ed:a9:82:19:24:5d:5a:1f:c4:b2:a3:
34:3a:fd:15:cd:fa:93:76:8d:4c:89:18:12:7b:38:
bc:ac:37:68:40:2c:41:0f:85:f8:9c:5c:59:ea:cf:
e8:ba:63:19:62:b6:0c:24:84:58:d6:4f:ce:82:54:
cf:c8:55:26:41:b3:11:a0:0f:af:fc:01:5e:35:69:
30:cc:a3:58:77:ee:05:c7:3c:8e:b0:60:a3:42:58:
d0:28:dd:a8:ab:81:b7:31:ac:04:e4:77:97:0b:30:
e4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:5F:65:7A:51:6A:40:BF:B6:6D:DB:EC:EB:41:6E:9F:44:51:5C:00
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gF9lelFqQL-2bdvs60Fun0RRXAA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.159.232.0/24
Signature Algorithm: sha256WithRSAEncryption
87:8d:71:69:48:a7:65:17:bb:75:9a:a2:f5:5b:d7:aa:59:e6:
e3:ec:16:b1:71:26:bd:7c:98:f9:a2:f3:9e:ac:20:d9:49:4f:
88:84:49:b9:d3:fd:9e:0b:15:8c:c7:8c:ab:23:d5:6c:57:50:
c5:df:2d:b4:ae:d7:a6:85:b3:cb:23:df:12:26:dd:db:6c:72:
4f:be:98:b1:1c:3a:2a:60:6a:f2:73:6a:ab:07:4b:45:b5:73:
86:a4:24:1e:a4:12:b2:bb:fb:0b:e9:5d:23:be:0e:6e:23:e7:
10:7e:9c:bb:a2:cd:96:96:ee:1e:cf:29:41:e1:15:92:38:d7:
0b:07:3d:c8:3d:82:0e:1c:18:b1:98:75:b8:f6:00:2b:fe:a1:
24:77:dc:b0:a6:59:35:e0:28:17:fb:ab:d8:21:f6:de:01:92:
17:14:ad:3a:85:d8:bf:70:00:d2:1d:fe:87:a0:78:60:d2:71:
6b:0b:19:a0:7d:1d:54:86:a0:46:09:d5:45:54:23:d8:04:3d:
32:a0:47:e0:ab:0f:99:38:c9:b7:a5:8c:7a:cb:91:3c:c9:b7:
d7:5f:0f:71:63:43:9f:e6:3c:11:ba:04:60:b1:3d:76:64:21:
33:63:15:55:aa:53:5c:4a:b0:77:f8:4e:b1:88:91:d6:f4:2f:
41:86:ef:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 03:11:26 2024 by rpki-client on console-fra.rpki-client.org