Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/itPJuxrUv_acul6_vzPj8abbRw0.roa
File: itPJuxrUv_acul6_vzPj8abbRw0.roa (raw, json)
Hash identifier: nBL3/XTK05hKJ+aXoRaTBB89vadIgrspVfdVJiTEmpw=
Subject key identifier: 8A:D3:C9:BB:1A:D4:BF:F6:9C:BA:5E:BF:BF:33:E3:F1:A6:DB:47:0D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 54
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/itPJuxrUv_acul6_vzPj8abbRw0.roa
Signing time: Mon 27 Mar 2023 16:04:27 +0000
ROA not before: Mon 27 Mar 2023 16:04:27 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.20.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:41:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 84 (0x54)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:27 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=8AD3C9BB1AD4BFF69CBA5EBFBF33E3F1A6DB470D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:a1:6f:9f:c6:19:b7:66:e5:69:17:ce:89:21:
08:51:5b:e6:42:dc:8f:74:9c:07:39:79:76:57:95:
aa:ea:82:b9:0d:9c:de:99:b7:06:35:d2:f0:b6:c6:
dd:40:d3:7c:4c:94:2c:a8:57:aa:a4:71:40:29:e3:
4d:f8:94:0d:75:21:4b:5b:52:61:6e:91:3d:4e:c9:
a2:e5:de:3c:57:dc:89:84:ef:34:c6:c6:3f:73:a2:
48:34:ba:5d:f9:81:88:78:ef:07:5d:f5:00:a8:a3:
98:4a:35:30:41:62:09:ed:9c:21:a7:ae:1a:3b:1d:
09:0b:85:63:2f:48:8a:78:78:99:22:b6:6b:39:5e:
63:92:e8:88:cc:bf:b3:ea:3b:06:6c:a8:d7:b6:e7:
6a:00:fd:97:e2:fc:8e:d3:f3:9f:a0:12:df:76:5c:
6c:0b:b0:c4:84:c1:a4:6f:cd:2b:73:77:55:95:0d:
1e:f0:83:64:28:ca:50:35:cf:23:f7:c7:02:6e:ca:
d4:47:1a:b6:fb:8e:c1:47:51:e9:dd:b1:91:98:54:
12:76:ee:34:0f:5c:c4:57:d9:c0:4e:40:c0:89:71:
1e:ab:11:b2:2e:cc:c4:42:e2:e3:d6:bc:2c:54:95:
52:8b:00:b2:d8:87:db:de:dc:37:f6:fe:4f:ed:5e:
d7:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:D3:C9:BB:1A:D4:BF:F6:9C:BA:5E:BF:BF:33:E3:F1:A6:DB:47:0D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/itPJuxrUv_acul6_vzPj8abbRw0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.20.0/22
Signature Algorithm: sha256WithRSAEncryption
e3:e3:a5:83:d9:fe:d3:a3:eb:cb:57:09:12:9d:da:09:4e:b5:
87:85:50:91:1f:f6:b7:6f:c0:c0:bb:6f:89:f6:4f:2c:7c:b4:
d9:ec:e9:5a:bd:8f:e2:e8:2b:95:ad:3f:1f:23:f1:85:41:9f:
2a:ca:5d:08:fa:f9:e6:45:60:68:e1:c7:dc:e8:a9:4b:11:90:
6f:53:11:ea:a2:15:d8:6d:50:b2:7a:c0:62:a5:2a:b5:93:43:
0d:f6:d2:73:0f:3e:fd:94:e5:e6:35:ce:5a:22:3f:ee:cf:6a:
50:dd:61:a7:cc:5a:a6:2a:7d:24:95:5c:a1:57:8f:41:96:ee:
59:d1:4c:e9:fa:65:f8:2e:88:2c:cf:82:20:ff:5f:62:8e:2f:
68:35:df:4d:2e:21:44:80:46:a9:ca:9c:23:3e:03:d2:68:c6:
e5:36:e4:da:d8:2a:d5:a2:59:04:01:23:ca:09:59:a8:51:25:
62:67:6c:c8:1d:2f:60:62:5a:b3:54:22:92:94:e4:8f:54:3d:
2e:12:c8:1d:18:a1:c7:d4:82:f8:ad:d9:16:d0:9e:b8:5b:9b:
d4:9a:0e:19:68:bd:de:27:ce:6f:e1:f2:db:95:1d:c4:52:b3:
11:d0:89:75:7d:b2:cf:e8:6e:6e:af:09:65:fd:71:39:34:49:
ae:d5:53:5f
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBVDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2OTY1
QjBCMjBEREUwN0E0Qzk3OEUyNDA3M0VBMEUxMTE3QjM3NDczMB4XDTIzMDMyNzE2
MDQyN1oXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoOEFEM0M5QkIxQUQ0QkZG
NjlDQkE1RUJGQkYzM0UzRjFBNkRCNDcwRDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANahb5/GGbdm5WkXzokhCFFb5kLcj3ScBzl5dleVquqCuQ2c3pm3
BjXS8LbG3UDTfEyULKhXqqRxQCnjTfiUDXUhS1tSYW6RPU7JouXePFfciYTvNMbG
P3OiSDS6XfmBiHjvB131AKijmEo1MEFiCe2cIaeuGjsdCQuFYy9Iinh4mSK2azle
Y5LoiMy/s+o7Bmyo17bnagD9l+L8jtPzn6AS33ZcbAuwxITBpG/NK3N3VZUNHvCD
ZCjKUDXPI/fHAm7K1EcatvuOwUdR6d2xkZhUEnbuNA9cxFfZwE5AwIlxHqsRsi7M
xELi49a8LFSVUosAstiH297cN/b+T+1e18UCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBSK08m7GtS/9py6Xr+/M+PxpttHDTAfBgNVHSMEGDAWgBRpZbCyDd4HpMl44kBz
6g4RF7N0czAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzA5L2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJlemRITS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJl
emRITS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8zMDkvaXRQSnV4clV2X2FjdWw2X3Z6UGo4YWJiUncwLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAjFhFDANBgkqhkiG9w0BAQsFAAOCAQEA4+Olg9n+06Pry1cJEp3aCU61h4VQ
kR/2t2/AwLtvifZPLHy02ezpWr2P4ugrla0/HyPxhUGfKspdCPr55kVgaOHH3Oip
SxGQb1MR6qIV2G1QsnrAYqUqtZNDDfbScw8+/ZTl5jXOWiI/7s9qUN1hp8xapip9
JJVcoVePQZbuWdFM6fpl+C6ILM+CIP9fYo4vaDXfTS4hRIBGqcqcIz4D0mjG5Tbk
2tgq1aJZBAEjyglZqFElYmdsyB0vYGJas1QikpTkj1Q9LhLIHRihx9SC+K3ZFtCe
uFub1JoOGWi93ifOb+Hy25UdxFKzEdCJdX2yz+hubq8JZf1xOTRJrtVTXw==
-----END CERTIFICATE-----
Generated at Thu Feb 29 03:05:49 2024 by rpki-client on console-ams.rpki-client.org