Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/kzjsERuYnV0nRoDhiMztlDFPLuk.roa
File: kzjsERuYnV0nRoDhiMztlDFPLuk.roa (raw, json)
Hash identifier: Y7NRpeg8DgxO5guqMZaehtuokF2MJrnIZithrB7EHbs=
Subject key identifier: 93:38:EC:11:1B:98:9D:5D:27:46:80:E1:88:CC:ED:94:31:4F:2E:E9
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05F8
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kzjsERuYnV0nRoDhiMztlDFPLuk.roa
Signing time: Thu 29 Feb 2024 01:35:43 +0000
ROA not before: Thu 29 Feb 2024 01:35:43 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 9605
IP address blocks: 1.75.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:34:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1528 (0x5f8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Feb 29 01:35:43 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=9338EC111B989D5D274680E188CCED94314F2EE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:b0:22:73:09:7c:b2:b0:c8:ad:57:4a:3a:e8:
4c:59:e2:17:f0:ad:51:78:2f:21:7e:d6:26:77:9a:
d2:56:c4:d1:d5:a5:21:e6:d1:fe:8f:1c:78:22:96:
38:eb:bb:da:5c:29:2c:ba:da:e5:35:46:48:2f:bb:
95:02:a6:8f:79:ec:e2:e4:6b:b8:c1:ea:7d:f1:6f:
f9:16:5e:09:9d:38:d4:d5:aa:79:de:13:51:83:21:
ed:80:4a:e9:b3:62:d8:06:e5:f6:1b:8b:7c:23:d4:
d1:2a:43:41:52:d7:64:4b:b8:a0:51:1d:aa:d8:26:
c2:f7:71:bc:59:1b:ab:ae:1f:1b:5f:d1:96:71:ab:
9e:6f:47:73:4e:c6:2d:64:b4:f9:e0:0f:0c:90:01:
79:37:58:46:3e:c1:58:c6:e9:b9:9a:15:23:9e:51:
b5:c5:81:a4:1c:ed:3d:6d:f2:06:84:88:80:54:f6:
28:7c:16:19:b4:90:b0:77:70:1e:ec:14:7f:81:f6:
3b:87:bc:f7:7a:fd:7a:5f:a1:23:6b:7c:33:da:cd:
3b:f6:06:29:fd:3e:29:e1:c9:1c:e6:fb:44:61:a5:
f2:c8:f4:93:3e:05:63:c7:98:9c:64:2e:c9:37:c9:
e6:dd:e9:9d:ac:2f:5f:33:86:04:15:5a:79:66:2a:
6f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:38:EC:11:1B:98:9D:5D:27:46:80:E1:88:CC:ED:94:31:4F:2E:E9
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/kzjsERuYnV0nRoDhiMztlDFPLuk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.75.9.0/24
Signature Algorithm: sha256WithRSAEncryption
bf:42:4e:39:fe:ee:4b:2e:17:46:21:ac:7f:da:c6:95:49:0d:
6d:3d:0a:1b:df:03:b4:4a:b2:fc:7a:c8:dc:4c:1d:6b:e4:c0:
88:05:db:60:03:b3:f9:25:5e:31:a0:bf:53:a2:61:60:8e:5e:
5c:9c:2c:25:ec:50:7f:43:bf:e6:39:bc:72:00:f8:dc:7e:bb:
6f:db:c1:aa:89:4d:83:79:30:74:25:52:9a:8b:85:c9:3e:3d:
ff:37:22:47:c1:b8:78:60:ca:42:a0:7a:0d:71:a6:79:79:30:
03:e9:b4:44:5c:eb:5d:71:fe:51:55:e6:b3:75:74:a5:39:6a:
b1:83:86:93:22:b5:0d:d2:23:ea:b6:b9:9b:ec:ff:ee:cd:28:
9a:34:ec:f4:ba:70:61:9a:56:57:34:3a:26:fc:2a:70:9a:99:
44:5e:80:d5:41:81:5e:b8:3d:66:84:37:5b:23:1c:d6:58:fa:
41:dd:22:ee:2c:b1:90:66:8e:da:b7:59:d9:13:d9:c0:e4:9c:
ee:92:1b:05:7e:b7:cb:95:b6:c9:b1:92:ad:a6:d3:04:28:01:
4e:11:75:a8:75:18:3a:30:75:ce:40:01:26:a2:fc:47:37:65:
1d:7d:58:24:21:8d:89:53:8d:e9:96:0b:52:86:7e:d8:14:1c:
17:71:5b:d2
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBfgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw
MTM1NDNaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDkzMzhFQzExMUI5ODlE
NUQyNzQ2ODBFMTg4Q0NFRDk0MzE0RjJFRTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDMsCJzCXyysMitV0o66ExZ4hfwrVF4LyF+1iZ3mtJWxNHVpSHm
0f6PHHgiljjru9pcKSy62uU1Rkgvu5UCpo957OLka7jB6n3xb/kWXgmdONTVqnne
E1GDIe2ASumzYtgG5fYbi3wj1NEqQ0FS12RLuKBRHarYJsL3cbxZG6uuHxtf0ZZx
q55vR3NOxi1ktPngDwyQAXk3WEY+wVjG6bmaFSOeUbXFgaQc7T1t8gaEiIBU9ih8
Fhm0kLB3cB7sFH+B9juHvPd6/XpfoSNrfDPazTv2Bin9PinhyRzm+0RhpfLI9JM+
BWPHmJxkLsk3yebd6Z2sL18zhgQVWnlmKm9HAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUkzjsERuYnV0nRoDhiMztlDFPLukwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L2t6anNFUnVZblYwblJvRGhpTXp0bERGUEx1ay5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAABSwkwDQYJKoZIhvcNAQELBQADggEBAL9CTjn+7ksuF0YhrH/axpVJDW09
ChvfA7RKsvx6yNxMHWvkwIgF22ADs/klXjGgv1OiYWCOXlycLCXsUH9Dv+Y5vHIA
+Nx+u2/bwaqJTYN5MHQlUpqLhck+Pf83IkfBuHhgykKgeg1xpnl5MAPptERc611x
/lFV5rN1dKU5arGDhpMitQ3SI+q2uZvs/+7NKJo07PS6cGGaVlc0Oib8KnCamURe
gNVBgV64PWaEN1sjHNZY+kHdIu4ssZBmjtq3WdkT2cDknO6SGwV+t8uVtsmxkq2m
0wQoAU4Rdah1GDowdc5AASai/Ec3ZR19WCQhjYlTjemWC1KGftgUHBdxW9I=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:20:53 2025 by rpki-client