Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lWmKiWrUGn6MYLjCK5JzrBlcZsQ.roa
File: lWmKiWrUGn6MYLjCK5JzrBlcZsQ.roa (raw, json)
Hash identifier: 8sBvcfS+URtnA2nWONPBPtSCGtpd2v7CFqbvufWXj9I=
Subject key identifier: 95:69:8A:89:6A:D4:1A:7E:8C:60:B8:C2:2B:92:73:AC:19:5C:66:C4
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0222
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lWmKiWrUGn6MYLjCK5JzrBlcZsQ.roa
Signing time: Tue 30 May 2023 16:30:30 +0000
ROA not before: Tue 30 May 2023 16:30:30 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.210.16.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 30 Apr 2024 01:52:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 546 (0x222)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:30:30 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=95698A896AD41A7E8C60B8C22B9273AC195C66C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:56:9f:3d:5a:a9:a6:0d:de:b0:e3:b4:46:53:
4e:be:29:d0:c7:fe:6c:1b:1a:e6:6e:c9:d8:fc:81:
13:e3:63:44:ee:fa:f1:0f:6a:d7:e5:d2:32:f9:96:
b1:77:cd:38:b1:23:06:82:97:c9:86:a0:4d:08:2a:
dc:79:71:e3:17:ad:88:de:90:3a:aa:18:62:b7:61:
2d:0b:2a:73:2c:45:32:a6:01:37:f4:2b:23:f9:9e:
b6:98:44:f7:c1:b2:15:76:a5:11:97:b5:f9:37:0d:
f8:89:e8:73:b3:4d:59:ad:15:97:89:58:c1:3b:93:
b4:ab:be:bd:fa:d1:fb:9e:60:1f:3a:ec:dd:57:02:
9a:1a:6e:57:56:a4:fd:ee:c9:ef:21:39:69:67:bc:
57:bc:ae:b7:8f:5a:0a:fb:bf:2b:ee:08:99:50:8e:
9a:6f:ec:d6:09:f5:37:2a:1b:18:52:9f:81:60:3a:
f2:83:96:5f:8a:89:8b:b4:64:57:d5:5d:42:73:db:
7f:ce:11:47:ae:75:f8:e9:33:38:97:b4:25:ed:f6:
bb:66:e0:49:08:6a:c2:b8:0e:c2:e7:8d:3d:a7:8b:
e2:00:64:43:c0:29:c3:52:8d:4b:41:d1:83:33:12:
68:31:77:45:8b:c5:7f:8e:eb:61:88:c9:52:b9:2c:
ff:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:69:8A:89:6A:D4:1A:7E:8C:60:B8:C2:2B:92:73:AC:19:5C:66:C4
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lWmKiWrUGn6MYLjCK5JzrBlcZsQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.16.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:8e:09:ae:dd:01:dd:6a:a2:5b:02:ea:c3:78:74:dc:95:5c:
19:91:30:58:72:45:d5:5d:91:63:d1:db:96:9c:18:a1:d1:c8:
15:b8:2c:7d:2d:8b:bd:ae:52:a3:20:1c:7d:84:64:51:fa:df:
76:65:c5:f6:f2:28:63:39:79:b2:67:02:d0:f5:c7:11:c8:d1:
40:64:53:af:c3:ff:3f:7b:cd:bd:a9:fe:96:79:25:f2:02:7e:
d9:fd:c7:6b:a7:55:29:08:02:2b:f0:12:50:f9:f4:e7:e7:c5:
e3:08:30:39:55:2b:51:c1:78:ae:3f:3d:1a:b7:69:92:44:73:
fd:f0:ee:d5:2a:90:83:a7:f8:58:7f:4d:b8:30:d2:55:12:bb:
93:6e:22:83:24:76:67:c6:39:9f:b2:e1:20:fe:2a:b2:a8:80:
d6:34:11:26:04:c8:2f:39:80:d4:87:57:33:bd:0b:20:e8:09:
6a:39:39:5d:9d:f3:c0:28:bd:e3:22:c6:da:a6:39:60:44:98:
98:89:1c:26:1d:c2:05:05:40:b7:e3:95:10:08:ed:dd:02:a9:
c7:e9:f7:5b:71:3d:5e:fd:8d:b4:8e:b2:9c:b6:f0:62:76:f1:
15:d2:01:fd:1b:d3:35:5b:36:7b:50:3b:23:1d:02:d8:57:14:
02:62:70:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:35 2024 by rpki-client on console-fra.rpki-client.org