Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/maZdVIy19Blg-t36yzXGb1HU6cc.roa
File: maZdVIy19Blg-t36yzXGb1HU6cc.roa (raw, json)
Hash identifier: b22FFI8WVCzhgsCOX9WnLigGOAcMIu773Gk5jJvVR/o=
Subject key identifier: 99:A6:5D:54:8C:B5:F4:19:60:FA:DD:FA:CB:35:C6:6F:51:D4:E9:C7
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 67
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/maZdVIy19Blg-t36yzXGb1HU6cc.roa
Signing time: Mon 27 Mar 2023 16:04:34 +0000
ROA not before: Mon 27 Mar 2023 16:04:34 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.102.176.0/20 maxlen: 20
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:32:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 103 (0x67)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:34 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=99A65D548CB5F41960FADDFACB35C66F51D4E9C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:cb:b8:07:03:cd:09:a2:d5:89:6a:df:ec:ae:
7a:ae:c1:73:e1:a1:8e:e4:c4:4d:38:68:82:ca:36:
c1:53:30:4f:d7:29:bc:33:4d:1e:aa:23:52:40:24:
f0:50:7e:0a:ca:81:24:ff:a7:14:ba:c4:07:9a:c4:
9b:5e:86:5c:d3:ea:9d:4a:e6:f2:5a:6b:f9:f6:1f:
b8:c9:6e:97:9d:52:18:ce:22:7b:29:86:74:20:7c:
33:70:4c:dd:85:ee:c0:5a:0f:17:23:0f:bf:fd:f4:
33:48:69:2a:07:db:24:e7:22:ab:45:6a:19:fb:43:
90:f8:fe:a1:7e:63:da:53:16:40:fb:30:ec:8e:a3:
a1:50:1f:a4:05:9f:02:69:e6:c4:1c:8d:bd:79:15:
c2:fb:f0:99:c3:d6:86:57:70:0f:48:e0:6d:a1:91:
f2:56:cb:c0:4d:87:63:1d:47:17:e5:85:8a:77:d1:
71:96:21:31:46:88:af:2e:61:08:0b:1b:ad:f2:c5:
18:52:a9:b1:42:00:2c:ec:41:a7:e4:42:05:1e:a9:
8b:a3:9f:b4:6b:e3:d3:1c:33:11:8f:d2:25:ce:fe:
96:d1:24:70:93:49:86:21:b6:8a:01:68:85:58:6b:
27:f0:f2:3c:00:78:28:83:b7:93:11:51:f3:d1:30:
8e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:A6:5D:54:8C:B5:F4:19:60:FA:DD:FA:CB:35:C6:6F:51:D4:E9:C7
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/maZdVIy19Blg-t36yzXGb1HU6cc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.102.176.0/20
Signature Algorithm: sha256WithRSAEncryption
81:b4:29:c2:2e:48:ba:3b:8b:09:62:ca:49:8e:a6:69:74:a2:
0e:c4:41:0d:09:b9:0b:af:25:e5:eb:04:97:61:70:2a:c5:3c:
c9:a6:17:94:0b:6e:42:3f:89:9b:8b:52:2b:8f:36:56:63:f7:
ee:1c:b6:f6:da:17:3b:08:0d:7b:f3:5e:86:ce:21:03:eb:19:
9a:a0:e2:b7:3a:35:95:15:d6:21:7c:4f:7e:92:e6:e6:c9:50:
c9:d2:67:a5:4d:35:76:a3:d2:6b:26:38:f1:ab:bf:17:f3:c5:
ca:d6:0d:c3:95:48:b8:af:6d:14:89:5b:63:c5:c3:5b:c5:3e:
23:13:f9:8a:28:d7:45:3a:e1:3c:6b:f9:e0:37:c4:d8:ab:f1:
eb:1d:12:97:25:df:fb:56:bb:ce:c7:5f:99:b2:5f:86:6e:e7:
43:fe:79:44:97:71:d7:23:47:ed:a1:46:2a:bc:00:cb:cc:39:
5b:0d:9d:01:10:e9:59:7f:ce:3d:3d:0a:c1:1a:8d:11:ca:1f:
1f:12:26:b9:38:e4:93:d1:95:ff:18:3b:f0:3f:08:b8:c5:62:
91:06:da:88:93:0c:c9:ca:10:64:ac:d3:5a:a9:01:0f:14:86:
d9:12:98:ae:0f:36:a7:d8:dd:d3:3f:fb:65:55:49:0e:c5:07:
d3:a8:3b:06
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBZzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2OTY1
QjBCMjBEREUwN0E0Qzk3OEUyNDA3M0VBMEUxMTE3QjM3NDczMB4XDTIzMDMyNzE2
MDQzNFoXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoOTlBNjVENTQ4Q0I1RjQx
OTYwRkFEREZBQ0IzNUM2NkY1MUQ0RTlDNzCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALHLuAcDzQmi1Ylq3+yueq7Bc+GhjuTETThogso2wVMwT9cpvDNN
HqojUkAk8FB+CsqBJP+nFLrEB5rEm16GXNPqnUrm8lpr+fYfuMlul51SGM4ieymG
dCB8M3BM3YXuwFoPFyMPv/30M0hpKgfbJOciq0VqGftDkPj+oX5j2lMWQPsw7I6j
oVAfpAWfAmnmxByNvXkVwvvwmcPWhldwD0jgbaGR8lbLwE2HYx1HF+WFinfRcZYh
MUaIry5hCAsbrfLFGFKpsUIALOxBp+RCBR6pi6OftGvj0xwzEY/SJc7+ltEkcJNJ
hiG2igFohVhrJ/DyPAB4KIO3kxFR89Ewjs0CAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBSZpl1UjLX0GWD63frLNcZvUdTpxzAfBgNVHSMEGDAWgBRpZbCyDd4HpMl44kBz
6g4RF7N0czAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzA5L2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJlemRITS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJl
emRITS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8zMDkvbWFaZFZJeTE5QmxnLXQzNnl6WEdiMUhVNmNjLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEBDFmsDANBgkqhkiG9w0BAQsFAAOCAQEAgbQpwi5IujuLCWLKSY6maXSiDsRB
DQm5C68l5esEl2FwKsU8yaYXlAtuQj+Jm4tSK482VmP37hy29toXOwgNe/Nehs4h
A+sZmqDitzo1lRXWIXxPfpLm5slQydJnpU01dqPSayY48au/F/PFytYNw5VIuK9t
FIlbY8XDW8U+IxP5iijXRTrhPGv54DfE2Kvx6x0SlyXf+1a7zsdfmbJfhm7nQ/55
RJdx1yNH7aFGKrwAy8w5Ww2dARDpWX/OPT0KwRqNEcofHxImuTjkk9GV/xg78D8I
uMVikQbaiJMMycoQZKzTWqkBDxSG2RKYrg82p9jd0z/7ZVVJDsUH06g7Bg==
-----END CERTIFICATE-----
Generated at Thu Feb 29 02:02:26 2024 by rpki-client on console-ams.rpki-client.org