Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/qIoeAj3CWAK8_XYxVrjxTj3u1cQ.roa
File: qIoeAj3CWAK8_XYxVrjxTj3u1cQ.roa (raw, json)
Hash identifier: dL6AA91R6hAmW9zWQH+zUQQ+nq4nU7c4bZvGXscqCaI=
Subject key identifier: A8:8A:1E:02:3D:C2:58:02:BC:FD:76:31:56:B8:F1:4E:3D:EE:D5:C4
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0256
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qIoeAj3CWAK8_XYxVrjxTj3u1cQ.roa
Signing time: Tue 30 May 2023 16:32:31 +0000
ROA not before: Tue 30 May 2023 16:32:31 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 220.210.20.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:10:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 598 (0x256)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:32:31 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=A88A1E023DC25802BCFD763156B8F14E3DEED5C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:14:a9:4a:7f:91:ab:f1:1d:6d:df:1a:ca:72:
4c:5a:30:5e:f7:17:84:7c:ac:8c:10:0a:70:50:e5:
5b:b8:59:01:5a:6a:58:2f:e7:bb:37:78:53:d7:f8:
5b:89:53:9e:f9:f8:33:61:bb:63:68:ca:da:f1:a3:
92:e0:8c:df:8c:bb:7e:43:5c:fd:6b:73:2a:55:e6:
25:62:e3:2c:6c:d5:24:11:eb:de:21:0a:76:51:c6:
a0:d3:62:0a:ee:62:1c:ae:a6:1c:74:2c:a8:10:45:
8d:37:d4:41:a4:a4:a1:48:63:04:fb:fa:85:38:37:
78:fa:d6:9d:67:86:a6:65:7c:48:2c:b0:ae:bc:33:
95:82:c7:b2:df:41:10:2b:99:19:b4:e5:f2:fe:fe:
2d:18:3b:59:4e:76:9c:cb:45:7c:75:f6:a8:f5:50:
39:71:e1:30:b7:99:19:2c:3c:8e:b2:0e:87:c7:a1:
3b:bb:9e:23:c5:10:20:7a:79:80:c3:a9:c2:36:86:
36:14:e3:49:1a:af:8b:ad:70:8b:90:de:5c:87:be:
b2:69:0b:aa:e8:62:7c:f0:e1:64:d2:84:09:a3:1b:
aa:7a:e0:a5:64:fa:ce:76:53:17:54:3a:c1:61:d1:
c3:c1:90:37:7b:28:ac:ac:3a:ab:e9:a8:96:fc:db:
d7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:8A:1E:02:3D:C2:58:02:BC:FD:76:31:56:B8:F1:4E:3D:EE:D5:C4
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qIoeAj3CWAK8_XYxVrjxTj3u1cQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.20.0/23
Signature Algorithm: sha256WithRSAEncryption
6e:5a:6d:d7:92:7f:44:a6:76:ca:5a:bd:62:93:50:bf:6b:54:
c2:f8:e9:c9:6d:2b:23:d5:1e:1c:8b:86:ff:f8:fb:07:1a:7f:
80:ab:42:14:4b:f6:4b:6d:1e:d0:2a:1a:be:4e:4b:32:dd:c9:
a1:ea:21:fa:02:fc:8e:f9:a3:98:55:36:f0:cb:ec:22:a2:15:
34:a7:d7:23:2c:57:c9:43:54:d7:29:af:91:0e:d7:b4:69:a0:
0c:7c:4d:4c:c4:47:05:17:2a:d2:0a:c4:f2:8a:12:b1:91:e8:
51:18:d3:45:fa:12:ae:ac:c0:c5:df:82:76:b6:de:f2:0e:9c:
1b:5f:14:3b:df:ea:08:3b:62:ac:8d:48:31:66:e2:c1:c0:c3:
35:f7:3c:c4:29:d6:02:d1:2c:95:a9:1d:09:7d:7f:31:8d:4a:
34:04:8e:62:c0:78:b6:97:cd:38:73:77:3c:5f:e2:a4:29:56:
dc:12:61:60:a4:b4:af:d9:33:4f:c3:41:20:b8:09:53:f8:67:
75:77:c0:f7:27:ca:3e:cc:75:76:10:63:c8:14:2f:3e:39:7f:
a7:57:fd:e7:e3:e7:d3:bd:a2:fe:88:24:61:3f:9c:9d:81:32:
72:7d:6b:43:32:c4:cf:61:23:60:96:e2:24:50:bb:20:78:25:
b2:70:37:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:35 2024 by rpki-client on console-fra.rpki-client.org