Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ufPpnB8swbvtxAaN3K8lIhF6iXQ.roa
File: ufPpnB8swbvtxAaN3K8lIhF6iXQ.roa (raw, json)
Hash identifier: JEn9ioXRStg9KWh011FsRko5wSkyHOIFwsSTw79fGWE=
Subject key identifier: B9:F3:E9:9C:1F:2C:C1:BB:ED:C4:06:8D:DC:AF:25:22:11:7A:89:74
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 04D5
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ufPpnB8swbvtxAaN3K8lIhF6iXQ.roa
Signing time: Thu 27 Jul 2023 16:50:03 +0000
ROA not before: Thu 27 Jul 2023 16:50:03 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 220.159.251.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:40:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1237 (0x4d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:50:03 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=B9F3E99C1F2CC1BBEDC4068DDCAF2522117A8974
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:a1:80:53:a4:aa:7a:9b:c9:0b:bd:8d:52:a9:
08:a7:6a:b6:6f:69:34:39:21:0f:4c:7f:0a:62:2b:
27:ca:37:f7:2b:12:b6:2b:c4:c5:b3:e8:66:54:5e:
2a:ce:92:a5:67:f3:cb:aa:ef:ad:84:33:b3:d3:17:
bd:8c:38:9d:19:62:2f:a4:9f:2c:6d:ac:d3:d7:bb:
0d:e9:14:e4:6a:a1:ce:bb:ba:57:0b:34:2e:7b:49:
65:7f:aa:67:c7:14:89:1e:85:09:d7:ef:40:72:6e:
d8:ca:86:74:b7:d4:09:77:23:20:97:b8:b3:91:0e:
d0:b3:6b:91:18:51:5d:e5:d8:c0:93:c9:f1:c3:85:
56:2d:40:46:a5:c1:29:83:80:04:9b:59:3e:24:a7:
1a:7f:62:fc:26:50:7b:2e:70:06:91:40:d9:44:b7:
e1:f9:f8:e9:14:ae:50:24:4c:44:d1:a1:71:6b:b7:
36:6c:0e:1d:b6:5e:54:a9:29:54:51:cb:9f:31:12:
30:56:2b:d3:f3:4e:d7:82:f2:ad:b6:ef:ed:d2:fd:
f3:ed:bc:50:bb:cd:40:b7:21:ed:01:aa:fa:4b:e4:
d1:57:b0:b0:0e:70:51:40:9a:fb:f7:65:c9:44:9f:
a8:45:a2:06:0c:65:5f:50:7f:eb:78:ab:62:fc:e5:
bb:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:F3:E9:9C:1F:2C:C1:BB:ED:C4:06:8D:DC:AF:25:22:11:7A:89:74
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ufPpnB8swbvtxAaN3K8lIhF6iXQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.159.251.0/24
Signature Algorithm: sha256WithRSAEncryption
00:55:a1:c6:87:df:a1:e6:3c:37:82:e4:62:0f:f9:88:3e:9a:
86:63:c7:e2:d5:11:be:84:ec:47:39:e0:fa:78:9a:f1:1a:8b:
bc:95:78:1d:9a:e5:0d:ab:e5:96:b8:f9:68:8b:9f:b3:90:2e:
37:4a:b0:2c:40:11:b5:e8:64:5f:14:32:2d:56:89:ea:fc:b7:
5b:02:b6:8c:a8:a0:32:8a:d0:b8:e2:9c:0c:20:91:ef:fb:2c:
9d:70:e4:4d:93:92:08:31:7c:f2:00:42:80:25:fc:41:ae:c5:
de:95:4d:cb:ef:42:31:f7:48:9a:79:03:e8:29:69:90:e3:68:
73:9f:03:0c:fc:6a:06:de:db:93:32:a2:ee:94:8e:9f:76:13:
c1:ca:d1:76:54:03:57:b4:2b:7b:d6:7e:12:e3:81:b0:9c:1b:
9a:aa:f6:7e:eb:87:ad:da:ac:3f:06:c1:d6:50:3c:74:90:18:
bf:ab:ab:fd:84:49:87:cf:36:34:9c:14:d4:3a:f3:b8:e5:27:
14:33:7e:da:3b:80:b6:f1:91:57:e1:01:e9:5e:7d:2d:fa:42:
09:ee:f0:e6:40:76:e6:f8:5b:7b:f8:04:22:6b:9c:f1:b7:e4:
83:76:21:14:de:0d:98:59:c7:60:ad:cd:ac:2a:6d:00:1e:f9:
0a:04:f1:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 02:59:41 2024 by rpki-client on console-ams.rpki-client.org