Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ugkj4pEoT-O7sQ-gx2lKzMXLDRU.roa
File: ugkj4pEoT-O7sQ-gx2lKzMXLDRU.roa (raw, json)
Hash identifier: spzDoXI/6wzrXeJ9ktAY2V97efziTjVdrDQwtBzbMXQ=
Subject key identifier: BA:09:23:E2:91:28:4F:E3:BB:B1:0F:A0:C7:69:4A:CC:C5:CB:0D:15
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 04E4
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ugkj4pEoT-O7sQ-gx2lKzMXLDRU.roa
Signing time: Thu 27 Jul 2023 16:50:14 +0000
ROA not before: Thu 27 Jul 2023 16:50:14 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 211.14.68.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:42:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1252 (0x4e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:50:14 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=BA0923E291284FE3BBB10FA0C7694ACCC5CB0D15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:9b:1b:fc:ca:4e:96:2f:b5:8b:b4:9f:ab:fc:
b1:de:01:4d:04:44:17:d9:ba:f8:a7:58:8d:4c:7f:
d6:e2:2b:0b:27:a0:89:f2:53:88:c7:5c:99:04:ac:
18:bd:80:a5:91:b8:53:ad:5e:e3:b9:48:a5:3f:a3:
81:31:49:82:e8:78:10:09:c2:5c:d4:2b:6c:6f:df:
6a:2b:46:a7:f9:c0:a5:3e:61:c3:14:6d:30:c8:3f:
99:01:db:cd:74:da:fc:ba:64:ac:74:b9:a0:68:d7:
9b:c9:9f:33:db:da:25:f2:20:f1:e1:1c:4b:b0:dc:
fa:66:a5:70:03:bc:98:bb:6b:bf:d0:66:48:e2:90:
44:d9:d0:56:66:9c:bb:31:b5:39:75:b7:75:9f:f3:
fe:5b:33:80:ab:02:11:38:30:d3:21:c1:bb:c2:b5:
c3:f4:9d:a1:6a:03:07:4b:05:f4:db:4d:73:f9:55:
a2:2b:7a:48:dd:3d:57:57:ae:b3:ad:25:c2:9f:80:
76:aa:70:6b:b7:0d:65:8d:f8:16:26:0e:b5:da:b1:
0b:03:fe:87:22:75:13:43:bc:32:a9:5d:19:f0:3d:
8a:f9:e1:3e:6d:44:a5:68:95:18:a8:ed:a1:00:0a:
43:d3:cd:b5:d4:82:59:13:44:7e:08:7a:63:a0:a4:
58:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:09:23:E2:91:28:4F:E3:BB:B1:0F:A0:C7:69:4A:CC:C5:CB:0D:15
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ugkj4pEoT-O7sQ-gx2lKzMXLDRU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.14.68.0/22
Signature Algorithm: sha256WithRSAEncryption
09:20:8a:36:66:0b:1c:0b:b1:2d:04:fe:d3:66:05:3f:44:70:
a3:0e:8b:ec:f6:f1:c3:9e:99:97:7d:fc:93:25:4a:89:a3:1c:
07:3f:b9:b9:df:f0:6c:93:7e:55:67:0b:1b:34:b3:81:c2:09:
40:0a:1e:d5:3a:15:ba:42:7b:85:0c:23:ea:b0:94:56:c7:2f:
13:31:1e:a4:52:16:a1:00:e9:ca:96:00:e4:a9:80:c6:59:81:
a8:0b:ae:c9:41:4d:6b:de:7e:cb:79:07:6d:0f:6b:3e:c0:29:
dd:50:a7:8b:76:05:11:19:27:e8:83:e1:ff:14:75:f5:96:48:
af:ab:76:83:e0:db:12:7b:aa:6b:05:5b:aa:bb:7b:11:95:b4:
d3:5e:f4:b8:4f:9b:e4:a4:ee:56:ec:f0:4b:37:fc:c6:96:f5:
e8:11:5e:ab:0e:08:ef:dc:2b:2a:de:e3:c9:03:2f:71:95:9e:
b4:d3:1f:59:49:f3:d4:ef:b8:c2:ea:30:28:0f:34:53:17:35:
75:fd:10:d8:2e:9a:47:1b:43:82:4d:94:ee:28:e0:2e:f3:f9:
2b:d3:d2:e0:0e:f5:1a:17:fe:6e:4c:44:a0:c0:41:97:38:f1:
a5:21:6d:e6:26:83:09:be:bb:da:54:61:02:09:17:53:48:49:
f1:ba:a8:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 03:11:26 2024 by rpki-client on console-fra.rpki-client.org