Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/vGeWlWbFjNXdJ64_UOREOks6BkY.roa
File: vGeWlWbFjNXdJ64_UOREOks6BkY.roa (raw, json)
Hash identifier: 2nJ+H1G+S7d6Ho7qLZ+aZ6NK+RQT4FWVQIntmQ3aq9U=
Subject key identifier: BC:67:96:95:66:C5:8C:D5:DD:27:AE:3F:50:E4:44:3A:4B:3A:06:46
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 016E
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vGeWlWbFjNXdJ64_UOREOks6BkY.roa
Signing time: Wed 24 May 2023 16:33:18 +0000
ROA not before: Wed 24 May 2023 16:33:18 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.79.18.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:10:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 366 (0x16e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:33:18 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=BC67969566C58CD5DD27AE3F50E4443A4B3A0646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ab:20:e0:37:a6:a4:cf:81:e8:29:92:1e:39:
cb:10:41:b7:b0:cb:4a:9e:48:a0:15:b1:d6:02:79:
13:14:04:f8:0e:2a:de:bd:fc:81:68:5d:bc:c5:3d:
51:14:62:23:c0:f3:68:c1:4c:75:90:30:73:34:2c:
73:24:08:33:e9:ac:46:77:c1:c0:9f:6d:aa:ae:0e:
65:99:2c:e4:62:e4:0f:58:6e:d9:ff:a0:d2:dc:28:
26:a7:04:6f:7c:f4:9e:d5:85:48:a3:fc:d2:f6:5d:
1b:8f:d0:86:95:c7:cc:01:15:65:82:50:af:94:46:
bb:ad:65:2e:08:29:4a:4f:f8:ac:b0:42:0e:e9:9c:
7b:ec:7c:77:fb:4e:55:72:13:bf:20:27:1a:b1:8d:
b9:21:25:64:3f:29:13:23:cc:2f:34:85:13:b9:2f:
ca:cb:a0:3d:de:d7:33:1f:40:e1:ce:78:f9:b0:23:
59:db:30:f6:41:a4:cc:99:35:b0:ac:37:4a:a4:23:
53:28:09:17:18:d4:92:ed:d6:45:16:a2:52:6d:a9:
d4:fb:3d:22:f7:35:db:b9:24:5a:34:70:13:e2:cb:
9a:e9:6b:ef:f3:02:ce:f5:2b:f6:fc:f9:35:93:2b:
d7:ec:e3:16:ba:db:e4:55:ff:d9:38:cd:c0:1d:cb:
21:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:67:96:95:66:C5:8C:D5:DD:27:AE:3F:50:E4:44:3A:4B:3A:06:46
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/vGeWlWbFjNXdJ64_UOREOks6BkY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.79.18.0/23
Signature Algorithm: sha256WithRSAEncryption
b4:81:c2:eb:ac:ba:2e:56:01:33:63:ab:6b:d9:56:22:2a:da:
7d:b2:f0:1c:9a:b4:4a:18:1a:2e:41:5c:32:65:82:65:0a:cf:
17:e9:f5:2a:a0:23:59:49:c1:cd:14:0f:6f:3c:00:02:d2:f2:
2c:56:79:22:79:ae:3f:ca:4e:45:e9:71:c8:8b:0e:04:7c:09:
05:57:c4:49:6c:4c:e0:bf:4d:89:f9:63:0b:19:d6:2c:62:1e:
e1:0f:55:7f:ee:d7:17:b3:3e:2a:a1:27:89:9e:bf:3a:e9:92:
c3:78:f8:a5:ca:5c:26:0f:7f:de:02:0a:4a:01:bf:00:37:a2:
8f:71:ec:11:cf:d8:60:7e:19:d9:7e:4b:14:6f:6d:92:29:6a:
2d:ea:40:0f:bc:3d:bd:3e:a9:58:fc:15:ad:8d:cb:2d:d2:b1:
84:dc:59:a8:41:9a:29:04:5b:24:a5:5f:22:99:1b:57:ec:56:
bf:e3:9f:b8:37:6e:21:31:a2:04:7c:f8:08:42:ae:d5:12:9f:
dd:e9:88:9e:c8:57:50:8b:47:5e:a0:af:5f:30:a5:1d:ab:e3:
9a:51:70:10:f2:77:6e:eb:c7:a8:a1:6f:08:1e:c7:1f:e9:72:
08:2c:6a:6d:d9:ea:95:8d:03:18:27:65:1e:30:5e:7b:71:e8:
87:29:79:da
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA1MjQx
NjMzMThaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKEJDNjc5Njk1NjZDNThD
RDVERDI3QUUzRjUwRTQ0NDNBNEIzQTA2NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQC5qyDgN6akz4HoKZIeOcsQQbewy0qeSKAVsdYCeRMUBPgOKt69
/IFoXbzFPVEUYiPA82jBTHWQMHM0LHMkCDPprEZ3wcCfbaquDmWZLORi5A9Ybtn/
oNLcKCanBG989J7VhUij/NL2XRuP0IaVx8wBFWWCUK+URrutZS4IKUpP+KywQg7p
nHvsfHf7TlVyE78gJxqxjbkhJWQ/KRMjzC80hRO5L8rLoD3e1zMfQOHOePmwI1nb
MPZBpMyZNbCsN0qkI1MoCRcY1JLt1kUWolJtqdT7PSL3Ndu5JFo0cBPiy5rpa+/z
As71K/b8+TWTK9fs4xa62+RV/9k4zcAdyyElAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUvGeWlWbFjNXdJ64/UOREOks6BkYwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L3ZHZVdsV2JGak5YZEo2NF9VT1JFT2tzNkJrWS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAEBTxIwDQYJKoZIhvcNAQELBQADggEBALSBwuusui5WATNjq2vZViIq2n2y
8ByatEoYGi5BXDJlgmUKzxfp9SqgI1lJwc0UD288AALS8ixWeSJ5rj/KTkXpcciL
DgR8CQVXxElsTOC/TYn5YwsZ1ixiHuEPVX/u1xezPiqhJ4mevzrpksN4+KXKXCYP
f94CCkoBvwA3oo9x7BHP2GB+Gdl+SxRvbZIpai3qQA+8Pb0+qVj8Fa2Nyy3SsYTc
WahBmikEWySlXyKZG1fsVr/jn7g3biExogR8+AhCrtUSn93piJ7IV1CLR16gr18w
pR2r45pRcBDyd27rx6ihbwgexx/pcggsam3Z6pWNAxgnZR4wXntx6Icpedo=
-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:35 2024 by rpki-client on console-fra.rpki-client.org