Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/y8WpqFvnoFRS0i4NYDdF2c6VRU8.roa
File: y8WpqFvnoFRS0i4NYDdF2c6VRU8.roa (raw, json)
Hash identifier: ws7GL01YFkeH9hWkziLd8Dd0aNUZAyaQamfQGrWNRtc=
Subject key identifier: CB:C5:A9:A8:5B:E7:A0:54:52:D2:2E:0D:60:37:45:D9:CE:95:45:4F
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02FA
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/y8WpqFvnoFRS0i4NYDdF2c6VRU8.roa
Signing time: Thu 01 Jun 2023 16:05:22 +0000
ROA not before: Thu 01 Jun 2023 16:05:22 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.8.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 30 Apr 2024 01:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 762 (0x2fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:05:22 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=CBC5A9A85BE7A05452D22E0D603745D9CE95454F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2f:ea:f8:ba:56:40:2c:8f:42:2c:77:e2:f1:
50:30:40:40:af:e7:69:bb:a8:6f:d5:6b:88:8f:fd:
e4:d9:67:fc:8d:fc:61:21:ba:e4:7a:33:28:a6:9d:
64:d0:6e:05:69:fe:04:34:0d:b2:3c:d4:68:8e:fc:
cd:73:4b:2b:9b:0a:4e:77:99:0d:55:5b:7f:47:d1:
b6:6d:db:8b:70:e1:8d:6f:a2:cb:92:6a:a4:91:47:
b1:5c:dc:f5:00:c4:d2:7c:65:e8:ac:da:2b:5e:82:
50:78:e9:57:e7:bb:ec:44:f4:ba:8a:da:26:54:8d:
92:27:ee:a6:37:2c:7d:8b:89:fa:b6:94:b5:11:49:
04:32:79:1c:69:5c:eb:77:a0:16:65:48:ac:8d:6c:
78:85:cf:29:4f:44:d9:5b:10:9f:54:fd:e0:2e:7a:
27:9e:31:b7:24:f0:80:5a:ed:de:96:5e:55:47:53:
a5:28:b7:b5:77:1b:10:e2:51:2e:06:8d:91:e3:ba:
e3:19:42:86:bf:a8:bc:ef:4a:92:af:f7:24:f7:76:
80:b5:f1:8b:d3:d0:40:6d:fa:8b:c7:57:7f:95:a6:
3c:5d:17:8d:17:0c:75:ff:6f:28:d5:32:34:75:89:
0e:26:a0:9a:3b:f1:80:e5:c8:86:10:93:10:e0:ab:
de:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:C5:A9:A8:5B:E7:A0:54:52:D2:2E:0D:60:37:45:D9:CE:95:45:4F
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/y8WpqFvnoFRS0i4NYDdF2c6VRU8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.8.0/23
Signature Algorithm: sha256WithRSAEncryption
0e:fe:7b:2d:2b:4d:2e:e6:5b:1a:fb:30:46:ef:9d:1e:37:16:
36:ec:ca:9e:ed:52:82:2e:51:db:e7:6b:d6:e8:e2:1e:dc:26:
60:53:91:c1:6a:d9:11:88:c4:f0:01:e9:ba:f8:74:a9:68:4a:
32:47:93:82:04:78:35:dd:1a:82:c6:ae:10:75:42:ae:0e:3b:
d4:2c:2e:51:1e:a1:6f:07:c1:93:48:3f:05:bc:09:5c:84:af:
1c:20:e7:0d:fe:14:82:ce:0a:7d:1e:b8:bc:82:9c:aa:76:36:
cf:3c:42:85:88:03:e9:85:66:10:5d:64:84:23:d2:7c:ca:75:
15:02:5c:60:a6:eb:66:49:af:e2:42:4c:1f:23:5d:4b:09:fe:
9f:4d:5f:1a:d8:bb:ee:2d:6b:b3:46:63:8a:8a:fc:f2:9c:e9:
c2:85:c8:ed:42:c3:d5:7d:54:7d:38:da:a7:cf:b8:49:9d:9f:
65:f1:23:e3:b5:4b:af:d8:b9:38:f0:de:e4:f2:86:12:9e:40:
24:1d:b6:46:ef:d2:fb:85:ee:21:36:85:2e:cc:2a:52:a8:a5:
6e:eb:65:5f:5a:14:7f:0d:b7:7a:0b:46:c2:01:e9:7f:99:7f:
d3:0d:ad:13:bf:1f:8a:e1:1c:42:a9:ec:55:a1:f6:66:66:5d:
78:59:5f:0e
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAvowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yMzA2MDEx
NjA1MjJaFw0yNDA1MTQwMTMwMDJaMDMxMTAvBgNVBAMTKENCQzVBOUE4NUJFN0Ew
NTQ1MkQyMkUwRDYwMzc0NUQ5Q0U5NTQ1NEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDUL+r4ulZALI9CLHfi8VAwQECv52m7qG/Va4iP/eTZZ/yN/GEh
uuR6MyimnWTQbgVp/gQ0DbI81GiO/M1zSyubCk53mQ1VW39H0bZt24tw4Y1vosuS
aqSRR7Fc3PUAxNJ8Zeis2iteglB46Vfnu+xE9LqK2iZUjZIn7qY3LH2Lifq2lLUR
SQQyeRxpXOt3oBZlSKyNbHiFzylPRNlbEJ9U/eAueieeMbck8IBa7d6WXlVHU6Uo
t7V3GxDiUS4GjZHjuuMZQoa/qLzvSpKv9yT3doC18YvT0EBt+ovHV3+VpjxdF40X
DHX/byjVMjR1iQ4moJo78YDlyIYQkxDgq95dAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUy8WpqFvnoFRS0i4NYDdF2c6VRU8wHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L3k4V3BxRnZub0ZSUzBpNE5ZRGRGMmM2VlJVOC5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAExYAgwDQYJKoZIhvcNAQELBQADggEBAA7+ey0rTS7mWxr7MEbvnR43Fjbs
yp7tUoIuUdvna9bo4h7cJmBTkcFq2RGIxPAB6br4dKloSjJHk4IEeDXdGoLGrhB1
Qq4OO9QsLlEeoW8HwZNIPwW8CVyErxwg5w3+FILOCn0euLyCnKp2Ns88QoWIA+mF
ZhBdZIQj0nzKdRUCXGCm62ZJr+JCTB8jXUsJ/p9NXxrYu+4ta7NGY4qK/PKc6cKF
yO1Cw9V9VH042qfPuEmdn2XxI+O1S6/YuTjw3uTyhhKeQCQdtkbv0vuF7iE2hS7M
KlKopW7rZV9aFH8Nt3oLRsIB6X+Zf9MNrRO/H4rhHEKp7FWh9mZmXXhZXw4=
-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:36 2024 by rpki-client on console-fra.rpki-client.org