Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/yg0BWsrrgS1-AItaqznhGOI4yNU.roa
File: yg0BWsrrgS1-AItaqznhGOI4yNU.roa (raw, json)
Hash identifier: QUDhpIGUBOcJYi7Ejm+yaSOZQ45abIuOfUEvBXyQryc=
Subject key identifier: CA:0D:01:5A:CA:EB:81:2D:7E:00:8B:5A:AB:39:E1:18:E2:38:C8:D5
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 68
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yg0BWsrrgS1-AItaqznhGOI4yNU.roa
Signing time: Mon 27 Mar 2023 16:04:34 +0000
ROA not before: Mon 27 Mar 2023 16:04:34 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.66.105.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:35:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104 (0x68)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:34 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=CA0D015ACAEB812D7E008B5AAB39E118E238C8D5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:75:e2:1e:8d:99:7a:f6:a6:be:df:ca:5c:e8:
69:d7:9f:86:96:40:f6:7d:50:5d:5f:8a:fe:c4:9d:
a3:20:85:31:ff:fc:19:9a:e1:40:46:92:14:5a:19:
c8:e2:8d:4b:11:f6:95:9e:7a:a5:f6:b5:33:1e:5d:
29:bf:88:69:5e:7d:a5:69:63:c0:28:16:b3:b1:60:
3d:d6:e4:49:f4:8c:59:44:4f:b6:ef:6b:5c:0f:c9:
f7:2d:71:b5:f5:21:b2:d3:d9:58:68:82:a9:53:4e:
5c:b8:31:de:9a:99:58:f5:c2:9b:17:f1:11:32:b7:
81:e8:de:94:17:d6:c8:50:ad:92:d9:ba:5e:fa:f2:
32:9c:cb:5c:d9:14:ea:6c:44:cb:4b:67:2c:1a:7a:
3f:cc:f1:ca:7d:15:ae:8d:ac:0e:6e:2f:91:09:c1:
4e:a5:a8:8d:f3:77:bc:45:b9:16:d9:f5:4a:8c:39:
78:ac:6b:ca:b7:bc:d1:a5:4c:7d:60:8f:9d:99:7b:
2b:7f:a5:a7:0b:82:84:5a:02:70:69:6a:42:7c:25:
0f:f0:0c:8d:2a:34:77:3e:85:73:bb:9d:0e:85:22:
b6:7e:df:80:96:cf:a9:cc:2b:4a:b5:fd:ef:6e:b2:
4b:97:0c:9d:ab:70:6c:cf:58:43:7d:ac:e9:7b:81:
91:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:0D:01:5A:CA:EB:81:2D:7E:00:8B:5A:AB:39:E1:18:E2:38:C8:D5
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/yg0BWsrrgS1-AItaqznhGOI4yNU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.66.105.0/24
Signature Algorithm: sha256WithRSAEncryption
64:cc:ac:3e:8c:72:d5:f0:86:b4:99:e4:22:6e:f6:89:a7:89:
b6:2d:a6:79:e1:f0:37:62:e7:97:2c:93:fb:ef:c8:5c:f0:06:
02:ec:b2:2e:d7:ef:d0:42:ec:8e:11:0b:65:65:1a:af:5b:01:
9a:ea:7e:7e:44:90:62:36:7c:c5:48:3c:7e:4f:b4:81:14:ef:
06:bd:b9:94:07:de:92:8a:f6:68:79:e8:19:91:b5:71:08:5b:
b4:70:c6:0b:e8:1a:bc:f0:18:b3:17:93:63:98:81:59:af:51:
bf:a5:c3:68:9c:95:cc:50:83:84:96:7e:04:e2:f5:5e:93:37:
b0:d6:41:3f:64:3e:1f:6f:7f:4d:f5:bf:62:3a:72:9e:ad:42:
e9:94:a5:32:e4:ad:82:16:e5:4d:82:06:ca:80:82:f3:df:a6:
30:6d:e5:72:79:f9:8e:09:ec:18:0f:48:cf:7b:61:89:1a:e3:
79:97:ed:2f:27:34:87:61:e7:d8:4a:5c:9c:10:1c:c9:62:ee:
4c:d3:9b:11:15:f3:18:ba:0c:6d:59:6b:05:f8:57:25:6d:64:
a1:53:42:d9:5f:51:02:ae:bf:60:4a:0d:45:2b:b7:f5:05:bd:
b2:f2:b2:96:0b:72:2b:6b:f0:97:a5:e4:b0:b2:5f:a0:7f:92:
39:26:57:19
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBaDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2OTY1
QjBCMjBEREUwN0E0Qzk3OEUyNDA3M0VBMEUxMTE3QjM3NDczMB4XDTIzMDMyNzE2
MDQzNFoXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoQ0EwRDAxNUFDQUVCODEy
RDdFMDA4QjVBQUIzOUUxMThFMjM4QzhENTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKR14h6NmXr2pr7fylzoadefhpZA9n1QXV+K/sSdoyCFMf/8GZrh
QEaSFFoZyOKNSxH2lZ56pfa1Mx5dKb+IaV59pWljwCgWs7FgPdbkSfSMWURPtu9r
XA/J9y1xtfUhstPZWGiCqVNOXLgx3pqZWPXCmxfxETK3gejelBfWyFCtktm6Xvry
MpzLXNkU6mxEy0tnLBp6P8zxyn0Vro2sDm4vkQnBTqWojfN3vEW5Ftn1Sow5eKxr
yre80aVMfWCPnZl7K3+lpwuChFoCcGlqQnwlD/AMjSo0dz6Fc7udDoUitn7fgJbP
qcwrSrX9726yS5cMnatwbM9YQ32s6XuBkYMCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBTKDQFayuuBLX4Ai1qrOeEY4jjI1TAfBgNVHSMEGDAWgBRpZbCyDd4HpMl44kBz
6g4RF7N0czAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzA5L2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJlemRITS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJl
emRITS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8zMDkveWcwQldzcnJnUzEtQUl0YXF6bmhHT0k0eU5VLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAAFCaTANBgkqhkiG9w0BAQsFAAOCAQEAZMysPoxy1fCGtJnkIm72iaeJti2m
eeHwN2LnlyyT++/IXPAGAuyyLtfv0ELsjhELZWUar1sBmup+fkSQYjZ8xUg8fk+0
gRTvBr25lAfekor2aHnoGZG1cQhbtHDGC+gavPAYsxeTY5iBWa9Rv6XDaJyVzFCD
hJZ+BOL1XpM3sNZBP2Q+H29/TfW/Yjpynq1C6ZSlMuStghblTYIGyoCC89+mMG3l
cnn5jgnsGA9Iz3thiRrjeZftLyc0h2Hn2EpcnBAcyWLuTNObERXzGLoMbVlrBfhX
JW1koVNC2V9RAq6/YEoNRSu39QW9svKylgtyK2vwl6XksLJfoH+SOSZXGQ==
-----END CERTIFICATE-----
Generated at Thu Feb 29 02:02:26 2024 by rpki-client on console-ams.rpki-client.org