Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/354/Z5gz7PDe-aya4bJ_bQ78xGKJ6Ww.roa
File: Z5gz7PDe-aya4bJ_bQ78xGKJ6Ww.roa (raw, json)
Hash identifier: 7sb8njQ992JxO/ssHhn9rMcegWsc3apApmoYbEY/0cc=
Subject key identifier: 67:98:33:EC:F0:DE:F9:AC:9A:E1:B2:7F:6D:0E:FC:C4:62:89:E9:6C
Certificate issuer: /CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Certificate serial: C2
Authority key identifier: 0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/Z5gz7PDe-aya4bJ_bQ78xGKJ6Ww.roa
Signing time: Sat 01 Jul 2023 01:30:25 +0000
ROA not before: Sat 01 Jul 2023 01:30:25 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 9607
IP address blocks: 124.147.0.0/20 maxlen: 20
Validation: Failed, certificate revoked on Fri 31 May 2024 01:30:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 194 (0xc2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0A5ACAC2990BD8F8655C0C721BACFF030A59D1FC
Validity
Not Before: Jul 1 01:30:25 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=679833ECF0DEF9AC9AE1B27F6D0EFCC46289E96C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:43:57:b5:0f:26:48:97:d9:0e:0b:7a:b9:d2:
d4:a4:eb:d1:45:31:db:b8:ed:fa:3e:b9:60:21:a5:
34:02:bb:cf:84:de:ba:f4:03:07:9b:eb:19:de:23:
e9:a8:21:21:ff:b7:7f:9f:9c:78:df:c2:79:ff:eb:
70:ea:7f:72:10:b7:c0:76:70:e8:76:d7:83:fc:8a:
88:27:c7:8f:f4:d7:07:47:94:26:f4:f6:5e:8f:07:
80:18:70:d1:37:6c:3c:d9:f9:8b:15:ca:a9:42:b7:
a7:46:11:13:b8:ba:e0:bd:22:eb:a9:96:00:e8:19:
cf:f5:71:d9:dc:22:13:1d:8f:f7:2d:bc:26:95:dd:
9a:fd:15:c4:1c:3d:0c:b7:83:7c:cc:51:9a:2b:f2:
60:19:3f:54:da:54:42:d0:f2:1a:d2:e3:6e:46:f0:
99:61:64:b6:2a:5c:b3:0b:f4:4b:b4:b1:26:0b:e2:
d5:85:a2:ac:0b:bb:86:b0:61:18:4e:d4:ec:b9:df:
71:10:31:c5:2a:ed:b8:37:c2:46:ab:20:8a:55:20:
c5:95:01:fa:a0:cc:f9:32:88:cd:80:59:f3:23:8c:
95:5e:2f:07:02:ff:5a:2a:2c:e0:24:d8:c0:ba:33:
29:64:f4:7d:16:12:07:7f:3f:b1:da:4e:5d:c1:f1:
f8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:98:33:EC:F0:DE:F9:AC:9A:E1:B2:7F:6D:0E:FC:C4:62:89:E9:6C
X509v3 Authority Key Identifier:
keyid:0A:5A:CA:C2:99:0B:D8:F8:65:5C:0C:72:1B:AC:FF:03:0A:59:D1:FC
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ClrKwpkL2PhlXAxyG6z_AwpZ0fw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/354/Z5gz7PDe-aya4bJ_bQ78xGKJ6Ww.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
124.147.0.0/20
Signature Algorithm: sha256WithRSAEncryption
9a:7a:d2:36:1d:5e:51:e9:0f:de:21:6e:0d:60:73:c0:2f:21:
0f:1e:d2:9e:3e:21:dd:5f:58:f9:19:9d:cc:8a:cf:90:cb:e2:
38:91:44:09:63:68:12:4a:3d:6a:ab:2c:17:7e:1d:65:e2:a3:
23:a8:4b:c9:86:a4:86:f7:c2:3d:2b:51:d5:3e:f9:8b:d9:f5:
67:de:12:fd:4e:1b:27:de:3f:8e:54:40:5f:8f:89:54:9f:ee:
04:e5:84:8f:ae:3f:10:f2:90:ee:fc:90:43:e1:58:1d:34:ff:
75:99:9f:53:f8:5e:d2:09:57:fc:3b:77:ba:39:4c:fa:d0:e5:
7b:3c:50:70:b3:48:64:82:66:82:a5:f6:1c:09:c4:ee:f4:04:
cd:9a:2a:a7:3a:75:c0:80:73:a4:cd:32:5e:02:59:61:09:06:
31:a8:d2:28:e7:f9:16:3c:7e:c2:6f:1e:4f:a6:58:c3:90:6a:
e8:85:fc:5a:b0:29:4f:a8:52:c1:da:23:cc:e5:c0:76:98:d5:
44:1c:1a:fe:d9:f6:f3:12:f5:71:ec:91:8a:8b:b1:cc:70:f4:
c4:0c:78:fd:35:45:11:b5:bf:1d:b3:fa:3f:4e:3c:85:ca:03:
49:3a:cb:3e:e9:eb:c6:f6:f9:e2:ee:28:c2:33:df:5d:c7:1e:
4f:e9:70:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 31 04:12:40 2024 by rpki-client on console-fra.rpki-client.org