Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/39002/2ZCnhG7oB25ECjKbvuPptU0Vl7Q.roa
File: 2ZCnhG7oB25ECjKbvuPptU0Vl7Q.roa (raw, json)
Hash identifier: fAQrDDXnIr3HaqfSZ7W1G9dgiK/1MgphZ3a/VeTl7dE=
Subject key identifier: D9:90:A7:84:6E:E8:07:6E:44:0A:32:9B:BE:E3:E9:B5:4D:15:97:B4
Certificate issuer: /CN=F974F9EB3E6B6AD8B1EAEA0A461D248D3ACDCDE2
Certificate serial: 02
Authority key identifier: F9:74:F9:EB:3E:6B:6A:D8:B1:EA:EA:0A:46:1D:24:8D:3A:CD:CD:E2
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-XT56z5ratix6uoKRh0kjTrNzeI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/2ZCnhG7oB25ECjKbvuPptU0Vl7Q.roa
Signing time: Fri 30 Sep 2022 06:38:59 +0000
ROA not before: Fri 30 Sep 2022 06:38:59 +0000
ROA not after: Fri 22 Sep 2023 06:51:10 +0000
asID: 0
IP address blocks: 2001:de8:8::/64 maxlen: 128
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F974F9EB3E6B6AD8B1EAEA0A461D248D3ACDCDE2
Validity
Not Before: Sep 30 06:38:59 2022 GMT
Not After : Sep 22 06:51:10 2023 GMT
Subject: CN=D990A7846EE8076E440A329BBEE3E9B54D1597B4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:86:43:b8:c1:2a:4d:39:90:d4:fc:b5:60:07:
08:21:87:dc:72:51:1e:30:8b:29:01:72:fd:5d:80:
5a:65:32:6b:fc:a8:20:61:75:35:fe:ea:65:71:67:
42:4f:d9:46:9f:b7:e0:b0:27:89:d7:4b:68:73:69:
c4:a7:c8:2a:a7:f0:ab:aa:f9:b2:9d:ec:74:dc:5b:
36:9b:ea:0e:91:38:47:96:72:f9:9c:55:fc:3d:7c:
8c:2a:b3:d9:99:da:da:63:bb:ed:47:61:c7:c7:e7:
8f:32:c4:a5:65:05:be:63:49:be:c6:93:08:51:1a:
67:d6:bb:12:d6:e5:b0:47:06:2b:74:a0:94:db:82:
79:88:2a:a1:b6:a7:2d:15:b7:a4:72:d1:eb:93:f9:
9a:02:d8:46:7f:61:a6:3e:cf:e7:be:c5:c3:9b:8a:
16:2d:8f:93:4e:9d:2c:f7:66:3d:85:a7:a8:93:9d:
23:b1:ac:2f:f6:18:4d:e1:f9:c7:eb:50:29:4c:fa:
7f:c3:04:51:ac:ee:64:b2:64:8c:9d:f4:03:cf:38:
35:e8:91:1a:43:8c:aa:02:0d:ad:4e:b2:4f:d1:8c:
1e:96:83:d8:3d:54:f7:e3:5b:65:7e:d2:dd:81:41:
43:cb:84:12:27:59:f6:2b:ea:f6:bf:aa:98:9f:e6:
c0:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:90:A7:84:6E:E8:07:6E:44:0A:32:9B:BE:E3:E9:B5:4D:15:97:B4
X509v3 Authority Key Identifier:
keyid:F9:74:F9:EB:3E:6B:6A:D8:B1:EA:EA:0A:46:1D:24:8D:3A:CD:CD:E2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/-XT56z5ratix6uoKRh0kjTrNzeI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-XT56z5ratix6uoKRh0kjTrNzeI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/39002/2ZCnhG7oB25ECjKbvuPptU0Vl7Q.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:de8:8::/64
Signature Algorithm: sha256WithRSAEncryption
72:20:db:00:45:c5:1c:20:9d:1e:61:f3:b0:f5:23:df:67:41:
d3:cc:0f:7c:3b:18:dc:e3:ac:c7:2c:17:fe:1f:5b:13:c0:17:
f7:04:de:95:02:d0:2a:cf:c1:b1:54:5b:42:ac:83:8f:90:22:
75:f8:dd:5f:04:da:9f:57:ae:3e:e1:62:ad:df:d6:e7:c8:70:
de:fc:9e:73:2d:5e:5e:05:e0:e8:b0:9a:33:a3:43:fa:d8:bb:
f1:6e:36:d5:4e:b6:9c:11:62:c9:57:fc:d4:1b:3b:aa:6a:e9:
b6:aa:db:ca:5a:dc:9a:fc:ff:8a:50:d8:31:c5:1d:81:86:a5:
fe:45:9f:f0:4f:a0:f8:38:4e:ec:84:a3:53:64:da:b3:80:07:
f7:39:8d:44:ef:75:56:40:02:c3:34:da:c0:c4:c6:76:bc:19:
30:5f:71:27:ef:0e:5a:1e:5a:ed:b5:b8:b9:5d:42:21:b8:72:
a3:56:98:eb:98:ff:73:d7:7c:3e:86:ae:78:ce:1d:c3:74:de:
8a:cc:0c:c8:75:f3:55:fb:b9:b7:1b:e0:e8:85:f4:c8:f3:73:
7f:e0:72:25:59:df:3d:8d:d7:99:45:86:2c:78:a6:60:5d:57:
80:7e:35:8d:71:5b:d2:e5:f4:5e:63:41:84:11:64:7f:7d:30:
65:fe:33:62
-----BEGIN CERTIFICATE-----
MIIFEDCCA/igAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhGOTc0
RjlFQjNFNkI2QUQ4QjFFQUVBMEE0NjFEMjQ4RDNBQ0RDREUyMB4XDTIyMDkzMDA2
Mzg1OVoXDTIzMDkyMjA2NTExMFowMzExMC8GA1UEAxMoRDk5MEE3ODQ2RUU4MDc2
RTQ0MEEzMjlCQkVFM0U5QjU0RDE1OTdCNDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMaGQ7jBKk05kNT8tWAHCCGH3HJRHjCLKQFy/V2AWmUya/yoIGF1
Nf7qZXFnQk/ZRp+34LAniddLaHNpxKfIKqfwq6r5sp3sdNxbNpvqDpE4R5Zy+ZxV
/D18jCqz2Zna2mO77Udhx8fnjzLEpWUFvmNJvsaTCFEaZ9a7EtblsEcGK3SglNuC
eYgqobanLRW3pHLR65P5mgLYRn9hpj7P577Fw5uKFi2Pk06dLPdmPYWnqJOdI7Gs
L/YYTeH5x+tQKUz6f8MEUazuZLJkjJ30A884NeiRGkOMqgINrU6yT9GMHpaD2D1U
9+NbZX7S3YFBQ8uEEidZ9ivq9r+qmJ/mwBUCAwEAAaOCAi0wggIpMB0GA1UdDgQW
BBTZkKeEbugHbkQKMpu+4+m1TRWXtDAfBgNVHSMEGDAWgBT5dPnrPmtq2LHq6gpG
HSSNOs3N4jAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGgGA1UdHwRhMF8wXaBb
oFmGV3JzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzkwMDIvLVhUNTZ6NXJhdGl4NnVvS1JoMGtqVHJOemVJLmNybDBtBggr
BgEFBQcBAQRhMF8wXQYIKwYBBQUHMAKGUXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5
Lm5pYy5hZC5qcC9hcC9BOTFBNzM4MTAwMDAvLVhUNTZ6NXJhdGl4NnVvS1JoMGtq
VHJOemVJLmNlcjAOBgNVHQ8BAf8EBAMCB4Awgb0GCCsGAQUFBwELBIGwMIGtMGMG
CCsGAQUFBzALhldyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAv
QTkxQTczODEwMDAwLzM5MDAyLzJaQ25oRzdvQjI1RUNqS2J2dVBwdFUwVmw3US5y
b2EwRgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5q
cC9ycmRwL2FwL25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8EFTATMBEE
AgACMAsDCQAgAQ3oAAgAADANBgkqhkiG9w0BAQsFAAOCAQEAciDbAEXFHCCdHmHz
sPUj32dB08wPfDsY3OOsxywX/h9bE8AX9wTelQLQKs/BsVRbQqyDj5AidfjdXwTa
n1euPuFird/W58hw3vyecy1eXgXg6LCaM6ND+ti78W421U62nBFiyVf81Bs7qmrp
tqrbylrcmvz/ilDYMcUdgYal/kWf8E+g+DhO7ISjU2Tas4AH9zmNRO91VkACwzTa
wMTGdrwZMF9xJ+8OWh5a7bW4uV1CIbhyo1aY65j/c9d8PoaueM4dw3TeiswMyHXz
Vfu5txvg6IX0yPNzf+ByJVnfPY3XmUWGLHimYF1XgH41jXFb0uX0XmNBhBFkf30w
Zf4zYg==
-----END CERTIFICATE-----
Generated at Fri Sep 8 07:48:31 2023 by rpki-client on console-fra.rpki-client.org