Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/393/HaX4cVy12W8QnlzxE417A4UyBpg.roa
File: HaX4cVy12W8QnlzxE417A4UyBpg.roa (raw, json)
Hash identifier: vHpY9zgeiUZxeaQk8Q9BovKh7kKHkfNhz6rK3xkMgfY=
Subject key identifier: 1D:A5:F8:71:5C:B5:D9:6F:10:9E:5C:F1:13:8D:7B:03:85:32:06:98
Certificate issuer: /CN=5D055B2DAAC48878CC9B1127A29CF11666920A23
Certificate serial: 64
Authority key identifier: 5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/HaX4cVy12W8QnlzxE417A4UyBpg.roa
Signing time: Thu 29 Feb 2024 01:31:44 +0000
ROA not before: Thu 29 Feb 2024 01:31:44 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 9622
IP address blocks: 219.100.64.0/22 maxlen: 32
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:34:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100 (0x64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D055B2DAAC48878CC9B1127A29CF11666920A23
Validity
Not Before: Feb 29 01:31:44 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=1DA5F8715CB5D96F109E5CF1138D7B0385320698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:dc:a7:0a:bb:03:08:52:d4:05:36:04:45:11:
94:61:ac:af:25:2e:3c:7e:b8:8d:e4:72:ad:4c:cc:
e9:f5:a8:ac:49:96:2c:ac:d2:cf:2b:fc:a5:c7:f5:
ca:28:86:04:82:50:1a:3f:fb:41:6c:30:d2:37:f4:
88:a4:44:5c:de:e6:56:bb:5c:e8:1a:53:ee:29:97:
5e:21:ba:38:44:99:df:55:9d:94:60:3c:9c:8a:19:
c7:1c:ba:c2:a7:6d:9e:a0:70:c8:29:42:9c:75:fa:
5b:95:bf:27:90:f5:3c:25:31:fa:33:54:46:c1:2b:
01:c7:ec:a5:54:66:3d:51:ce:e9:a9:65:a7:26:4e:
54:98:3c:ab:bd:a7:b2:26:d9:0b:83:5f:14:27:71:
85:eb:01:10:59:15:4a:85:3b:5b:f3:a5:07:32:db:
de:13:10:2b:1e:39:1a:8b:4d:b9:d6:b8:67:75:fd:
e7:50:c3:d9:ef:fb:00:da:8a:67:95:5c:41:07:41:
96:19:83:a8:04:14:53:e2:5b:9c:e5:06:82:69:a7:
65:79:1d:a4:1c:21:24:fe:31:45:8f:b0:65:af:a2:
03:13:c5:35:57:be:d8:93:84:3c:e4:68:ab:a6:80:
12:26:8b:fd:93:5b:8e:d5:08:31:ba:32:c4:9f:7d:
17:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A5:F8:71:5C:B5:D9:6F:10:9E:5C:F1:13:8D:7B:03:85:32:06:98
X509v3 Authority Key Identifier:
keyid:5D:05:5B:2D:AA:C4:88:78:CC:9B:11:27:A2:9C:F1:16:66:92:0A:23
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/XQVbLarEiHjMmxEnopzxFmaSCiM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XQVbLarEiHjMmxEnopzxFmaSCiM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/393/HaX4cVy12W8QnlzxE417A4UyBpg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.100.64.0/22
Signature Algorithm: sha256WithRSAEncryption
17:39:13:4a:90:f7:e4:0b:8b:3b:a6:d2:13:2e:53:2c:12:a4:
cb:66:9c:42:df:8d:48:dc:8d:7b:4b:aa:52:00:2f:4d:1e:48:
05:ef:e6:ad:36:84:0c:78:74:57:24:5f:67:7c:0d:64:a9:62:
c6:58:cf:6e:2b:4c:bc:50:5c:50:1f:84:1e:63:d7:63:82:d6:
6f:63:8d:23:b2:33:12:bd:36:c5:1a:09:f7:e6:9e:54:4b:ab:
5e:54:ee:4d:ff:05:e6:80:98:45:2b:ad:bf:51:c5:a4:19:33:
8e:0d:b2:6d:a9:81:83:97:f9:0f:c0:31:01:e6:73:e6:cf:f7:
b2:9b:2e:be:f6:c1:ce:14:89:d6:37:20:39:a7:49:c6:44:af:
b7:8e:f2:ef:2c:2b:69:53:a0:5c:50:98:c8:4a:21:7d:b8:12:
79:86:73:c7:2a:98:d1:11:99:dd:6b:ac:1d:61:38:54:77:98:
04:2b:d6:c6:f5:49:d2:2f:4c:18:2e:27:4f:07:4d:3a:b9:7f:
9d:f5:e3:4a:9d:70:dc:c7:db:4f:6c:74:4a:bf:91:0c:08:d0:
00:3d:a4:48:29:74:04:4c:b6:c5:43:85:a8:14:04:1a:17:b7:
d4:48:2f:b9:6a:37:4d:1c:a9:c2:78:1a:d5:a1:6b:9d:c2:92:
a0:a5:8f:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:19:25 2025 by rpki-client