Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/2AZXZ6puGuaptBdqu5Npg6bcR7c.roa
File: 2AZXZ6puGuaptBdqu5Npg6bcR7c.roa (raw, json)
Hash identifier: H/rmjf/FQ+ifaKI7Ip4gpqzvVh3GHgC5STzuqLEDAUY=
Subject key identifier: D8:06:57:67:AA:6E:1A:E6:A9:B4:17:6A:BB:93:69:83:A6:DC:47:B7
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 0199
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/2AZXZ6puGuaptBdqu5Npg6bcR7c.roa
Signing time: Fri 07 Jul 2023 04:12:41 +0000
ROA not before: Fri 07 Jul 2023 04:12:41 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 10013
IP address blocks: 220.215.42.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 31 May 2024 01:39:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 409 (0x199)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: Jul 7 04:12:41 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=D8065767AA6E1AE6A9B4176ABB936983A6DC47B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:1c:75:34:e4:13:98:b9:cb:1e:40:e8:1a:a5:
c7:87:54:06:01:66:ae:7b:76:15:d4:7b:e9:7c:8a:
cf:9a:e3:c6:e7:a5:5c:7b:99:63:51:30:4d:d0:ae:
3f:78:30:be:83:65:82:98:9c:a2:dd:f9:0f:96:8d:
9d:41:e3:ec:be:8e:73:14:3f:98:6c:9f:94:94:2f:
a0:34:f7:51:05:44:c8:41:3f:92:f0:50:63:9d:21:
17:f3:fb:7f:1b:4f:7b:a7:04:43:75:15:78:cd:5a:
f3:2f:36:7f:c9:56:5c:7e:93:a3:06:cf:1a:d7:e2:
b6:24:a0:c6:7d:0b:f9:94:36:2f:e7:4a:db:ed:4e:
a6:eb:af:c5:8b:70:c4:c2:90:8e:f4:a0:44:d3:d5:
2c:aa:f3:f4:00:59:b8:49:43:ca:31:68:db:77:2e:
cc:cb:14:8c:f0:00:7b:2e:15:2d:b3:73:ff:ff:d3:
db:ff:53:1e:5a:fb:81:55:7a:14:e1:46:71:bb:cd:
06:44:41:33:50:07:58:05:fc:29:cb:54:b9:56:1c:
01:f9:c6:12:e3:f8:30:8b:d2:15:4d:0b:a1:e9:a5:
67:16:60:d6:cf:2b:5c:91:1c:d2:0a:55:96:6c:c0:
44:4a:b4:a9:d1:7c:2a:1b:74:97:4a:2f:c9:18:6f:
61:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:06:57:67:AA:6E:1A:E6:A9:B4:17:6A:BB:93:69:83:A6:DC:47:B7
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/2AZXZ6puGuaptBdqu5Npg6bcR7c.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.215.42.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:f8:10:8a:30:a9:57:dd:a9:35:f6:aa:cd:6c:4d:60:ad:68:
de:71:f6:fa:3f:20:d3:c8:30:5e:21:4d:b9:e7:a1:2a:37:92:
48:8a:5e:8d:39:8c:07:22:76:e0:6e:f5:d1:09:17:ee:8e:f9:
99:3e:a6:93:a6:98:5a:46:9b:b9:ea:42:60:07:0f:be:c9:b5:
bb:14:e9:eb:e2:ab:2d:7d:f7:7e:37:31:ed:70:13:46:7d:f7:
2a:56:49:a9:88:79:ab:e2:67:00:05:84:0c:3e:d1:5f:ac:81:
43:b5:f6:e6:4a:91:cc:e1:0e:fe:21:fd:50:27:0d:c4:f5:20:
09:9d:31:b1:88:08:51:69:7f:7d:33:0a:e9:0d:e3:2c:db:f9:
b4:16:ac:0e:c7:cc:0a:18:e6:f5:fb:d9:9b:7c:e6:a8:68:df:
b9:e1:e7:79:84:4d:e4:54:e3:e5:fd:2d:99:b5:47:67:de:5b:
fd:b4:ba:ae:57:85:96:0e:a0:46:0f:cb:b1:78:39:43:ba:bd:
fe:bb:fc:57:a3:13:ef:38:5f:79:da:39:86:8a:ea:96:d4:11:
0c:ce:c7:5a:0b:ae:9e:fe:5d:1d:0b:33:5f:29:77:b4:35:14:
eb:02:b5:ee:97:02:dc:6a:a8:7f:a4:04:eb:ce:d9:38:1a:c2:
cd:1a:61:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:53 2024 by rpki-client on console-fra.rpki-client.org