Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/C65wRy_j6Mfr9BTW2TvVGNN91SE.roa
File: C65wRy_j6Mfr9BTW2TvVGNN91SE.roa (raw, json)
Hash identifier: 7ra9CVZH5k3jJ7ouww6xM5AMK+tJHVbF82nN7oEcR20=
Subject key identifier: 0B:AE:70:47:2F:E3:E8:C7:EB:F4:14:D6:D9:3B:D5:18:D3:7D:D5:21
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 016C
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/C65wRy_j6Mfr9BTW2TvVGNN91SE.roa
Signing time: Fri 07 Jul 2023 04:10:37 +0000
ROA not before: Fri 07 Jul 2023 04:10:37 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 10013
IP address blocks: 59.156.0.0/20 maxlen: 20
Validation: Failed, certificate revoked on Fri 31 May 2024 01:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 364 (0x16c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: Jul 7 04:10:37 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=0BAE70472FE3E8C7EBF414D6D93BD518D37DD521
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:a1:a3:4b:99:7d:f5:59:15:bc:90:2c:e7:44:
44:47:3d:d8:b6:1c:d1:8c:31:60:64:f9:cf:74:10:
71:d7:98:56:1b:fb:3b:ed:1b:a9:71:9e:a4:c9:4e:
21:bf:a8:9b:5e:9a:75:ee:d9:75:6f:85:9f:4c:22:
c7:a9:98:1f:e0:ee:c5:1b:25:3c:27:b1:4b:df:cd:
59:b2:33:75:86:b8:cd:b8:f2:df:b2:64:55:6a:0a:
cb:9e:5d:92:88:3e:8c:52:a8:44:98:20:18:02:82:
63:63:da:ce:88:4b:f0:0f:24:53:a7:ee:22:13:82:
06:1d:d0:7c:0b:7c:2f:e0:a6:93:44:34:54:d6:75:
32:04:c9:76:4b:f6:90:67:9b:64:15:8c:58:e5:4c:
95:5e:7c:3c:01:a1:55:4e:c5:33:27:76:b0:16:b8:
72:10:bb:80:6f:cb:2f:30:bc:f0:71:ad:7a:1e:43:
52:f4:40:8b:d1:b9:4b:4b:a4:3e:27:ff:66:e6:c3:
33:c6:20:e9:73:24:5a:46:7e:27:59:84:7d:16:dd:
fe:68:cf:c3:4d:3a:d8:b9:cc:4e:c3:0f:be:3c:12:
8d:03:4d:8a:49:c9:52:90:0e:1f:9f:17:c8:ac:c6:
f1:7f:7d:9f:a4:6d:0b:ec:91:ed:f9:93:3c:c0:41:
82:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:AE:70:47:2F:E3:E8:C7:EB:F4:14:D6:D9:3B:D5:18:D3:7D:D5:21
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/C65wRy_j6Mfr9BTW2TvVGNN91SE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.156.0.0/20
Signature Algorithm: sha256WithRSAEncryption
49:14:d0:b1:8d:7d:b7:32:16:6a:05:9f:48:73:0e:89:19:94:
74:9f:c2:d2:92:fe:10:15:ed:2f:6d:a5:8f:54:04:43:42:9d:
fe:52:2e:32:da:36:5a:6b:c8:ec:14:71:48:ed:2d:66:e3:99:
46:eb:07:83:dc:ff:57:27:e4:9b:86:ac:17:07:d5:07:ee:97:
ed:6b:d0:00:e6:a9:d4:14:c3:f9:7b:cf:68:12:c4:f6:af:81:
3d:1a:06:cf:46:62:7a:d7:a6:bd:76:05:0d:db:75:3b:33:e7:
73:2f:6f:2e:05:d8:ab:cf:33:87:49:be:8d:aa:a8:68:b3:22:
6a:e7:34:0e:ed:36:66:31:15:ce:bd:7a:12:21:d8:92:58:a6:
20:c0:92:30:b5:d6:f7:a0:0d:43:d1:32:b1:2c:dd:cb:b1:83:
c5:3b:5d:de:6a:f5:85:0c:3d:e0:d8:6c:27:9c:d6:63:a9:48:
ab:d7:4e:c3:33:a8:68:37:f9:75:5b:10:df:9f:cb:cf:06:a4:
8b:4f:90:b0:fe:ea:48:db:73:f1:6a:d7:8a:17:52:7a:b7:27:
2b:be:c2:0b:b4:2c:05:37:f0:43:a5:4c:a5:5e:04:6e:55:bc:
b3:99:f0:09:4e:57:35:4e:84:c1:3b:06:2b:84:f8:22:ac:f6:
0f:77:1c:1c
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAWwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3
MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yMzA3MDcw
NDEwMzdaFw0yNDA2MTQwMTMwMDJaMDMxMTAvBgNVBAMTKDBCQUU3MDQ3MkZFM0U4
QzdFQkY0MTRENkQ5M0JENTE4RDM3REQ1MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCqoaNLmX31WRW8kCznRERHPdi2HNGMMWBk+c90EHHXmFYb+zvt
G6lxnqTJTiG/qJtemnXu2XVvhZ9MIsepmB/g7sUbJTwnsUvfzVmyM3WGuM248t+y
ZFVqCsueXZKIPoxSqESYIBgCgmNj2s6IS/APJFOn7iITggYd0HwLfC/gppNENFTW
dTIEyXZL9pBnm2QVjFjlTJVefDwBoVVOxTMndrAWuHIQu4Bvyy8wvPBxrXoeQ1L0
QIvRuUtLpD4n/2bmwzPGIOlzJFpGfidZhH0W3f5oz8NNOti5zE7DD748Eo0DTYpJ
yVKQDh+fF8isxvF/fZ+kbQvske35kzzAQYJtAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUC65wRy/j6Mfr9BTW2TvVGNN91SEwHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp
qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR
Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzk0L0M2NXdSeV9qNk1mcjlCVFcyVHZWR05OOTFTRS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAQ7nAAwDQYJKoZIhvcNAQELBQADggEBAEkU0LGNfbcyFmoFn0hzDokZlHSf
wtKS/hAV7S9tpY9UBENCnf5SLjLaNlpryOwUcUjtLWbjmUbrB4Pc/1cn5JuGrBcH
1Qful+1r0ADmqdQUw/l7z2gSxPavgT0aBs9GYnrXpr12BQ3bdTsz53Mvby4F2KvP
M4dJvo2qqGizImrnNA7tNmYxFc69ehIh2JJYpiDAkjC11vegDUPRMrEs3cuxg8U7
Xd5q9YUMPeDYbCec1mOpSKvXTsMzqGg3+XVbEN+fy88GpItPkLD+6kjbc/Fq14oX
Unq3Jyu+wgu0LAU38EOlTKVeBG5VvLOZ8AlOVzVOhME7BiuE+CKs9g93HBw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:53 2024 by rpki-client on console-fra.rpki-client.org