Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/lFJZCWByWvkEEJ4lqjz7RdZbbnQ.roa
File: lFJZCWByWvkEEJ4lqjz7RdZbbnQ.roa (raw, json)
Hash identifier: SKKKlxM1HYaOumOU4lRC5pO9V6fVhpNN9VLT4dAIJ18=
Subject key identifier: 94:52:59:09:60:72:5A:F9:04:10:9E:25:AA:3C:FB:45:D6:5B:6E:74
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 014C
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/lFJZCWByWvkEEJ4lqjz7RdZbbnQ.roa
Signing time: Fri 07 Jul 2023 04:08:26 +0000
ROA not before: Fri 07 Jul 2023 04:08:26 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 10013
IP address blocks: 219.109.80.0/20 maxlen: 20
Validation: Failed, certificate revoked on Fri 31 May 2024 01:33:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 332 (0x14c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: Jul 7 04:08:26 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=9452590960725AF904109E25AA3CFB45D65B6E74
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:1c:c6:7a:b6:8c:c0:6b:ec:38:73:5c:8b:26:
b2:c8:35:4a:50:10:0d:95:99:17:92:74:c8:ce:04:
de:e3:3d:e3:00:ee:4f:72:1d:e8:93:98:ec:d9:47:
58:27:98:7f:4e:17:06:7a:91:8b:f8:46:7d:b1:05:
ad:d6:b6:65:10:00:80:d9:cb:1c:f1:3c:e8:ad:32:
27:82:33:de:d7:2d:80:8d:81:d1:10:a0:e1:4e:ad:
88:f2:f4:85:72:93:e8:3d:ed:f4:c8:12:a8:d1:72:
ce:1e:e1:56:85:f3:e0:3d:5f:7d:33:c7:d0:30:7a:
b7:12:7a:80:76:e9:dd:27:42:d6:e6:51:0b:3b:9b:
da:00:15:25:5a:da:cd:34:81:97:f6:d8:b5:e6:03:
99:26:11:ab:a6:f7:43:4a:78:4f:d6:22:1e:c8:2f:
70:c2:6d:e3:72:6b:e7:35:21:a7:a5:20:3f:97:a7:
85:72:ce:72:ea:ca:63:d2:66:8b:07:1d:89:f3:5d:
4d:12:92:37:e8:80:68:9e:35:bf:c4:71:eb:13:55:
2c:c6:58:d4:ed:22:35:2c:b0:a2:de:23:00:b5:01:
39:e3:2e:fd:12:ef:61:db:5b:22:0e:2c:82:df:1d:
88:db:09:2d:92:88:cb:13:79:67:bc:16:17:8c:88:
e9:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:52:59:09:60:72:5A:F9:04:10:9E:25:AA:3C:FB:45:D6:5B:6E:74
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/lFJZCWByWvkEEJ4lqjz7RdZbbnQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.109.80.0/20
Signature Algorithm: sha256WithRSAEncryption
96:ad:09:fd:02:a2:50:4e:5a:70:5b:d4:ec:d8:5f:21:b0:d5:
00:ab:f0:f9:82:e1:e1:03:d3:bb:c8:cf:64:f3:99:fe:70:36:
52:e8:a4:65:b4:87:6b:45:14:b2:f4:61:83:12:fd:08:fc:58:
ea:ad:2c:36:31:ca:ce:8b:16:28:c5:f3:bd:a7:06:77:5a:0a:
a3:e2:1c:27:82:1e:cd:4a:ed:76:87:c7:b1:57:f9:68:16:e3:
b0:85:09:fb:6e:5e:f8:a6:f0:1c:a1:cb:61:53:15:2b:c0:fb:
ca:00:f4:88:ad:0a:30:c8:60:53:0b:19:37:83:7e:26:12:3d:
07:35:4d:d6:c2:26:38:23:4f:fb:c4:ac:69:96:da:8b:80:a3:
0f:ce:1a:cb:d0:f5:7d:91:ee:c1:cc:c5:fc:1e:c6:b2:18:52:
64:2c:52:de:09:b8:c3:01:e1:6d:ca:00:76:66:a4:1a:2b:7e:
35:59:2d:e7:c7:29:92:ee:44:6d:15:14:59:44:9a:4e:a3:58:
ea:44:9d:2b:b3:97:76:6b:ba:4a:b2:8e:22:d2:3f:54:d2:34:
c7:23:ed:22:78:e2:26:72:dc:6a:45:ff:4b:3b:2a:36:a3:dd:
3b:25:04:72:cb:42:12:73:aa:4a:58:62:cf:f3:dd:b9:22:3a:
69:bc:ef:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:53 2024 by rpki-client on console-fra.rpki-client.org