Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/rpS1oi-Y6EPAV8s8hitQO1Csoi8.roa
File: rpS1oi-Y6EPAV8s8hitQO1Csoi8.roa (raw, json)
Hash identifier: dBxgQDoQ8CkoPwDEalbGCyP5Yv57jzSLkUJ5AJV3R2A=
Subject key identifier: AE:94:B5:A2:2F:98:E8:43:C0:57:CB:3C:86:2B:50:3B:50:AC:A2:2F
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 01E5
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/rpS1oi-Y6EPAV8s8hitQO1Csoi8.roa
Signing time: Tue 01 Aug 2023 01:31:31 +0000
ROA not before: Tue 01 Aug 2023 01:31:31 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 10013
IP address blocks: 153.120.224.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:32:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 485 (0x1e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: Aug 1 01:31:31 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=AE94B5A22F98E843C057CB3C862B503B50ACA22F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ce:05:c8:6c:ca:77:e3:df:32:7d:8e:e2:9c:
cf:88:93:e7:7e:aa:2f:0f:3d:9c:bc:6f:ca:01:11:
ff:6f:72:fa:8b:e5:64:bf:d4:2f:96:28:ee:ad:6d:
04:ef:a8:e9:ac:9a:6a:18:2d:90:ce:b1:4a:00:53:
d5:64:64:b4:12:03:0a:95:9f:31:cc:63:87:8f:05:
57:b5:5c:99:d6:97:b7:8d:7b:ef:c8:a4:84:22:4d:
3f:e4:48:bc:44:3e:3b:8e:0b:a6:85:9a:e6:6f:97:
35:2a:35:41:04:82:d8:e9:0f:42:28:59:ae:81:c9:
f8:f9:62:c5:c7:10:8e:ed:4a:7d:43:7b:6e:6d:18:
ab:9e:0a:bd:2e:7d:47:b9:fc:11:2e:73:46:f0:38:
c5:93:0a:ab:56:6b:0f:79:ba:9a:e2:dc:07:48:91:
03:86:6b:0e:a0:e0:4b:03:af:32:db:28:dc:dd:86:
46:16:47:10:cc:dc:55:e7:de:5e:d7:c7:bf:7e:21:
0f:ca:74:c6:0b:db:a6:5c:80:0c:e4:59:b9:2c:9e:
68:84:7c:2c:12:7e:07:50:c2:16:d9:93:77:f9:99:
dd:10:76:64:34:b8:97:d2:6e:32:a2:39:38:a7:91:
1b:d4:1e:54:00:e9:6d:de:d3:70:da:11:ef:53:6e:
63:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:94:B5:A2:2F:98:E8:43:C0:57:CB:3C:86:2B:50:3B:50:AC:A2:2F
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/rpS1oi-Y6EPAV8s8hitQO1Csoi8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
153.120.224.0/20
Signature Algorithm: sha256WithRSAEncryption
23:e2:cf:3a:f9:df:97:b1:62:e0:09:81:6f:77:3e:48:43:77:
5c:89:f9:6f:e2:07:a8:83:d4:9d:8d:98:ab:79:a8:06:49:0d:
1f:1b:77:79:fa:3b:64:33:72:35:c3:29:1e:4f:b1:d6:fd:bb:
41:f8:04:d0:e4:75:ca:7c:a4:2f:bb:4f:f7:f2:80:bb:ab:d3:
9f:40:f6:07:11:d6:d0:5d:fa:8f:4e:37:14:f8:7a:de:99:43:
ae:14:a0:2b:ac:2a:66:db:1b:e8:96:06:4d:80:b2:f7:e5:f0:
a0:78:7b:04:95:3e:fe:af:14:17:b1:c8:ca:40:d6:11:bb:ad:
04:85:6f:9d:9c:79:68:f0:63:e2:87:51:3c:21:dd:19:d7:6c:
70:f3:82:c2:7b:21:f1:05:98:e3:80:fe:f4:d3:e2:cd:e5:ab:
8e:6d:67:ce:ab:50:62:67:85:40:35:fb:b7:86:22:27:5a:c8:
f2:aa:c1:58:12:05:7b:e4:73:0f:a4:b8:86:e0:36:b0:db:54:
11:cc:86:90:df:ac:bc:52:b4:d4:1e:92:7a:18:ec:31:59:fc:
29:aa:8b:3f:f3:77:15:77:31:db:fb:a4:c3:42:cb:a8:2e:04:
4d:de:19:15:9c:a7:0c:54:ec:a6:f4:be:04:05:27:68:d2:9f:
3d:b3:df:a9
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEQ3
MTI1QUU0Q0VBRTEzMzVGRTVENDI5QUEwMzBDRTkwNzBERjE5QzAeFw0yMzA4MDEw
MTMxMzFaFw0yNDA3MTQwMTMwMDNaMDMxMTAvBgNVBAMTKEFFOTRCNUEyMkY5OEU4
NDNDMDU3Q0IzQzg2MkI1MDNCNTBBQ0EyMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDTzgXIbMp3498yfY7inM+Ik+d+qi8PPZy8b8oBEf9vcvqL5WS/
1C+WKO6tbQTvqOmsmmoYLZDOsUoAU9VkZLQSAwqVnzHMY4ePBVe1XJnWl7eNe+/I
pIQiTT/kSLxEPjuOC6aFmuZvlzUqNUEEgtjpD0IoWa6Byfj5YsXHEI7tSn1De25t
GKueCr0ufUe5/BEuc0bwOMWTCqtWaw95upri3AdIkQOGaw6g4EsDrzLbKNzdhkYW
RxDM3FXn3l7Xx79+IQ/KdMYL26ZcgAzkWbksnmiEfCwSfgdQwhbZk3f5md0QdmQ0
uJfSbjKiOTinkRvUHlQA6W3e03DaEe9TbmNbAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUrpS1oi+Y6EPAV8s8hitQO1Csoi8wHwYDVR0jBBgwFoAUDXElrkzq4TNf5dQp
qgMM6QcN8ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzM5NC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZRY044WncuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9EWEVscmt6cTRUTmY1ZFFwcWdNTTZR
Y044WncuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzk0L3JwUzFvaS1ZNkVQQVY4czhoaXRRTzFDc29pOC5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBASZeOAwDQYJKoZIhvcNAQELBQADggEBACPizzr535exYuAJgW93PkhDd1yJ
+W/iB6iD1J2NmKt5qAZJDR8bd3n6O2QzcjXDKR5Psdb9u0H4BNDkdcp8pC+7T/fy
gLur059A9gcR1tBd+o9ONxT4et6ZQ64UoCusKmbbG+iWBk2Asvfl8KB4ewSVPv6v
FBexyMpA1hG7rQSFb52ceWjwY+KHUTwh3RnXbHDzgsJ7IfEFmOOA/vTT4s3lq45t
Z86rUGJnhUA1+7eGIidayPKqwVgSBXvkcw+kuIbgNrDbVBHMhpDfrLxStNQeknoY
7DFZ/Cmqiz/zdxV3Mdv7pMNCy6guBE3eGRWcpwxU7Kb0vgQFJ2jSnz2z36k=
-----END CERTIFICATE-----
Generated at Sun Jun 30 03:11:26 2024 by rpki-client on console-fra.rpki-client.org