Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/xYkvkm6RoUlpoWmLL_jH8bgP3FE.roa
File: xYkvkm6RoUlpoWmLL_jH8bgP3FE.roa (raw, json)
Hash identifier: 7/I0sJEZZsqh4BLE/k2ZLRl+bYsOqdEk5rFi9sOeSkQ=
Subject key identifier: C5:89:2F:92:6E:91:A1:49:69:A1:69:8B:2F:F8:C7:F1:B8:0F:DC:51
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 0124
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/xYkvkm6RoUlpoWmLL_jH8bgP3FE.roa
Signing time: Fri 07 Jul 2023 04:06:00 +0000
ROA not before: Fri 07 Jul 2023 04:06:00 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 10013
IP address blocks: 121.50.152.0/21 maxlen: 21
Validation: Failed, certificate revoked on Fri 31 May 2024 01:29:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 292 (0x124)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: Jul 7 04:06:00 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=C5892F926E91A14969A1698B2FF8C7F1B80FDC51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fc:69:66:05:be:cc:02:ed:a7:03:ad:6a:fa:
0c:31:3e:0c:cc:be:b8:53:dd:d3:46:d0:cd:54:39:
99:5c:40:30:eb:ac:ff:97:e9:04:bf:e1:eb:ed:11:
04:89:a5:58:9d:bb:43:90:94:95:b4:3e:3b:af:8c:
5a:e0:76:29:79:7d:ea:c8:05:5c:58:aa:3b:46:f2:
19:9c:50:92:a5:4b:fc:20:8a:6b:57:71:78:dc:b6:
36:98:dc:05:5e:da:ef:35:04:14:b6:17:e3:d1:c5:
5b:6a:63:a6:84:c6:a8:05:c0:1e:70:ae:5b:74:e8:
a7:ad:74:1c:04:ac:b0:9f:0f:c8:40:a8:ed:9c:db:
16:5c:00:ca:cf:4e:c0:e5:5b:12:17:4f:b1:87:a7:
aa:bc:96:97:c0:b9:db:30:ad:1c:b4:e3:cf:45:b2:
9a:a4:78:9c:53:e8:b1:aa:f6:f8:31:eb:c2:68:c1:
2d:5b:be:ab:77:1b:74:aa:1c:9d:a5:8c:61:02:4e:
6d:5b:38:ab:8a:b8:fb:c6:b1:ef:d5:c9:b0:d1:f5:
38:23:bc:d9:bd:8b:65:2c:05:00:47:e5:b6:f9:05:
2a:14:8c:df:3c:bb:e0:a4:15:1c:5b:6d:a5:07:0a:
ab:0e:93:12:4a:21:88:30:12:e1:97:16:8d:04:13:
74:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:89:2F:92:6E:91:A1:49:69:A1:69:8B:2F:F8:C7:F1:B8:0F:DC:51
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/xYkvkm6RoUlpoWmLL_jH8bgP3FE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
121.50.152.0/21
Signature Algorithm: sha256WithRSAEncryption
2f:6b:50:03:89:a9:fb:72:63:72:39:f3:51:f2:16:15:a0:1b:
ec:66:df:78:b5:60:a2:0d:8c:58:e6:3d:d4:1e:42:0f:2c:5b:
0b:8d:04:56:86:f4:75:09:c0:ad:7a:9f:b2:d0:de:f4:8a:a1:
e6:5b:00:2a:91:b2:aa:d5:d2:bb:a9:e5:5f:12:81:b9:65:f3:
99:b4:e3:15:b8:dc:7c:4f:9d:6e:d5:b9:76:9f:17:0c:98:16:
ee:11:ff:fc:65:f2:a3:47:d7:d0:21:86:57:52:3b:61:67:31:
7a:d9:a2:f3:20:2c:b7:ed:24:7f:15:8f:4d:8f:12:bc:3c:0b:
f5:c2:a3:02:35:6d:4e:15:98:c4:d8:f5:a9:78:5a:fe:5f:da:
6e:3b:b2:10:a9:c5:2b:32:81:77:4d:2a:70:cc:b1:1f:db:f1:
25:9f:8a:a8:35:33:20:08:e2:ec:e6:d9:7f:4c:db:05:b6:10:
2f:fb:62:a8:25:e4:21:37:44:27:08:4d:4a:de:07:a7:99:dc:
34:9c:ef:e5:43:6e:dc:f0:98:91:91:97:c4:c9:1d:36:e1:ac:
df:41:05:fa:3d:0e:c0:f8:10:d5:b0:02:f9:99:33:04:24:b3:
37:aa:3f:35:a5:a8:6b:58:c7:6b:e6:46:23:09:5e:05:cb:17:
46:cf:41:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:40:53 2024 by rpki-client on console-fra.rpki-client.org