Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/395/ysz1qaZEAnd9mGHvyED-YQJeGbI.roa
File: ysz1qaZEAnd9mGHvyED-YQJeGbI.roa (raw, json)
Hash identifier: wsVBk+ZBoJO2etzRVZlPDcOKLWqoFmLgzSgcw05NFXg=
Subject key identifier: CA:CC:F5:A9:A6:44:02:77:7D:98:61:EF:C8:40:FE:61:02:5E:19:B2
Certificate issuer: /CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1
Certificate serial: 02
Authority key identifier: B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/ysz1qaZEAnd9mGHvyED-YQJeGbI.roa
Signing time: Thu 16 Feb 2023 07:59:09 +0000
ROA not before: Thu 16 Feb 2023 07:59:09 +0000
ROA not after: Fri 16 Feb 2024 07:35:22 +0000
asID: 9619
IP address blocks: 211.125.140.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Feb 2024 07:36:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2 (0x2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=B333AEDA5B81A6B2F54FF714668F8D63E87B85A1
Validity
Not Before: Feb 16 07:59:09 2023 GMT
Not After : Feb 16 07:35:22 2024 GMT
Subject: CN=CACCF5A9A64402777D9861EFC840FE61025E19B2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:6a:e8:c4:aa:6a:f2:18:e9:1e:a4:45:3f:1e:
fc:3c:4c:a9:be:ae:27:4c:10:57:00:6a:3e:ef:46:
fb:83:3d:dc:0a:65:64:b8:a9:45:f3:9c:62:22:2d:
f8:a1:66:8c:98:89:ce:13:38:7a:0d:68:29:58:6f:
08:92:5c:5b:c4:d6:7f:1b:4e:db:08:82:eb:30:55:
4a:8b:f1:d8:9f:2a:67:12:39:70:45:33:d5:05:86:
66:32:1e:8f:67:f3:52:ae:a3:da:67:b6:a6:58:ed:
17:62:64:35:14:17:1e:7c:30:d2:59:a5:9a:b1:e7:
bc:fe:c0:25:1d:52:57:0c:ea:8e:dc:33:97:35:13:
60:30:dc:9a:34:5c:29:6f:4c:76:43:4b:2b:5a:42:
11:d6:73:d7:f1:5e:a0:e6:f0:ec:ca:d7:90:88:8c:
30:da:ad:7f:88:3b:91:98:d8:a5:66:df:ed:db:fd:
19:e7:f6:cd:39:e1:c7:26:ed:7c:72:93:de:dd:f3:
f2:04:d4:96:bd:81:39:83:c6:4a:2c:e7:77:48:a5:
7c:03:be:a3:03:69:e2:ec:5c:39:ff:d5:59:4d:28:
bc:8e:4b:cb:32:35:50:46:cf:84:7e:d9:00:8e:8c:
6e:81:7c:d8:86:cd:0c:6f:7a:aa:03:ca:47:b1:a9:
ca:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:CC:F5:A9:A6:44:02:77:7D:98:61:EF:C8:40:FE:61:02:5E:19:B2
X509v3 Authority Key Identifier:
keyid:B3:33:AE:DA:5B:81:A6:B2:F5:4F:F7:14:66:8F:8D:63:E8:7B:85:A1
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/szOu2luBprL1T_cUZo-NY-h7haE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/szOu2luBprL1T_cUZo-NY-h7haE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/395/ysz1qaZEAnd9mGHvyED-YQJeGbI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.125.140.0/24
Signature Algorithm: sha256WithRSAEncryption
1c:fd:78:68:6b:78:f0:8d:7b:ab:0e:46:12:7a:18:1c:45:b8:
d4:63:de:4c:74:a8:ff:6c:fb:a6:45:7e:02:46:6c:19:ab:3e:
68:39:36:ba:85:a8:da:e6:54:38:53:53:c6:8f:13:5e:a3:87:
f0:9d:91:4f:8d:2d:0a:3b:1f:ed:8a:08:46:57:42:50:08:be:
d7:d8:d4:bc:87:1d:1e:22:97:2c:18:13:5f:de:e4:51:5a:df:
53:a0:d6:f4:06:a2:07:cb:9f:2f:9f:2f:d5:fe:fa:23:bd:92:
8d:55:65:48:ec:70:22:10:dd:d8:6a:31:a0:20:aa:01:99:9e:
24:0c:3f:42:18:68:dc:21:98:62:ba:2a:63:05:62:8e:b0:bf:
29:43:2b:1a:c5:27:88:6d:ab:a6:a0:2e:93:9f:c7:bd:bf:59:
b3:1b:62:9e:6b:75:3b:1e:33:83:07:72:60:8d:44:65:04:bb:
05:4c:13:f9:16:32:08:dc:0f:16:9a:66:74:91:f5:4d:ed:72:
ff:4a:cd:09:80:66:c1:9d:c3:35:5a:ce:39:fe:8f:a7:31:ab:
f5:61:d6:ad:44:82:5b:36:21:11:c7:10:31:64:5c:2e:33:42:
02:e7:80:62:73:0b:f5:57:91:83:06:05:b3:24:89:63:c4:11:
f3:a4:b9:5f
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBAjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhCMzMz
QUVEQTVCODFBNkIyRjU0RkY3MTQ2NjhGOEQ2M0U4N0I4NUExMB4XDTIzMDIxNjA3
NTkwOVoXDTI0MDIxNjA3MzUyMlowMzExMC8GA1UEAxMoQ0FDQ0Y1QTlBNjQ0MDI3
NzdEOTg2MUVGQzg0MEZFNjEwMjVFMTlCMjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAMdq6MSqavIY6R6kRT8e/DxMqb6uJ0wQVwBqPu9G+4M93AplZLip
RfOcYiIt+KFmjJiJzhM4eg1oKVhvCJJcW8TWfxtO2wiC6zBVSovx2J8qZxI5cEUz
1QWGZjIej2fzUq6j2me2pljtF2JkNRQXHnww0lmlmrHnvP7AJR1SVwzqjtwzlzUT
YDDcmjRcKW9MdkNLK1pCEdZz1/FeoObw7MrXkIiMMNqtf4g7kZjYpWbf7dv9Gef2
zTnhxybtfHKT3t3z8gTUlr2BOYPGSiznd0ilfAO+owNp4uxcOf/VWU0ovI5LyzI1
UEbPhH7ZAI6MboF82IbNDG96qgPKR7GpyjMCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBTKzPWppkQCd32YYe/IQP5hAl4ZsjAfBgNVHSMEGDAWgBSzM67aW4GmsvVP9xRm
j41j6HuFoTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzk1L3N6T3UybHVCcHJMMVRfY1Vaby1OWS1oN2hhRS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL3N6T3UybHVCcHJMMVRfY1Vaby1OWS1o
N2hhRS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8zOTUveXN6MXFhWkVBbmQ5bUdIdnlFRC1ZUUplR2JJLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEANN9jDANBgkqhkiG9w0BAQsFAAOCAQEAHP14aGt48I17qw5GEnoYHEW41GPe
THSo/2z7pkV+AkZsGas+aDk2uoWo2uZUOFNTxo8TXqOH8J2RT40tCjsf7YoIRldC
UAi+19jUvIcdHiKXLBgTX97kUVrfU6DW9AaiB8ufL58v1f76I72SjVVlSOxwIhDd
2GoxoCCqAZmeJAw/Qhho3CGYYroqYwVijrC/KUMrGsUniG2rpqAuk5/Hvb9Zsxti
nmt1Ox4zgwdyYI1EZQS7BUwT+RYyCNwPFppmdJH1Te1y/0rNCYBmwZ3DNVrOOf6P
pzGr9WHWrUSCWzYhEccQMWRcLjNCAueAYnML9VeRgwYFsySJY8QR86S5Xw==
-----END CERTIFICATE-----
Generated at Fri Feb 2 11:59:58 2024 by rpki-client on console-fra.rpki-client.org