Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/9t4aCmQiwsCGS86bWENEA_ovvH8.roa
File: 9t4aCmQiwsCGS86bWENEA_ovvH8.roa (raw, json)
Hash identifier: Zqh2oi6wx9aMfi5aZOlhNUf5M2kOU/b7ZQrb6bzEhPc=
Subject key identifier: F6:DE:1A:0A:64:22:C2:C0:86:4B:CE:9B:58:43:44:03:FA:2F:BC:7F
Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Certificate serial: 77
Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/9t4aCmQiwsCGS86bWENEA_ovvH8.roa
Signing time: Fri 01 Dec 2023 01:31:59 +0000
ROA not before: Fri 01 Dec 2023 01:31:59 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 2527
IP address blocks: 159.28.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 01:34:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119 (0x77)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Validity
Not Before: Dec 1 01:31:59 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=F6DE1A0A6422C2C0864BCE9B58434403FA2FBC7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:54:48:cd:6c:75:d3:c9:5d:a1:7f:68:10:0e:
5c:f1:3c:28:ac:a3:4e:83:87:49:bb:bc:93:6d:cf:
85:2e:32:24:8d:9c:d9:61:30:7e:84:49:39:ed:52:
ff:1d:82:63:b3:53:8d:bd:02:a5:e8:e5:27:78:00:
fe:ea:7d:bb:91:ad:af:d6:f0:14:89:0b:a1:a4:dd:
97:aa:84:45:16:60:45:55:be:b3:31:0e:b2:2a:57:
42:44:de:12:6a:18:2c:6e:76:83:9b:57:61:5a:1c:
4f:15:67:da:a9:b9:8f:fe:3c:ac:db:c5:92:06:3f:
5a:78:72:6a:a3:4a:52:3b:53:27:9e:70:87:0c:e9:
23:f0:88:69:99:08:ce:f3:7c:95:26:06:3d:5f:1f:
97:a2:3a:ee:8d:59:1e:e2:a6:40:72:0a:e5:75:ff:
33:a8:25:92:87:98:86:18:95:14:3b:65:27:7f:87:
f0:89:11:65:a8:12:bd:f6:19:ae:c5:e8:28:38:7a:
35:8f:e8:c7:47:5c:13:8e:e9:43:d1:ac:63:2b:99:
a3:b8:b6:d4:ed:a0:59:c9:bf:7e:f2:4a:b5:53:b1:
dd:39:a6:53:ff:e6:b5:f7:64:ca:e9:40:54:52:20:
2a:c6:6f:24:71:9a:bf:68:9e:24:5a:55:43:e8:4a:
f7:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:DE:1A:0A:64:22:C2:C0:86:4B:CE:9B:58:43:44:03:FA:2F:BC:7F
X509v3 Authority Key Identifier:
keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/9t4aCmQiwsCGS86bWENEA_ovvH8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
159.28.128.0/17
Signature Algorithm: sha256WithRSAEncryption
89:1f:a7:5d:de:36:7d:ea:25:6b:3a:d7:f2:92:66:64:4e:a5:
ae:ee:1c:8b:89:d8:93:96:07:cf:09:95:13:9d:c9:95:5c:03:
12:a1:c1:9d:8f:5e:87:3a:b7:29:56:8b:96:94:e3:5c:ed:dc:
71:b5:83:06:9d:b3:1d:01:c8:11:8c:a9:94:66:08:e8:85:bd:
f8:e3:f7:be:11:03:1b:35:96:c8:a7:06:5e:a3:bb:e5:f5:5e:
85:6d:14:67:f8:37:32:3b:cc:93:55:00:cb:5d:a9:b6:cb:ea:
f0:b8:00:2c:99:c3:e4:1d:a4:a6:d9:a2:1a:94:e5:15:e0:24:
f0:30:36:1f:4b:b4:61:ce:d0:77:09:9d:b9:23:af:ff:55:50:
06:33:49:34:22:b2:25:2e:64:b6:54:5f:55:79:f0:7b:c7:3c:
76:70:87:b2:77:3c:33:27:8d:6f:6a:9d:49:cf:4c:89:85:00:
4a:7f:4b:59:3b:8d:9d:aa:2b:0d:1f:19:68:a3:57:78:1e:14:
5c:eb:8f:f3:c3:f3:85:65:dc:b6:50:d3:c2:fa:35:1d:75:3b:
8e:f7:0c:b0:65:05:d2:1f:fe:88:c4:22:16:c1:4c:ee:86:6e:
7e:97:e5:64:bd:70:1a:e5:53:f0:48:aa:06:36:20:44:a2:88:
63:75:68:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 05:07:19 2024 by rpki-client on console-ams.rpki-client.org