Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/DyW62CYECiHKB4n2zIxq5PNshTY.roa
File: DyW62CYECiHKB4n2zIxq5PNshTY.roa (raw, json)
Hash identifier: kEv6VxHz7S4fEJJ0VPectEDs7VyVzj039rzA0tOsY6E=
Subject key identifier: 0F:25:BA:D8:26:04:0A:21:CA:07:89:F6:CC:8C:6A:E4:F3:6C:85:36
Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D
Certificate serial: 0122
Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/DyW62CYECiHKB4n2zIxq5PNshTY.roa
Signing time: Fri 01 Dec 2023 01:31:56 +0000
ROA not before: Fri 01 Dec 2023 01:31:56 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 2527
IP address blocks: 116.67.128.0/17 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 01:34:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 290 (0x122)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D
Validity
Not Before: Dec 1 01:31:56 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=0F25BAD826040A21CA0789F6CC8C6AE4F36C8536
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:6c:61:19:88:81:77:4a:14:be:88:bc:38:8e:
3f:4f:b7:21:ba:43:ac:bd:b7:ef:05:7f:92:de:d6:
dd:a7:e9:cf:4c:ee:b4:74:f3:a9:9d:ef:7f:76:2a:
6f:97:37:f1:3c:ab:25:ea:bf:2a:2e:7b:bc:39:07:
83:d1:f0:c5:15:8f:30:02:5f:2b:25:f5:51:91:84:
68:50:e9:58:36:8b:98:bc:ec:aa:1c:1b:11:90:a0:
81:ab:d4:10:82:d3:e6:9e:1a:a0:50:46:bd:58:be:
3e:69:c0:93:ba:cb:01:69:81:82:45:e2:43:ee:b0:
94:cc:23:30:6f:c9:8f:4e:dc:29:20:f5:f5:2a:4b:
97:53:8b:09:c3:49:10:8c:d1:fc:4a:c9:d8:6c:b2:
12:63:03:9a:b6:93:cc:2b:0b:17:c7:8e:c2:0a:36:
bb:1e:f0:93:d2:41:20:35:76:60:f4:3b:fe:22:3e:
9e:95:55:26:50:6b:e5:55:15:94:6c:aa:42:d6:3b:
dc:a4:fa:f4:56:c3:72:59:bf:90:15:12:18:5d:6a:
5e:52:a1:b6:3b:d3:36:83:4b:a7:ab:e9:63:22:a8:
fb:ca:bd:a0:95:61:41:da:65:27:cc:ab:2b:27:dd:
eb:1c:19:99:74:de:ca:76:df:2f:1e:0a:fb:27:b7:
38:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:25:BA:D8:26:04:0A:21:CA:07:89:F6:CC:8C:6A:E4:F3:6C:85:36
X509v3 Authority Key Identifier:
keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/DyW62CYECiHKB4n2zIxq5PNshTY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.67.128.0/17
Signature Algorithm: sha256WithRSAEncryption
15:a3:46:aa:de:ed:95:d8:da:36:da:25:10:b4:8d:bc:36:db:
c8:17:01:85:4a:85:d9:4c:85:94:aa:7c:f7:ad:7c:c2:da:cd:
f2:36:0f:3f:17:3e:3c:ce:bd:a5:6a:c8:3f:0c:fe:ad:44:a6:
83:54:40:cd:0e:0f:ce:35:92:54:f2:5b:f4:fb:95:b0:84:85:
59:6f:95:51:1e:b8:bb:14:b6:18:f3:03:f3:99:94:61:29:7f:
6a:79:6c:42:91:38:9e:56:dc:e8:2d:c7:07:d3:4a:3f:3d:26:
26:4a:5f:04:0c:8e:fc:2a:62:8d:a2:33:a3:e4:96:dd:9c:e3:
58:1c:48:d8:c6:1c:b7:f7:04:26:db:e6:b4:d6:39:8f:31:e1:
e0:52:bb:c8:d2:f1:e3:df:85:6f:09:04:e3:18:2e:c4:f0:ee:
ec:6a:09:b8:e5:57:3b:12:91:cd:e8:70:71:04:dd:a7:de:13:
29:76:54:26:fa:c0:34:a3:fa:64:74:3a:59:2e:1a:7b:11:2d:
15:c3:f5:f4:32:53:e6:56:14:e5:05:4c:c0:d2:f7:c4:35:8e:
5e:a0:dd:d9:07:db:94:80:55:ea:33:06:7f:8c:b3:6f:c5:cb:
a4:ab:b3:bc:62:4e:60:c8:af:cc:a1:87:d6:2a:eb:7d:8e:13:
11:17:5d:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 05:07:19 2024 by rpki-client on console-ams.rpki-client.org