Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/Z9yr9fu_S0O9ZBFKvauao4zW1dI.roa
File: Z9yr9fu_S0O9ZBFKvauao4zW1dI.roa (raw, json)
Hash identifier: WKJKoSeZq6PHjF66QXIjS8d6kjygRFTU+duUPVP2XK4=
Subject key identifier: 67:DC:AB:F5:FB:BF:4B:43:BD:64:11:4A:BD:AB:9A:A3:8C:D6:D5:D2
Certificate issuer: /CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Certificate serial: 6F
Authority key identifier: 04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/Z9yr9fu_S0O9ZBFKvauao4zW1dI.roa
Signing time: Fri 01 Dec 2023 01:30:03 +0000
ROA not before: Fri 01 Dec 2023 01:30:03 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 2527
IP address blocks: 159.28.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 01:30:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111 (0x6f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=04CA7F35AF1A8F52575A9FEFFF21C4A47080DDFA
Validity
Not Before: Dec 1 01:30:03 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=67DCABF5FBBF4B43BD64114ABDAB9AA38CD6D5D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:cf:23:8a:88:8f:e1:f8:49:23:b9:01:a9:f1:
a0:30:cf:82:77:04:42:77:d9:dc:15:b8:b6:b6:a8:
27:98:71:56:95:27:c4:59:c2:47:62:1c:89:47:cc:
ed:ed:7a:a4:a6:7b:70:8f:d3:ba:bc:67:e1:54:8a:
55:2d:2d:98:8e:8e:37:5f:d5:ca:2b:53:3a:a9:fb:
03:55:8b:17:02:fd:9c:3e:c2:87:0a:86:f5:5e:94:
52:49:80:ee:5c:30:aa:8c:0f:54:ba:89:a9:27:9b:
a3:ee:94:72:4f:4f:c4:48:09:95:a3:1a:16:41:87:
32:ff:d7:87:9b:8a:ca:63:16:80:57:bc:86:97:b2:
6c:c5:fd:78:fb:c7:5c:3b:a2:f6:ff:86:72:d6:f9:
79:75:cd:33:93:da:6e:23:ee:61:77:32:45:ab:00:
99:fb:da:1f:43:fc:96:8a:25:4e:45:e0:ee:a4:69:
da:31:08:7d:e9:00:35:0f:76:75:7a:aa:41:e1:66:
1a:f4:29:e0:ab:c6:59:11:a0:e2:ce:62:04:30:42:
86:62:38:59:83:e9:b1:7f:67:8c:ec:7c:45:ab:30:
15:f6:c4:48:c6:7a:fb:a8:10:e2:76:7e:de:b0:3c:
e0:0c:fb:d8:56:b5:ff:d6:74:e4:27:ae:6a:7c:ee:
5b:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:DC:AB:F5:FB:BF:4B:43:BD:64:11:4A:BD:AB:9A:A3:8C:D6:D5:D2
X509v3 Authority Key Identifier:
keyid:04:CA:7F:35:AF:1A:8F:52:57:5A:9F:EF:FF:21:C4:A4:70:80:DD:FA
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/BMp_Na8aj1JXWp_v_yHEpHCA3fo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/BMp_Na8aj1JXWp_v_yHEpHCA3fo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/Z9yr9fu_S0O9ZBFKvauao4zW1dI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
159.28.64.0/18
Signature Algorithm: sha256WithRSAEncryption
45:7e:42:44:bf:9b:20:47:80:1b:65:41:e6:31:24:f7:d8:16:
25:a6:a4:db:55:47:17:fd:0e:13:7a:e2:a6:c3:ab:84:cd:ea:
78:13:9d:4d:46:f5:c4:8a:c9:af:3a:8e:b7:cb:72:71:4d:e7:
94:b7:49:44:7d:b2:3d:3c:e2:76:5e:37:0a:51:70:59:fe:e1:
be:38:85:fe:11:e2:95:d7:28:53:43:24:8d:ec:31:cb:0d:de:
29:61:0f:0e:42:fe:e0:8f:4d:4d:72:b5:0f:8f:ba:53:b4:d5:
de:9f:7a:03:16:da:c3:3e:45:69:2b:78:33:2a:f1:b0:25:51:
96:3d:6f:7d:06:81:c3:97:ba:19:92:c0:f3:8f:35:ec:d0:3e:
89:4c:d0:d1:ec:92:3b:9c:68:4e:38:c1:e6:65:2c:f9:95:af:
45:c7:92:d4:7d:86:66:29:27:98:a9:ec:b4:13:bf:94:99:c9:
70:f1:3e:2c:6b:a7:1a:83:89:7b:8b:18:d7:30:2e:8a:8f:25:
e2:83:e4:0b:00:6f:e7:19:a3:00:88:0a:2a:14:5f:e8:58:63:
7c:49:4a:8f:1f:91:c8:28:57:4c:ba:76:b9:41:0d:78:30:7e:
a1:e4:bc:c8:0e:2c:0c:b8:e0:47:ee:f3:a2:f0:ab:20:6b:57:
85:fc:7f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 03:53:35 2024 by rpki-client on console-fra.rpki-client.org