Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/y652w8urQ-jYAYdjfQD1-0zWj3s.roa
File: y652w8urQ-jYAYdjfQD1-0zWj3s.roa (raw, json)
Hash identifier: uzL/x8SWZ0p6jaWKV2HcTMlL/yXs2KNiT8PwnitjVD0=
Subject key identifier: CB:AE:76:C3:CB:AB:43:E8:D8:01:87:63:7D:00:F5:FB:4C:D6:8F:7B
Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D
Certificate serial: 0101
Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/y652w8urQ-jYAYdjfQD1-0zWj3s.roa
Signing time: Wed 01 Nov 2023 01:29:44 +0000
ROA not before: Wed 01 Nov 2023 01:29:44 +0000
ROA not after: Mon 14 Oct 2024 01:30:03 +0000
asID: 2527
IP address blocks: 202.226.20.0/22 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 01:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 257 (0x101)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D
Validity
Not Before: Nov 1 01:29:44 2023 GMT
Not After : Oct 14 01:30:03 2024 GMT
Subject: CN=CBAE76C3CBAB43E8D80187637D00F5FB4CD68F7B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:9c:ae:d7:b4:64:2b:b4:45:c3:2a:25:85:83:
bc:b2:79:0a:c6:bd:60:bb:0f:21:b7:32:62:01:6c:
00:ab:e7:1a:8a:e1:7d:e2:9a:fa:7b:4a:b9:49:d0:
b0:ed:75:dd:ab:64:d2:6e:c8:8a:17:8f:42:d1:61:
8c:93:67:3a:ec:8d:df:23:29:a6:3b:6b:a2:bc:47:
7d:f6:3e:db:bd:8d:a6:09:e2:4c:ad:a6:69:73:4e:
e4:e8:98:ea:f9:86:cc:20:83:48:05:47:d6:02:fc:
70:55:80:ae:81:3d:55:f3:67:0a:e2:59:70:66:97:
13:6f:67:a7:4a:d3:97:da:3e:77:08:5e:98:f4:27:
e5:90:e0:62:a8:ee:f8:fb:8c:99:46:13:33:dd:cc:
87:82:54:44:d9:d2:54:7a:50:62:f3:90:9b:a6:01:
eb:c3:0e:9d:da:a3:25:d8:c8:f6:fe:3d:ad:8f:e4:
71:8e:80:d6:4d:1a:d3:9a:1f:15:d7:4b:a7:dd:c7:
be:5e:d2:55:57:a6:6e:08:b0:e8:04:0f:fd:6f:1a:
1f:38:f8:23:dc:af:74:25:ef:23:2c:f6:85:1b:3d:
0e:28:cd:62:6d:c6:44:7a:75:72:55:1c:30:0a:b1:
23:17:d8:eb:91:16:01:78:ad:d4:d1:3d:fd:aa:68:
c7:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:AE:76:C3:CB:AB:43:E8:D8:01:87:63:7D:00:F5:FB:4C:D6:8F:7B
X509v3 Authority Key Identifier:
keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/y652w8urQ-jYAYdjfQD1-0zWj3s.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.226.20.0/22
Signature Algorithm: sha256WithRSAEncryption
47:44:f5:d4:50:a4:5c:d1:dd:67:69:c3:92:ab:9c:35:b4:77:
b1:39:6c:11:9f:16:3b:e9:ff:36:19:66:44:39:79:fd:6b:9a:
75:22:92:06:4f:2d:9e:a4:d1:68:e1:13:93:2a:c1:52:32:14:
27:49:21:42:03:08:ec:fc:a3:02:ad:08:29:93:bb:06:3d:18:
33:01:ba:4c:ef:58:1e:12:52:1a:d0:79:c7:ef:7f:67:89:2e:
a6:97:5e:7b:ee:36:df:9b:e7:42:ce:f1:69:b8:4c:c6:46:1d:
cb:e4:73:25:ad:97:9b:9d:16:ba:32:8d:4f:d2:d2:3e:fc:d4:
48:a9:76:57:64:19:02:57:5c:45:87:c5:d3:52:02:e7:7c:15:
8d:49:47:b8:e7:28:09:44:71:cd:b6:7d:e0:04:7d:b1:66:8c:
35:6e:72:a2:05:96:76:4c:14:8c:dc:86:bd:35:ea:9d:3c:9f:
2e:a1:5a:ca:bc:5f:d4:4d:f8:34:ab:71:00:a3:8c:1c:e1:f4:
89:26:7b:d6:35:d5:c5:e4:04:34:d8:8f:95:b5:80:f1:5d:6f:
d5:be:78:db:2b:11:12:27:81:b4:4e:c3:6b:3f:3f:df:40:d1:
bc:61:b1:5f:70:0d:18:8d:77:15:d0:5c:bf:43:39:a6:9c:8f:
55:4b:2d:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 04:40:47 2024 by rpki-client on console-ams.rpki-client.org