Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/H0pnuPXiPAB8ZQTIpXKmdvwqxnc.roa
File: H0pnuPXiPAB8ZQTIpXKmdvwqxnc.roa (raw, json)
Hash identifier: 0gTMAx1YxzyLxJs5jJWMSFle6KCnBT+cJ9FAQ8dqzY8=
Subject key identifier: 1F:4A:67:B8:F5:E2:3C:00:7C:65:04:C8:A5:72:A6:76:FC:2A:C6:77
Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Certificate serial: FA
Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/H0pnuPXiPAB8ZQTIpXKmdvwqxnc.roa
Signing time: Fri 01 Dec 2023 01:29:47 +0000
ROA not before: Fri 01 Dec 2023 01:29:47 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 8220
IP address blocks: 202.7.96.0/20 maxlen: 20
Validation: Failed, certificate revoked on Thu 31 Oct 2024 01:30:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 250 (0xfa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Validity
Not Before: Dec 1 01:29:47 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=1F4A67B8F5E23C007C6504C8A572A676FC2AC677
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:0b:1b:5d:42:64:69:ec:75:75:d8:ed:7a:0d:
04:98:7e:b8:ac:f8:3d:62:6e:82:77:a3:bf:a2:98:
0e:b4:dd:8d:b1:ae:00:2a:a8:f9:4b:82:d7:7a:5e:
1b:6f:81:44:82:f1:b3:34:c4:95:11:f5:72:58:0e:
cc:6b:d6:4e:57:0f:f1:c9:94:65:b7:b8:2c:e6:de:
ce:e3:a9:d2:be:92:1c:46:b9:ee:fb:72:65:5e:6f:
2d:e3:04:31:9f:46:50:7e:88:3a:a5:24:94:a1:42:
d1:8d:e0:85:1a:e2:1d:93:16:fb:56:9b:fb:0e:b2:
3f:a1:a2:18:29:f1:6f:ed:10:73:72:c2:08:f6:55:
ae:f4:5e:03:e7:c5:21:d7:e5:46:f0:30:d6:9c:68:
b5:ae:45:9c:bd:05:7c:6e:f6:09:1a:05:f0:06:a8:
18:9d:e8:3e:a4:bc:47:e9:a2:4c:c6:58:32:db:a1:
d2:4d:1b:8f:4c:ca:55:a8:89:be:49:ca:65:f5:54:
21:a5:7f:9a:a4:8a:a2:22:d8:b9:bc:34:c7:79:b2:
8e:fe:d8:98:05:40:c7:36:88:ac:e0:6d:06:c5:ea:
3e:66:5a:47:e6:3b:ad:80:8c:70:a1:02:e5:b8:7f:
20:8e:67:56:da:b7:09:c5:ed:65:d5:a9:72:77:d6:
0a:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:4A:67:B8:F5:E2:3C:00:7C:65:04:C8:A5:72:A6:76:FC:2A:C6:77
X509v3 Authority Key Identifier:
keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/H0pnuPXiPAB8ZQTIpXKmdvwqxnc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.7.96.0/20
Signature Algorithm: sha256WithRSAEncryption
c5:c0:44:6f:2b:e9:d4:cf:9b:66:bf:bb:0f:ca:8b:71:6f:7a:
cf:28:65:f2:f1:05:fa:50:76:28:93:f2:92:19:f0:95:41:89:
33:bb:fe:6f:d2:7f:42:3b:3f:8a:90:aa:6c:05:c8:fc:70:98:
65:f6:fc:d6:cf:f1:ce:f7:d8:5f:14:78:93:7b:f7:8b:c4:a6:
3e:0a:59:a2:d5:98:64:8d:ff:cd:99:b2:fd:ac:64:3f:b6:2b:
b8:6b:80:88:23:9d:6a:2c:2f:64:7d:f4:1b:b0:b4:23:51:19:
8e:8f:4b:9a:4e:f5:85:97:ac:f8:c7:3d:2c:10:0a:5b:2f:a6:
70:91:22:4c:fa:88:79:a1:87:38:de:b5:69:ea:f3:14:ee:b2:
d1:d7:90:3e:65:80:fe:18:45:b6:56:73:f9:7c:2a:46:42:a0:
cc:66:82:18:63:8b:2d:cd:48:40:31:53:d7:9e:76:97:19:ed:
77:4a:43:f6:72:d1:ec:96:f8:b6:23:b2:ba:4d:fd:95:fe:3e:
00:47:7f:1b:f2:d0:37:0d:0c:07:3a:4f:c7:d5:b8:e7:1d:ce:
4d:98:86:76:02:ce:79:4d:f8:0e:80:5b:0e:c0:b0:a6:fd:2b:
aa:64:63:d7:57:8e:db:0b:fc:50:af:4e:a6:1b:28:b0:69:be:
e4:c9:a0:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 03:53:35 2024 by rpki-client on console-fra.rpki-client.org