Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/530/kEAV57NeBn9sfG1Hpt4ct1kYPsk.roa
File: kEAV57NeBn9sfG1Hpt4ct1kYPsk.roa (raw, json)
Hash identifier: 3HB0yAM4K62jsOvlpE2o5KVbfqbN32/TxU3vn6UQN2k=
Subject key identifier: 90:40:15:E7:B3:5E:06:7F:6C:7C:6D:47:A6:DE:1C:B7:59:18:3E:C9
Certificate issuer: /CN=40D220B9E4A6358E03CD47864517D9D300B06FF0
Certificate serial: 39
Authority key identifier: 40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/kEAV57NeBn9sfG1Hpt4ct1kYPsk.roa
Signing time: Fri 01 Dec 2023 08:41:42 +0000
ROA not before: Fri 01 Dec 2023 08:41:42 +0000
ROA not after: Thu 14 Nov 2024 01:30:03 +0000
asID: 131925
IP address blocks: 160.237.188.0/23 maxlen: 24
Validation: Failed, certificate revoked on Thu 31 Oct 2024 01:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57 (0x39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40D220B9E4A6358E03CD47864517D9D300B06FF0
Validity
Not Before: Dec 1 08:41:42 2023 GMT
Not After : Nov 14 01:30:03 2024 GMT
Subject: CN=904015E7B35E067F6C7C6D47A6DE1CB759183EC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e9:73:3e:34:1f:b4:c7:5d:dd:f7:39:8a:9c:
35:37:7f:f9:4b:56:a3:9d:8e:b8:19:6d:bb:37:54:
1f:f1:0a:b3:36:86:62:81:25:9b:a9:59:06:a5:65:
eb:56:05:76:a1:65:ab:b0:11:40:75:34:5b:46:47:
e7:70:43:ed:5f:da:90:f3:9c:e2:04:5c:94:56:7a:
01:e6:72:e8:a2:cb:b7:27:bd:ac:7d:c9:6a:da:b5:
ab:42:ce:c1:7f:15:03:b5:77:3d:ac:c2:c3:e2:9c:
e8:b5:dd:84:a4:e9:69:2d:eb:a2:99:47:9e:81:c6:
6f:fc:73:14:ba:af:1b:04:d1:74:02:97:27:b8:5a:
e5:d2:bc:83:ef:e1:65:82:ab:50:8c:c0:e2:0f:54:
c0:d0:5f:52:58:1a:3b:28:4f:8e:d1:39:0c:03:41:
26:c1:95:58:a9:06:1e:3f:bb:d0:bf:c5:a7:02:3b:
d0:7a:95:40:70:1a:95:a7:db:cd:53:65:3a:ab:f2:
12:c2:9b:2f:e7:18:89:24:00:71:0a:9e:10:a3:3c:
73:7c:12:23:3e:b7:c5:c1:d1:46:1d:ac:57:aa:00:
b4:cb:39:34:29:1d:47:6b:b6:98:62:f3:95:a8:26:
54:1c:9a:49:10:28:aa:a2:4d:cd:0b:61:6b:88:0a:
27:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:40:15:E7:B3:5E:06:7F:6C:7C:6D:47:A6:DE:1C:B7:59:18:3E:C9
X509v3 Authority Key Identifier:
keyid:40:D2:20:B9:E4:A6:35:8E:03:CD:47:86:45:17:D9:D3:00:B0:6F:F0
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/QNIgueSmNY4DzUeGRRfZ0wCwb_A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QNIgueSmNY4DzUeGRRfZ0wCwb_A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/530/kEAV57NeBn9sfG1Hpt4ct1kYPsk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
160.237.188.0/23
Signature Algorithm: sha256WithRSAEncryption
47:b6:bd:b4:af:d6:21:a1:f6:b4:0b:56:7f:2f:b6:ca:bf:09:
a9:34:38:43:0b:66:c1:e3:20:43:88:f1:e1:cf:83:79:4c:83:
6b:81:43:69:2e:9f:da:65:1a:ec:1d:59:bb:da:9f:de:3e:0e:
57:f4:cd:25:e8:ec:cf:97:e2:b6:90:85:83:44:fd:58:1e:8a:
f5:85:09:88:d2:25:94:45:13:7d:e2:92:2b:dd:2c:a7:bb:24:
45:5e:1f:0d:08:9f:7f:c3:d3:cd:ac:46:b0:4a:30:4f:85:79:
cf:3c:3c:cb:5d:d9:a0:65:dd:7b:85:f3:5b:77:9a:66:45:13:
71:7c:e0:38:59:b7:3b:84:6d:a0:a4:f3:97:0e:75:77:46:6f:
d3:88:e5:b0:7c:6d:c8:5b:e3:a8:c5:8b:f3:1b:f3:ca:12:80:
01:85:72:0b:96:b6:d4:40:09:8e:40:cf:ac:ef:e3:9f:ae:65:
ef:cb:52:3c:3d:16:20:35:f9:85:90:8a:cd:19:44:0a:09:86:
ef:6b:f3:c3:fb:5a:e6:7c:98:0b:95:02:23:28:20:87:48:bc:
49:db:39:4e:ad:f1:b1:4b:41:af:59:ab:b7:16:46:b2:f2:4a:
1c:da:bd:9f:7e:fb:66:46:0d:9b:23:06:bc:06:2a:bd:4b:82:
19:81:e2:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 31 05:07:19 2024 by rpki-client on console-ams.rpki-client.org