Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/54/yOzwGaH-6m2KyoC50tP-F6Kj8gM.roa
File: yOzwGaH-6m2KyoC50tP-F6Kj8gM.roa (raw, json)
Hash identifier: tQFXboJjdxI/5NqAiiH5l7NFXkwKLg/U2ZiL5XVnFAY=
Subject key identifier: C8:EC:F0:19:A1:FE:EA:6D:8A:CA:80:B9:D2:D3:FE:17:A2:A3:F2:03
Certificate issuer: /CN=5D8F48F99C5B0745B77F8BCA754E63885CADC418
Certificate serial: 04
Authority key identifier: 5D:8F:48:F9:9C:5B:07:45:B7:7F:8B:CA:75:4E:63:88:5C:AD:C4:18
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XY9I-ZxbB0W3f4vKdU5jiFytxBg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/54/yOzwGaH-6m2KyoC50tP-F6Kj8gM.roa
Signing time: Fri 15 Sep 2023 07:45:20 +0000
ROA not before: Fri 15 Sep 2023 07:45:20 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 4695
IP address blocks: 202.231.160.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sat 31 Aug 2024 01:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4 (0x4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5D8F48F99C5B0745B77F8BCA754E63885CADC418
Validity
Not Before: Sep 15 07:45:20 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=C8ECF019A1FEEA6D8ACA80B9D2D3FE17A2A3F203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:e6:32:a3:8a:82:a6:a5:13:22:46:d5:4a:63:
3c:b8:09:e7:ee:3d:31:22:f4:8f:27:a2:85:01:f4:
e6:d6:0f:c7:f2:3c:6f:1c:d8:3d:d5:47:d3:ef:5c:
cf:35:62:9d:43:65:bc:f8:eb:98:b1:94:aa:9f:a3:
32:be:92:fc:7e:73:ae:e7:25:d2:05:d8:7a:4a:83:
64:e2:0f:c7:c3:85:4c:01:ca:eb:5a:77:b2:cd:32:
2b:7e:01:31:3e:c1:66:18:2e:7f:f1:cf:d2:75:06:
a5:c9:ad:36:ab:1a:15:0e:29:8b:3d:06:51:68:ce:
c2:d6:06:4c:94:8c:ad:ed:74:2e:62:01:ed:5f:6e:
c0:f2:0b:95:fc:30:07:15:fb:bf:fe:29:53:d5:c8:
91:e1:5b:f0:94:0d:58:3a:8e:85:a7:61:1f:d3:74:
9d:a6:90:67:17:3b:d3:43:f9:16:32:3d:e9:92:50:
dc:59:59:58:68:56:94:eb:9f:c1:29:bb:f1:e5:dc:
28:fc:a4:a2:a5:e1:51:ba:48:f3:17:ee:64:bd:bf:
81:76:12:8f:0b:00:53:9d:6f:5f:45:55:ec:e9:f3:
f1:54:51:1d:31:8f:4d:8b:d9:19:be:dd:91:94:38:
13:5b:07:1a:4d:0a:6a:73:44:2c:48:da:f7:98:0c:
9f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:EC:F0:19:A1:FE:EA:6D:8A:CA:80:B9:D2:D3:FE:17:A2:A3:F2:03
X509v3 Authority Key Identifier:
keyid:5D:8F:48:F9:9C:5B:07:45:B7:7F:8B:CA:75:4E:63:88:5C:AD:C4:18
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/54/XY9I-ZxbB0W3f4vKdU5jiFytxBg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/XY9I-ZxbB0W3f4vKdU5jiFytxBg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/54/yOzwGaH-6m2KyoC50tP-F6Kj8gM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.231.160.0/20
Signature Algorithm: sha256WithRSAEncryption
0b:42:17:b7:0e:fd:ec:e6:7f:8b:fc:5b:be:83:07:7b:97:98:
23:f9:35:42:7d:d1:a4:1a:bc:2c:6c:ab:85:32:04:60:63:be:
bb:c6:e9:1a:b9:ba:c8:de:bd:57:d6:01:10:ca:19:3d:3d:5d:
38:12:62:1e:29:15:ad:71:aa:38:b2:ad:2e:f0:a8:32:e2:7f:
c4:32:28:19:c3:cb:14:ed:12:85:35:02:3c:a1:ea:33:4a:41:
2d:a0:f7:e6:9e:4b:c1:75:fe:50:2a:a7:25:a2:ac:47:fa:21:
77:38:cd:ec:cf:6c:cc:bd:6e:d8:cf:9c:e5:47:6f:79:d2:ce:
cb:bb:c1:31:b6:52:a6:0a:fa:ca:74:76:22:c7:dd:1c:b2:98:
e9:a5:ad:bc:07:e6:ce:fa:78:15:ab:5f:ce:2a:5e:bc:31:34:
a7:5c:01:82:d9:1b:18:55:bc:02:49:13:f8:7b:fb:81:02:b9:
d6:03:06:39:ae:5f:09:5b:5f:f2:1b:e4:f4:23:96:03:25:c4:
97:0d:46:1c:e1:bd:c1:ec:0d:d2:e5:7a:b5:8a:41:8d:a4:97:
53:6f:3a:30:44:a2:d5:73:f7:0a:c1:aa:7d:d3:62:0c:51:af:
d9:d9:32:4b:5c:e2:28:d5:84:4f:18:0c:2c:a1:3a:47:95:5e:
64:d0:c3:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 04:06:43 2024 by rpki-client on console-fra.rpki-client.org