Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/2Z1ewbv8Tzsve5POd6_83bV8_I4.roa
File: 2Z1ewbv8Tzsve5POd6_83bV8_I4.roa (raw, json)
Hash identifier: HMr7/1l7QNl9uQr2sDgJgQI8F5UmPraJseMsyOUJrqc=
Subject key identifier: D9:9D:5E:C1:BB:FC:4F:3B:2F:7B:93:CE:77:AF:FC:DD:B5:7C:FC:8E
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 04F5
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/2Z1ewbv8Tzsve5POd6_83bV8_I4.roa
Signing time: Thu 29 Feb 2024 01:36:06 +0000
ROA not before: Thu 29 Feb 2024 01:36:06 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 10010
IP address blocks: 59.85.64.0/18 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:39:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1269 (0x4f5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Feb 29 01:36:06 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=D99D5EC1BBFC4F3B2F7B93CE77AFFCDDB57CFC8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a0:12:1f:4f:e5:e6:8c:c3:66:26:8a:29:ee:
4b:8e:09:48:12:3a:0e:69:6c:f2:6c:89:c0:c7:1b:
a0:73:6c:e0:45:29:07:73:40:4e:d9:95:28:da:f4:
0d:e0:75:64:3a:28:01:87:d5:43:da:a5:c7:90:43:
b4:9a:29:90:05:4f:eb:d4:56:78:72:06:37:6e:ee:
70:7a:78:7a:f8:fb:b2:38:a0:5c:72:d3:d3:dd:ce:
29:a6:ec:3c:fa:01:de:34:f6:db:c6:b3:4a:e9:ad:
06:46:4b:e4:92:41:de:17:94:27:4d:d2:3b:32:d2:
30:c8:3c:93:4e:a0:49:4c:c5:72:16:e9:e9:94:f5:
7c:e1:9d:32:25:63:ba:bb:7e:6b:2c:37:db:55:c4:
e8:c5:3e:75:af:dc:9c:92:0d:58:46:17:57:a1:2c:
49:67:fe:ac:ac:06:52:d2:52:7a:cd:af:ce:10:a7:
b8:15:81:c2:4d:db:f2:15:0b:37:65:45:05:82:b3:
fc:ad:d0:f9:88:b6:6f:8d:46:6d:56:b8:6b:0e:6b:
00:1c:9a:33:34:cd:fd:81:2e:4f:e1:57:22:07:e3:
d8:a2:24:09:48:97:00:c5:45:4b:aa:9d:bd:55:1b:
41:53:94:b9:31:b6:c0:06:23:a9:c8:90:a5:e7:b6:
c1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:9D:5E:C1:BB:FC:4F:3B:2F:7B:93:CE:77:AF:FC:DD:B5:7C:FC:8E
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/2Z1ewbv8Tzsve5POd6_83bV8_I4.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.85.64.0/18
Signature Algorithm: sha256WithRSAEncryption
25:a4:5c:e0:0d:08:95:47:fe:0a:59:89:91:1d:06:65:f9:44:
c6:6f:1b:28:15:aa:c1:59:50:65:a9:1c:ca:47:09:5c:c4:25:
bf:80:d5:07:4c:2f:c3:68:3e:10:ed:dc:a4:e8:78:0d:92:69:
a2:d0:fb:dd:c8:3f:b5:e5:3c:23:1d:55:78:c2:20:cf:e4:df:
38:f7:ba:04:6e:d5:3e:4a:4c:ce:63:54:74:6b:b1:99:f5:c1:
73:5c:d0:96:df:4a:22:9f:89:94:52:39:89:55:0f:06:7e:4c:
14:75:d1:f0:4d:12:08:5b:6a:91:45:f4:3e:58:ea:85:58:32:
c9:25:fc:0d:d2:c6:32:6a:a7:4a:8a:29:c3:dc:3e:65:85:99:
3c:0c:e7:68:33:12:5e:25:93:eb:83:f7:c6:1d:87:7d:a9:33:
ed:60:48:f7:ff:d1:be:d3:10:20:6e:23:7f:9e:3b:2b:ed:ac:
84:15:4a:a2:27:d4:38:83:55:34:26:79:a8:2e:8c:d5:9c:19:
45:3f:4d:e1:b1:67:05:ed:6c:ed:d1:86:56:33:4a:b6:ae:f4:
1d:e3:57:c7:4a:1a:09:49:39:f3:62:24:63:64:29:16:8b:d0:
14:73:8d:f9:3a:18:c9:81:ad:b2:45:af:48:cb:07:7e:4b:f7:
fb:b5:9e:a7
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBPUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE
Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yNDAyMjkw
MTM2MDZaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKEQ5OUQ1RUMxQkJGQzRG
M0IyRjdCOTNDRTc3QUZGQ0REQjU3Q0ZDOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDboBIfT+XmjMNmJoop7kuOCUgSOg5pbPJsicDHG6BzbOBFKQdz
QE7ZlSja9A3gdWQ6KAGH1UPapceQQ7SaKZAFT+vUVnhyBjdu7nB6eHr4+7I4oFxy
09Pdzimm7Dz6Ad409tvGs0rprQZGS+SSQd4XlCdN0jsy0jDIPJNOoElMxXIW6emU
9XzhnTIlY7q7fmssN9tVxOjFPnWv3JySDVhGF1ehLEln/qysBlLSUnrNr84Qp7gV
gcJN2/IVCzdlRQWCs/yt0PmItm+NRm1WuGsOawAcmjM0zf2BLk/hVyIH49iiJAlI
lwDFRUuqnb1VG0FTlLkxtsAGI6nIkKXntsExAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQU2Z1ewbv8Tzsve5POd6/83bV8/I4wHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI
WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH
N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvNTQ1LzJaMWV3YnY4VHpzdmU1UE9kNl84M2JWOF9JNC5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAY7VUAwDQYJKoZIhvcNAQELBQADggEBACWkXOANCJVH/gpZiZEdBmX5RMZv
GygVqsFZUGWpHMpHCVzEJb+A1QdML8NoPhDt3KToeA2SaaLQ+93IP7XlPCMdVXjC
IM/k3zj3ugRu1T5KTM5jVHRrsZn1wXNc0JbfSiKfiZRSOYlVDwZ+TBR10fBNEghb
apFF9D5Y6oVYMskl/A3SxjJqp0qKKcPcPmWFmTwM52gzEl4lk+uD98Ydh32pM+1g
SPf/0b7TECBuI3+eOyvtrIQVSqIn1DiDVTQmeagujNWcGUU/TeGxZwXtbO3RhlYz
Srau9B3jV8dKGglJOfNiJGNkKRaL0BRzjfk6GMmBrbJFr0jLB35L9/u1nqc=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:19:29 2025 by rpki-client