Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/NKMY8n2cKGWQNjSQ1DldOTcGltg.roa
File: NKMY8n2cKGWQNjSQ1DldOTcGltg.roa (raw, json)
Hash identifier: h+DweLgbAlOR2Ov1jZwz4its8ZAr3buObdubYVKDH80=
Subject key identifier: 34:A3:18:F2:7D:9C:28:65:90:36:34:90:D4:39:5D:39:37:06:96:D8
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 0427
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/NKMY8n2cKGWQNjSQ1DldOTcGltg.roa
Signing time: Thu 13 Apr 2023 09:55:20 +0000
ROA not before: Thu 13 Apr 2023 09:55:20 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 10010
IP address blocks: 116.68.220.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:33:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1063 (0x427)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Apr 13 09:55:20 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=34A318F27D9C286590363490D4395D39370696D8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:c6:6d:3c:a5:fd:7e:34:4e:7a:97:24:4e:57:
f8:9b:f5:fc:74:bd:d0:ee:2d:91:38:03:47:91:f5:
b0:ee:f3:d0:a6:58:46:a0:e1:59:a8:e7:1c:aa:0c:
91:93:c7:e6:6c:59:4a:21:64:50:16:f3:d4:06:f6:
2c:9c:64:97:7e:9c:0f:d2:10:8a:95:02:ab:5b:5d:
f2:10:e7:36:e1:dd:66:68:ce:7a:d9:bd:79:43:3d:
56:d4:e2:40:43:c8:fc:fd:bf:b2:16:7b:8a:f1:21:
73:2e:3c:1a:69:e7:a0:6e:a9:03:e4:55:50:75:a8:
ca:4d:38:4a:ad:20:96:f6:ee:3a:50:c9:8e:69:7a:
38:9d:c2:bb:1b:a1:04:3a:4c:a4:ae:81:69:c3:ab:
3c:07:94:5a:97:dc:d1:06:ad:5f:6c:d9:bb:50:af:
23:c3:f8:01:6a:ca:dd:28:00:9b:b7:9e:e3:f2:fb:
7d:84:34:25:e3:da:84:31:3c:09:7b:f5:b0:15:34:
71:d2:92:5f:e1:06:f9:ca:eb:81:11:97:bb:36:4a:
c7:c9:7b:7f:e8:39:5d:c4:c0:11:22:27:3d:15:17:
3b:c9:8e:2d:51:43:70:03:cd:28:22:f3:56:84:25:
fa:f0:16:51:00:24:6d:1d:0d:a9:5f:88:1d:47:be:
37:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A3:18:F2:7D:9C:28:65:90:36:34:90:D4:39:5D:39:37:06:96:D8
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/NKMY8n2cKGWQNjSQ1DldOTcGltg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.68.220.0/22
Signature Algorithm: sha256WithRSAEncryption
57:bf:75:4b:32:83:cd:cd:16:7d:cb:92:b4:f8:02:02:6d:10:
1c:f6:46:ec:25:71:5c:9e:8f:c8:d1:1f:b7:60:14:31:44:f6:
71:17:e0:a6:bd:6f:ba:71:3f:9e:4c:f3:92:c2:bc:cf:d6:86:
70:79:b9:60:81:12:f5:34:e8:b0:5c:98:5c:68:f8:ed:ef:1c:
24:c4:f4:35:3a:05:9b:fe:ed:cd:83:05:f9:3c:3a:b2:d3:76:
a4:0e:b3:f7:4e:73:d7:43:28:45:c5:73:df:52:0b:3a:fe:f0:
db:f5:f4:2e:04:57:da:56:cd:a0:a6:c4:38:68:4c:7c:4b:1f:
b1:17:e8:3e:b9:9a:56:45:66:ec:6f:34:41:e1:02:69:8b:7c:
44:8d:8a:ac:64:09:3b:b9:b7:b6:7a:29:f0:a8:80:9d:da:48:
1c:be:96:a6:b5:0c:ac:40:7c:b6:39:95:73:9c:3e:13:90:6f:
7c:6d:55:e4:ed:8c:00:17:03:2d:03:ae:bd:29:64:4d:ed:81:
99:fa:fa:fb:3b:f9:d3:04:cf:2b:85:34:bb:bb:6b:95:db:c1:
31:e8:45:e7:08:c4:ad:e1:b5:d6:7b:07:e3:49:28:21:5e:61:
aa:15:ed:43:b8:a8:0e:84:c7:5e:78:c1:6f:56:6c:d0:be:37:
50:ba:00:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 02:02:26 2024 by rpki-client on console-ams.rpki-client.org