Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/QOyICB07pZO-JgZzTICmOIo7aRg.roa
File: QOyICB07pZO-JgZzTICmOIo7aRg.roa (raw, json)
Hash identifier: OcQjpqbEBZSMWIEgZ+cu+o+ml7ZanjX5oY5A3UmLXEo=
Subject key identifier: 40:EC:88:08:1D:3B:A5:93:BE:26:06:73:4C:80:A6:38:8A:3B:69:18
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 0474
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/QOyICB07pZO-JgZzTICmOIo7aRg.roa
Signing time: Thu 13 Apr 2023 09:59:49 +0000
ROA not before: Thu 13 Apr 2023 09:59:49 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 10010
IP address blocks: 220.216.32.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:39:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1140 (0x474)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Apr 13 09:59:49 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=40EC88081D3BA593BE2606734C80A6388A3B6918
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:eb:b4:f1:41:93:8d:7a:5c:40:81:c0:57:21:
c5:bc:81:21:1a:81:e2:41:b9:2b:11:68:84:54:3b:
77:23:0e:7e:3c:ed:42:04:d9:1d:d5:bc:9a:28:43:
5a:c1:4a:85:1a:31:41:60:0f:fe:c7:85:26:8a:db:
fd:2c:60:3a:37:ea:6b:e2:6c:ca:e5:3b:07:d5:c8:
6c:3b:f3:ab:af:68:d2:e9:c5:74:5b:3d:7a:31:1f:
6d:59:f3:b1:69:82:17:80:99:7f:aa:dc:ef:b0:9b:
25:8b:f6:ab:57:11:0d:ae:08:f1:a5:ab:b1:42:74:
c9:28:8f:a2:8a:44:3d:f2:42:6e:55:6b:b9:e5:e9:
d0:79:ba:ec:6b:9d:52:bf:47:1b:52:9b:df:9f:ac:
0c:20:20:fa:3d:8c:d3:18:43:ec:99:bb:67:30:89:
6c:50:9b:1c:f2:a0:31:70:94:a0:9a:90:49:7c:4d:
a9:fd:66:aa:08:3a:f5:7e:0b:63:52:83:37:7a:c3:
4b:e0:12:78:f0:ec:32:ad:10:68:00:c0:15:95:b5:
91:ca:b9:f1:e6:29:73:30:d2:85:2e:96:4a:3c:f1:
6c:a2:15:dc:7b:d5:15:19:36:8b:74:76:6c:92:55:
9b:ed:7a:6b:1b:67:9d:75:bc:87:a8:18:3b:b2:44:
78:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:EC:88:08:1D:3B:A5:93:BE:26:06:73:4C:80:A6:38:8A:3B:69:18
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/QOyICB07pZO-JgZzTICmOIo7aRg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.216.32.0/20
Signature Algorithm: sha256WithRSAEncryption
92:65:d4:a2:6a:40:11:0f:ea:40:cb:f4:a9:e3:0f:82:0c:b7:
d7:06:3b:5f:6c:2b:37:84:a2:c9:31:4f:43:cf:a2:81:cf:8b:
ed:3f:0a:f6:2a:1e:e9:d4:b1:a1:41:f6:bc:22:9a:86:1a:65:
9a:e5:55:fc:af:a0:05:7e:f2:bc:59:28:ad:19:1a:bd:2b:dd:
f3:55:fe:08:66:82:2f:46:58:2b:26:a2:62:a6:c1:7f:66:c4:
ea:af:5d:5e:24:60:89:01:62:5e:b1:0d:08:21:00:42:05:19:
49:a8:a6:26:0b:a5:5f:78:2c:b4:64:17:cf:36:29:5c:9b:6a:
ce:05:8c:22:8f:89:52:0a:63:ed:76:a3:e6:36:bb:c9:9b:8e:
86:00:04:64:16:5e:2f:e2:ea:f2:bb:36:7e:d3:9e:d9:d5:67:
e4:07:22:67:7d:7b:19:71:60:8a:66:3f:81:22:df:45:93:25:
6e:a7:a1:d4:47:75:62:c1:85:ef:c9:04:ec:66:94:56:47:4e:
df:54:7a:e1:c9:35:ad:ff:0d:a5:aa:8a:15:39:8e:c3:22:5a:
22:bc:de:aa:0c:54:e9:b1:a7:4f:e8:92:2b:e8:a8:33:b0:3c:
f5:f3:a6:90:30:d3:8b:15:88:62:99:b3:09:cc:8e:3f:66:41:
be:5e:ba:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 03:05:49 2024 by rpki-client on console-ams.rpki-client.org