Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/Z6fpOAJ_D-fomd9E53mEvNWgIig.roa
File: Z6fpOAJ_D-fomd9E53mEvNWgIig.roa (raw, json)
Hash identifier: zm04ETYmA4yzE9/PknbIUjsZGNCsDrBtm618t7mND14=
Subject key identifier: 67:A7:E9:38:02:7F:0F:E7:E8:99:DF:44:E7:79:84:BC:D5:A0:22:28
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 0446
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/Z6fpOAJ_D-fomd9E53mEvNWgIig.roa
Signing time: Thu 13 Apr 2023 09:57:43 +0000
ROA not before: Thu 13 Apr 2023 09:57:43 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 10010
IP address blocks: 220.216.120.0/22 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:33:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1094 (0x446)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Apr 13 09:57:43 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=67A7E938027F0FE7E899DF44E77984BCD5A02228
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:33:bf:a7:24:70:ba:1b:88:94:c9:ff:39:7a:
87:69:98:4d:82:6d:ea:1f:a1:6b:07:ec:c5:ed:41:
49:a4:c6:b5:c3:4c:57:82:db:68:6b:80:49:8e:8c:
42:88:48:c1:22:59:6f:9d:eb:a6:e1:c5:82:21:88:
ca:1f:bf:75:b2:ee:ae:04:74:de:22:10:2e:1a:f4:
38:a2:cc:a3:7b:b7:97:c7:5d:72:27:ad:7b:c0:5f:
dc:a5:0e:bd:f0:fb:6d:ba:f3:2b:c8:25:9b:ca:69:
d9:be:d0:67:4c:9e:6a:72:6a:b5:b0:cf:ff:e7:0c:
7f:17:d9:46:d7:9d:cf:aa:1a:ef:3f:f0:56:1c:f5:
6e:fd:f9:c5:29:72:89:ac:83:bf:d6:b9:96:fc:58:
c6:79:7f:0d:2a:c4:10:dd:ba:12:75:57:24:32:73:
e1:3f:df:c1:69:94:44:71:08:b0:f7:72:11:19:dc:
f6:a2:eb:fb:44:55:7d:bf:b6:74:ec:14:0c:ab:07:
25:ac:f3:cd:88:65:e3:6d:ef:10:86:64:be:be:a0:
16:11:db:c6:81:08:44:9f:98:b5:ea:01:4c:c2:27:
13:ab:64:0f:64:4d:18:53:eb:ec:d1:0b:f4:36:67:
7e:7d:bb:62:b7:4c:a1:e0:1e:67:d8:da:7d:9c:9c:
e9:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:A7:E9:38:02:7F:0F:E7:E8:99:DF:44:E7:79:84:BC:D5:A0:22:28
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/Z6fpOAJ_D-fomd9E53mEvNWgIig.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.216.120.0/22
Signature Algorithm: sha256WithRSAEncryption
a3:5b:87:36:04:86:a7:4f:4b:78:36:d8:5d:9b:f6:15:af:79:
b1:80:69:97:7e:0e:98:13:44:4e:cb:e5:ad:d4:d0:93:10:49:
1e:c9:85:0e:fd:0a:0f:37:8c:c2:12:4e:25:83:43:86:fc:83:
11:86:2f:26:66:39:96:4a:68:a8:d1:43:23:de:62:64:0d:b7:
18:ff:bc:55:0e:2b:f3:5d:7a:ff:ce:97:fb:d1:21:96:a3:39:
bd:9f:f2:62:9b:4e:c7:7d:a6:a9:cc:46:9d:f6:4e:52:de:bb:
c0:68:75:10:bf:02:4d:e0:83:2e:72:af:ae:ea:0e:91:ef:c6:
05:aa:65:4c:1f:6e:0b:71:18:2c:29:a4:3a:91:c9:c1:b0:77:
0c:ad:b7:98:b1:2a:a6:35:aa:a5:75:5e:8a:da:44:8d:bc:7a:
b6:31:8c:a5:ab:29:73:17:12:ea:f0:92:1a:3b:14:37:02:a0:
9b:15:d8:ce:66:15:17:3c:cd:27:33:39:32:7d:0f:4a:92:24:
f1:8d:1e:85:94:c1:9e:29:b7:f9:c9:49:41:f3:d7:8d:52:7b:
a0:df:9a:c1:99:87:e5:3f:a2:1f:2d:f9:1a:38:f5:e0:7b:88:
d3:61:a8:a1:e2:f2:1d:db:e2:36:71:46:c1:65:c4:01:ba:a7:
ca:ca:89:2b
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBEYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJE
Q0Q1MjZCMDlFNzg5N0Y3MUZFMDQ4NThCRTc1QzA2RUM0RjEzQTAeFw0yMzA0MTMw
OTU3NDNaFw0yNDAzMTQwMTMwMDJaMDMxMTAvBgNVBAMTKDY3QTdFOTM4MDI3RjBG
RTdFODk5REY0NEU3Nzk4NEJDRDVBMDIyMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCwM7+nJHC6G4iUyf85eodpmE2CbeofoWsH7MXtQUmkxrXDTFeC
22hrgEmOjEKISMEiWW+d66bhxYIhiMofv3Wy7q4EdN4iEC4a9DiizKN7t5fHXXIn
rXvAX9ylDr3w+2268yvIJZvKadm+0GdMnmpyarWwz//nDH8X2UbXnc+qGu8/8FYc
9W79+cUpcomsg7/WuZb8WMZ5fw0qxBDduhJ1VyQyc+E/38FplERxCLD3chEZ3Pai
6/tEVX2/tnTsFAyrByWs882IZeNt7xCGZL6+oBYR28aBCESfmLXqAUzCJxOrZA9k
TRhT6+zRC/Q2Z359u2K3TKHgHmfY2n2cnOlXAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUZ6fpOAJ/D+fomd9E53mEvNWgIigwHwYDVR0jBBgwFoAUu9zVJrCeeJf3H+BI
WL51wG7E8TowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzU0NS91OXpWSnJDZWVKZjNILUJJV0w1MXdHN0U4VG8uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC91OXpWSnJDZWVKZjNILUJJV0w1MXdH
N0U4VG8uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvNTQ1L1o2ZnBPQUpfRC1mb21kOUU1M21Fdk5XZ0lpZy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBALc2HgwDQYJKoZIhvcNAQELBQADggEBAKNbhzYEhqdPS3g22F2b9hWvebGA
aZd+DpgTRE7L5a3U0JMQSR7JhQ79Cg83jMISTiWDQ4b8gxGGLyZmOZZKaKjRQyPe
YmQNtxj/vFUOK/Ndev/Ol/vRIZajOb2f8mKbTsd9pqnMRp32TlLeu8BodRC/Ak3g
gy5yr67qDpHvxgWqZUwfbgtxGCwppDqRycGwdwytt5ixKqY1qqV1XoraRI28erYx
jKWrKXMXEurwkho7FDcCoJsV2M5mFRc8zSczOTJ9D0qSJPGNHoWUwZ4pt/nJSUHz
141Se6DfmsGZh+U/oh8t+Ro49eB7iNNhqKHi8h3b4jZxRsFlxAG6p8rKiSs=
-----END CERTIFICATE-----
Generated at Thu Feb 29 03:00:58 2024 by rpki-client on console-fra.rpki-client.org