Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/m4wCh6QeVfLXRJ6fJVvCDDXmdpk.roa
File: m4wCh6QeVfLXRJ6fJVvCDDXmdpk.roa (raw, json)
Hash identifier: s6k+HV9Tp0d2ywdOu1Qus8K4Lvls07UIT6HTwIvtyuk=
Subject key identifier: 9B:8C:02:87:A4:1E:55:F2:D7:44:9E:9F:25:5B:C2:0C:35:E6:76:99
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 04E8
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/m4wCh6QeVfLXRJ6fJVvCDDXmdpk.roa
Signing time: Thu 29 Feb 2024 01:36:01 +0000
ROA not before: Thu 29 Feb 2024 01:36:01 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 10010
IP address blocks: 220.148.132.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:39:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1256 (0x4e8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Feb 29 01:36:01 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=9B8C0287A41E55F2D7449E9F255BC20C35E67699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:d2:e6:6c:d4:8e:55:40:52:c4:4e:fa:c9:7e:
40:c0:94:7a:25:30:c1:0f:1d:f0:d6:be:23:91:e6:
5f:66:4b:28:70:32:2e:70:e7:51:b8:dc:21:97:2a:
ab:88:ac:70:ae:b7:f4:dd:97:87:8a:ab:67:10:b8:
7b:b1:91:14:fe:a9:1f:c4:5b:65:9b:ad:50:13:78:
a5:bb:19:f8:fc:1e:f5:d0:ec:bf:5a:47:49:0c:2d:
80:65:71:70:b8:92:cb:6f:3f:01:63:53:8c:67:9c:
cd:60:61:59:34:4e:d0:b6:59:98:f7:d8:9d:fe:55:
20:08:e2:19:65:9b:c7:28:a5:94:57:30:89:bd:1e:
28:ee:e3:38:63:8a:0e:77:40:fe:4a:46:1f:76:d2:
0e:b0:96:7b:5f:8f:7c:90:48:47:f6:f2:06:8b:eb:
49:f6:25:0c:16:ce:80:d0:06:35:b2:e2:f3:3c:31:
30:53:97:e2:5e:ce:a7:89:23:b3:1a:0e:03:6c:45:
44:f2:43:9f:6a:40:9b:a8:80:9d:20:2c:77:31:76:
c7:48:3d:41:5a:f8:a0:da:2b:93:c0:11:4c:b9:56:
54:fa:f9:b2:86:9c:14:0e:fd:15:cd:44:76:9c:3a:
9d:85:e0:bc:cf:a9:79:37:5b:28:82:71:61:32:c4:
b8:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:8C:02:87:A4:1E:55:F2:D7:44:9E:9F:25:5B:C2:0C:35:E6:76:99
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/m4wCh6QeVfLXRJ6fJVvCDDXmdpk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.148.132.0/22
Signature Algorithm: sha256WithRSAEncryption
60:12:04:fa:bf:a1:ef:db:e4:61:23:7c:9a:35:8f:ae:97:30:
4b:f8:ff:0d:a2:99:b1:36:f6:09:ba:4e:56:74:46:e3:f1:39:
4f:c8:c2:24:d7:85:00:da:86:19:84:b6:5b:a1:a1:f0:9d:f8:
be:dc:50:0e:b6:be:d5:ba:a9:62:b9:e5:d4:07:ff:b7:fd:d0:
12:c4:bf:25:e4:08:02:44:4f:e7:2b:f9:32:59:51:84:b6:7c:
1b:27:05:c5:d5:73:b7:d6:65:20:fd:92:58:70:76:f3:33:34:
f0:af:ec:03:87:66:6b:5a:5b:32:8c:4b:5d:54:ea:82:77:d4:
d7:d4:3d:3c:f2:1e:0a:60:cc:9d:6c:8c:a8:de:2f:6b:bd:42:
09:ed:2f:52:27:a0:8e:23:93:5e:3e:7d:04:62:db:11:44:71:
0c:e1:9d:95:38:da:1e:0f:3c:58:09:16:9a:5b:20:32:a5:93:
85:a3:e1:f9:72:c8:69:3b:be:77:ff:a2:5d:b7:ca:39:78:11:
41:fe:68:56:62:55:19:8e:31:26:b9:79:e1:c2:77:7e:5d:5a:
ee:88:85:43:9e:2a:e6:e9:52:db:fa:15:0c:32:d3:07:19:70:
ab:58:94:ff:46:de:f9:18:a5:98:28:c8:c4:64:ad:3e:15:b6:
46:13:45:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:42 2025 by rpki-client