Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/r8WCSg9G2OfoxxPFPRfyPIUUQhQ.roa
File: r8WCSg9G2OfoxxPFPRfyPIUUQhQ.roa (raw, json)
Hash identifier: /ejWNNjxVYKEQVkPRqEvngmoCIzpPLaeJ+VkYgdemrA=
Subject key identifier: AF:C5:82:4A:0F:46:D8:E7:E8:C7:13:C5:3D:17:F2:3C:85:14:42:14
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 04F2
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/r8WCSg9G2OfoxxPFPRfyPIUUQhQ.roa
Signing time: Thu 29 Feb 2024 01:36:05 +0000
ROA not before: Thu 29 Feb 2024 01:36:05 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 10010
IP address blocks: 219.112.176.0/20 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:39:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1266 (0x4f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Feb 29 01:36:05 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=AFC5824A0F46D8E7E8C713C53D17F23C85144214
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:1e:8f:06:7f:bf:f9:e9:b1:5c:27:a1:ed:72:
4f:7b:7b:84:5a:2a:4c:4a:88:c8:d2:c9:3f:42:77:
6a:e9:32:de:c1:a6:a3:b9:72:73:94:5e:1e:54:75:
ad:02:4e:e6:37:a0:ac:da:10:c6:42:ad:3b:85:09:
cb:bf:f3:81:2a:56:82:2a:f2:08:56:97:c3:23:9e:
10:af:ef:97:e3:8a:90:35:2e:16:11:79:43:12:24:
da:8a:d8:75:16:ab:59:33:c3:a1:5c:5d:aa:00:5b:
ef:32:1b:a6:9b:9b:54:b9:92:b4:27:81:04:b3:04:
bb:b3:47:7b:a3:90:fe:53:f2:1b:84:e6:8f:41:5c:
dc:ef:83:63:5d:78:0c:90:db:3e:5a:d0:b8:c6:c6:
ed:f1:0a:9c:33:0d:8b:2f:c6:a5:4d:a0:43:6d:89:
d8:dc:b9:76:27:0a:05:22:96:04:79:e4:ac:4a:aa:
58:12:76:8a:09:f0:7d:af:f1:ad:f7:54:0e:7a:9a:
2e:fe:c0:0d:04:42:45:d2:ff:3c:33:a5:39:ef:2a:
51:d1:35:9f:b5:db:12:d9:ea:fe:0b:40:b4:c7:5b:
17:90:d6:f6:df:4a:2b:e0:2f:1a:e8:e9:76:b0:19:
b2:cb:ec:d5:23:d4:96:36:63:ef:b5:3b:8d:d9:51:
9a:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:C5:82:4A:0F:46:D8:E7:E8:C7:13:C5:3D:17:F2:3C:85:14:42:14
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/r8WCSg9G2OfoxxPFPRfyPIUUQhQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.112.176.0/20
Signature Algorithm: sha256WithRSAEncryption
1b:76:5f:d8:c5:5a:f5:23:06:7a:10:f3:c0:eb:fb:1b:98:12:
36:90:1d:a0:1e:55:33:c8:d9:c4:1d:b7:c2:1a:0c:40:31:70:
f3:a1:4d:f6:3c:eb:55:55:23:64:7f:e9:db:fb:e1:ad:3a:9f:
90:8b:e8:88:b5:d5:43:6c:74:21:b6:70:64:36:a5:eb:2d:eb:
6a:8d:ec:04:fa:f2:95:7b:6e:9b:90:6b:a5:58:c6:4c:d8:d2:
80:cd:0d:02:1d:8c:be:35:70:22:48:9e:05:04:ba:e7:e7:56:
99:95:5f:88:69:e8:58:18:9d:dd:6f:5b:43:6d:f5:c2:0a:90:
16:4e:e9:e0:66:ce:90:15:fd:26:ae:d2:be:1a:3b:81:b3:22:
c3:73:5f:43:88:7e:e0:44:24:d9:0a:c4:34:ca:57:48:03:80:
32:aa:59:c3:55:4e:33:0f:a7:67:9c:f8:fa:67:af:39:2c:69:
65:bc:31:ef:4b:ea:77:39:6d:32:27:a5:3a:cf:e9:e8:e8:23:
50:0b:0f:31:4f:5d:17:91:ff:70:df:7a:9d:e7:9a:42:1e:9e:
0d:02:13:b4:3a:1a:99:50:df:05:24:a0:03:4e:05:0d:35:8c:
fa:88:4c:3e:c0:ff:e2:10:58:a5:0d:96:b4:ca:e7:09:4e:3d:
1e:4a:2e:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:14:54 2025 by rpki-client