Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/545/xPnZVRqdlM7CHDV_1phVk_mh1ZQ.roa
File: xPnZVRqdlM7CHDV_1phVk_mh1ZQ.roa (raw, json)
Hash identifier: 2Ar14W3JpwD50W4Wq4cLSak89TlaR2Yz29HzIYr7VX8=
Subject key identifier: C4:F9:D9:55:1A:9D:94:CE:C2:1C:35:7F:D6:98:55:93:F9:A1:D5:94
Certificate issuer: /CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Certificate serial: 045A
Authority key identifier: BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/xPnZVRqdlM7CHDV_1phVk_mh1ZQ.roa
Signing time: Thu 13 Apr 2023 09:57:52 +0000
ROA not before: Thu 13 Apr 2023 09:57:52 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 10010
IP address blocks: 59.85.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:36:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1114 (0x45a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=BBDCD526B09E7897F71FE04858BE75C06EC4F13A
Validity
Not Before: Apr 13 09:57:52 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=C4F9D9551A9D94CEC21C357FD6985593F9A1D594
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:87:c7:b3:b2:78:29:a4:32:fb:85:22:8b:c8:
df:5c:65:56:55:01:93:2a:ae:39:ca:31:4d:07:b1:
ac:6e:b2:90:63:20:ff:ef:d0:77:79:8b:49:e3:87:
05:f1:31:a6:84:3b:17:e7:e9:b9:c6:54:a4:24:33:
b6:b7:e5:df:3f:cb:ce:45:ed:9f:8a:cc:f2:70:c5:
93:ef:42:53:3e:df:33:af:a8:fd:cb:87:33:00:60:
ab:19:31:19:d1:66:e9:f0:51:5c:72:cd:d2:7a:ba:
93:55:69:8d:bf:f9:55:8f:83:84:90:db:ae:d0:61:
43:f7:3e:9f:87:cf:5b:aa:db:c6:ed:28:63:e2:81:
76:d2:cc:5c:88:0f:91:17:1e:68:b1:6c:3a:78:62:
f4:27:01:f4:d0:2d:83:75:e8:09:a9:f7:f5:cf:d5:
a0:60:90:21:6a:2b:aa:af:a7:74:62:88:46:75:b5:
1a:c0:ff:ce:51:21:a6:86:7c:eb:7d:cb:5e:5f:b6:
a1:c0:52:59:1b:2c:1f:d8:5c:85:88:a1:6d:6f:24:
e5:2d:bf:62:2f:2c:bf:dd:2a:71:de:43:a5:4b:c4:
79:3b:90:1b:38:d2:a5:97:1b:d1:ac:93:cb:a1:17:
70:73:d0:30:32:1c:87:38:0d:67:93:26:70:c2:d6:
66:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:F9:D9:55:1A:9D:94:CE:C2:1C:35:7F:D6:98:55:93:F9:A1:D5:94
X509v3 Authority Key Identifier:
keyid:BB:DC:D5:26:B0:9E:78:97:F7:1F:E0:48:58:BE:75:C0:6E:C4:F1:3A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/u9zVJrCeeJf3H-BIWL51wG7E8To.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/u9zVJrCeeJf3H-BIWL51wG7E8To.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/545/xPnZVRqdlM7CHDV_1phVk_mh1ZQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.85.0.0/16
Signature Algorithm: sha256WithRSAEncryption
6a:e5:dc:06:1c:21:fa:75:09:e3:d2:f3:de:05:66:e3:09:4f:
22:80:aa:c6:e3:3f:54:d5:59:c4:07:6f:9f:45:5b:ef:a3:fb:
01:75:13:03:e7:bf:c0:74:84:23:83:d1:3a:e1:e8:60:05:df:
c1:a3:ca:a2:25:32:bb:0a:01:8d:2d:7d:ea:58:69:53:ae:d6:
77:22:ce:65:be:95:bc:28:d2:28:1e:e2:46:d6:d1:0a:7a:d1:
b4:c5:27:db:db:90:38:8c:a2:63:8b:56:20:eb:61:38:78:32:
29:de:2b:64:78:22:32:f2:0f:a0:5a:24:1f:b0:01:1d:79:b7:
15:36:dc:00:3d:44:69:03:f3:5f:0c:5b:bb:9d:31:4c:88:a2:
92:27:b5:5f:53:dd:1d:e7:22:be:9a:9c:82:ba:5a:42:bb:35:
e4:a3:e1:75:4b:35:a7:f9:3e:02:d7:a7:e3:75:05:ad:41:02:
cd:b8:bd:a9:fe:15:05:14:92:c8:a0:4c:24:19:fe:42:5f:65:
f5:18:48:a6:3a:f9:20:d7:00:7b:65:6c:1e:23:0b:10:74:c4:
73:f1:71:13:a4:65:7e:9d:db:15:4c:5d:23:b7:63:dd:d9:7a:
e0:57:2c:0a:56:ee:00:20:d1:f0:c3:b6:3f:53:d9:5e:e4:de:
d0:86:f9:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 03:00:59 2024 by rpki-client on console-fra.rpki-client.org