Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/IqRwF2zHE9zpEpm7PJuM4W2KPs0.roa
File: IqRwF2zHE9zpEpm7PJuM4W2KPs0.roa (raw, json)
Hash identifier: YSxL9qdUwDZIO4Dj0hKdw9NxoF5ucrqywgIa3eTbIig=
Subject key identifier: 22:A4:70:17:6C:C7:13:DC:E9:12:99:BB:3C:9B:8C:E1:6D:8A:3E:CD
Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Certificate serial: 01F3
Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/IqRwF2zHE9zpEpm7PJuM4W2KPs0.roa
Signing time: Wed 01 Nov 2023 01:30:33 +0000
ROA not before: Wed 01 Nov 2023 01:30:33 +0000
ROA not after: Mon 14 Oct 2024 01:30:03 +0000
asID: 0
IP address blocks: 210.156.64.0/20 maxlen: 24
Validation: Failed, certificate revoked on Mon 30 Sep 2024 01:28:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 499 (0x1f3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Validity
Not Before: Nov 1 01:30:33 2023 GMT
Not After : Oct 14 01:30:03 2024 GMT
Subject: CN=22A470176CC713DCE91299BB3C9B8CE16D8A3ECD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ac:3b:11:ba:c7:c3:30:19:66:31:d5:86:85:
8a:bc:02:cb:be:60:81:6c:d8:2c:58:98:a8:c4:4f:
45:7b:7c:bb:1a:09:cb:d8:ca:d9:ee:d6:d0:56:3a:
e6:28:c5:da:e4:38:a7:c9:d0:40:2c:e8:9e:65:24:
5a:cd:61:6c:27:e8:8f:a8:2d:c7:f1:93:fd:64:02:
46:b3:c6:21:b6:20:7e:e2:a1:d4:29:c1:99:19:50:
7e:d9:b4:f3:40:7b:75:9a:29:84:40:16:b0:ef:ad:
f2:d4:e9:41:56:f3:d0:27:86:b6:ff:b8:07:c4:8b:
4e:69:91:50:a6:03:00:d1:6b:33:33:54:e4:66:2d:
2d:6c:d0:92:7c:88:b3:0b:3c:b2:41:60:ca:a1:9d:
b2:d5:79:14:fd:0b:56:14:0b:17:22:d9:02:a7:24:
80:bb:29:ac:12:3f:16:21:77:b3:34:8b:b4:f3:2c:
6c:e6:6a:e1:b9:94:53:fe:13:2d:31:76:e8:22:83:
a2:0b:0d:a0:e3:12:ff:b4:dc:02:3a:61:2a:b8:3f:
0a:98:11:c2:66:ff:54:95:5c:fd:1c:de:bf:4d:82:
45:eb:95:0e:f8:89:74:c9:ce:1b:4e:4e:b7:db:72:
f7:2e:d9:94:a5:69:46:7e:58:ae:1f:91:af:24:8c:
2a:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:A4:70:17:6C:C7:13:DC:E9:12:99:BB:3C:9B:8C:E1:6D:8A:3E:CD
X509v3 Authority Key Identifier:
keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/IqRwF2zHE9zpEpm7PJuM4W2KPs0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.156.64.0/20
Signature Algorithm: sha256WithRSAEncryption
69:ec:1d:29:36:d3:90:4e:d4:03:a0:01:01:12:8a:2d:26:16:
44:2a:31:fc:70:05:fc:a4:6a:07:a2:fd:9a:ae:0e:c2:a6:a1:
b7:f5:b7:86:32:86:33:4e:ab:27:26:fe:c0:59:b1:7b:b6:cd:
ad:f4:d4:3a:2f:9e:b8:4b:a6:a1:61:72:ea:67:98:a5:92:c5:
29:9d:7b:6d:2a:1a:45:59:20:55:11:df:59:f8:18:2a:8f:ad:
27:3d:70:d4:63:ca:77:fe:4b:11:e7:87:4d:7a:e5:6d:08:54:
59:7c:22:ba:e6:36:db:4d:ad:c0:fd:ad:90:e1:bb:28:49:9d:
07:81:1f:0f:f6:23:d0:c8:4e:af:f5:d2:9a:aa:df:ba:5d:53:
25:b6:c3:a5:d4:5c:9b:58:f2:56:48:6e:b7:0c:62:93:dd:c7:
0f:13:5a:e2:4d:6f:92:99:be:d4:05:a8:5e:54:92:da:c6:46:
99:0b:31:d0:96:3c:23:43:c2:0d:af:6a:8d:95:72:06:a9:49:
3f:88:f3:7e:36:29:f0:3d:a6:39:d0:ed:39:f0:4f:48:41:7a:
94:4e:b2:27:6d:22:d5:30:9e:dc:42:8c:5f:84:5f:78:b9:75:
4b:0a:2c:ac:28:52:47:75:c4:36:55:c6:3c:85:9d:74:14:12:
d5:9d:c8:20
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkIw
NkIyRTRBOUQ1NjdFQjdEODBGRjU5QTc1NUZEMjgzQkZCMTNBQjAeFw0yMzExMDEw
MTMwMzNaFw0yNDEwMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDIyQTQ3MDE3NkNDNzEz
RENFOTEyOTlCQjNDOUI4Q0UxNkQ4QTNFQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCgrDsRusfDMBlmMdWGhYq8Asu+YIFs2CxYmKjET0V7fLsaCcvY
ytnu1tBWOuYoxdrkOKfJ0EAs6J5lJFrNYWwn6I+oLcfxk/1kAkazxiG2IH7iodQp
wZkZUH7ZtPNAe3WaKYRAFrDvrfLU6UFW89Anhrb/uAfEi05pkVCmAwDRazMzVORm
LS1s0JJ8iLMLPLJBYMqhnbLVeRT9C1YUCxci2QKnJIC7KawSPxYhd7M0i7TzLGzm
auG5lFP+Ey0xdugig6ILDaDjEv+03AI6YSq4PwqYEcJm/1SVXP0c3r9NgkXrlQ74
iXTJzhtOTrfbcvcu2ZSlaUZ+WK4fka8kjCrfAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUIqRwF2zHE9zpEpm7PJuM4W2KPs0wHwYDVR0jBBgwFoAU+way5KnVZ+t9gP9Z
p1X9KDv7E6swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzY3MS8td2F5NUtuVlotdDlnUDlacDFYOUtEdjdFNnMuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC8td2F5NUtuVlotdDlnUDlacDFYOUtE
djdFNnMuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvNjcxL0lxUndGMnpIRTl6cEVwbTdQSnVNNFcyS1BzMC5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBATSnEAwDQYJKoZIhvcNAQELBQADggEBAGnsHSk205BO1AOgAQESii0mFkQq
MfxwBfykagei/ZquDsKmobf1t4YyhjNOqycm/sBZsXu2za301DovnrhLpqFhcupn
mKWSxSmde20qGkVZIFUR31n4GCqPrSc9cNRjynf+SxHnh0165W0IVFl8IrrmNttN
rcD9rZDhuyhJnQeBHw/2I9DITq/10pqq37pdUyW2w6XUXJtY8lZIbrcMYpPdxw8T
WuJNb5KZvtQFqF5UktrGRpkLMdCWPCNDwg2vao2VcgapST+I8342KfA9pjnQ7Tnw
T0hBepROsidtItUwntxCjF+EX3i5dUsKLKwoUkd1xDZVxjyFnXQUEtWdyCA=
-----END CERTIFICATE-----
Generated at Mon Sep 30 04:40:47 2024 by rpki-client on console-ams.rpki-client.org