Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/klnFvupLh0_zvKB8gBh76ojDWJM.roa
File: klnFvupLh0_zvKB8gBh76ojDWJM.roa (raw, json)
Hash identifier: kSgC2umr3TCMikIzwHoJ5tQ3GfKXdqIsum/qFyRgbD4=
Subject key identifier: 92:59:C5:BE:EA:4B:87:4F:F3:BC:A0:7C:80:18:7B:EA:88:C3:58:93
Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Certificate serial: 01DD
Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/klnFvupLh0_zvKB8gBh76ojDWJM.roa
Signing time: Sun 01 Oct 2023 01:40:00 +0000
ROA not before: Sun 01 Oct 2023 01:40:00 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 9824
IP address blocks: 219.115.0.0/16 maxlen: 24
Validation: Failed, certificate revoked on Sat 31 Aug 2024 01:43:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 477 (0x1dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Validity
Not Before: Oct 1 01:40:00 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=9259C5BEEA4B874FF3BCA07C80187BEA88C35893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b1:7b:7a:39:33:2c:1e:30:a0:90:b0:2e:0c:
bb:86:8f:7a:88:52:85:c3:34:67:8f:76:84:17:52:
75:25:b9:67:b2:f5:17:5c:79:20:bc:a4:f8:d0:b1:
29:b3:30:f9:0e:4b:74:71:87:18:cc:ea:a9:d3:de:
29:a8:e1:c5:4a:41:77:7e:93:5f:29:79:07:3e:23:
bb:0d:4e:ab:28:2e:80:e6:fc:0d:2d:3d:61:e2:9c:
e1:78:3b:50:ce:7b:63:54:ab:3a:af:2d:d6:87:a5:
6e:b2:47:04:1d:de:c4:a0:84:eb:be:f4:bc:64:b4:
f0:34:96:b2:07:d1:4e:a4:67:f4:a8:73:8e:b2:84:
72:56:13:b3:b1:2d:8b:02:85:46:f8:e5:85:9f:aa:
2b:4c:b5:a2:3f:94:e2:2e:29:ad:a8:0a:df:63:65:
e6:50:5a:87:93:b4:c4:20:f2:f3:53:61:d9:09:48:
64:7d:84:cf:a4:a5:03:0e:bd:82:09:9f:37:16:09:
1a:9f:8e:6b:e4:ad:6b:c3:20:b4:67:d8:3e:4b:62:
e5:da:69:ee:c8:00:ad:8d:8a:9f:24:f3:ce:53:a9:
c7:13:4f:5b:22:54:cd:52:0e:b0:26:43:02:a6:c3:
6d:38:d2:7e:88:c0:42:8d:44:4e:2d:46:2b:3b:23:
1c:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:59:C5:BE:EA:4B:87:4F:F3:BC:A0:7C:80:18:7B:EA:88:C3:58:93
X509v3 Authority Key Identifier:
keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/klnFvupLh0_zvKB8gBh76ojDWJM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.115.0.0/16
Signature Algorithm: sha256WithRSAEncryption
bf:9a:c7:b3:f6:22:dd:1d:5a:60:51:a9:d5:9a:56:6d:e7:e8:
26:e2:97:19:9f:67:14:22:9d:d8:4b:70:c9:87:df:21:7a:85:
d2:cc:85:86:8b:6c:ec:93:77:02:93:ee:47:c7:7b:1b:60:d1:
29:e6:65:28:26:0f:11:c5:83:e4:32:93:75:4d:2e:0b:15:55:
ac:1d:ff:73:66:03:55:35:95:fc:2f:06:90:87:42:49:aa:47:
c5:a9:90:e3:0e:20:6c:8b:97:15:ee:d9:81:ef:f4:ef:0d:2a:
4d:75:40:f0:f8:71:d4:55:1a:4c:94:7e:83:7b:be:42:84:2b:
88:23:92:5c:c4:92:01:4d:cc:75:52:1c:99:39:50:15:57:43:
ce:e6:d7:4f:d2:0f:6a:e0:ad:5f:c1:32:35:69:2e:a1:fb:d2:
6c:8d:78:47:bd:0c:7d:d7:92:63:47:f2:13:a2:53:d6:bd:9e:
7f:f5:93:76:bf:8e:04:cc:88:a1:c7:4b:58:d1:4e:be:72:a6:
70:c5:bd:f1:da:25:3a:b6:1f:7a:2b:52:c9:08:84:1d:b2:b0:
f2:cd:d5:10:21:7e:b8:19:0a:bd:45:65:2e:17:83:53:aa:26:
bd:a3:26:7b:ce:5b:cd:1d:7a:fb:de:f6:0b:46:c8:1f:1b:1a:
03:23:25:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 04:11:55 2024 by rpki-client on console-ams.rpki-client.org