Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/671/loz2qyHrfRIykUgiYhExepuPH7o.roa
File: loz2qyHrfRIykUgiYhExepuPH7o.roa (raw, json)
Hash identifier: dRPLlIXJPlhCPkcY/3vWMt3+WkLIsd7Zxszdd5KtKRw=
Subject key identifier: 96:8C:F6:AB:21:EB:7D:12:32:91:48:22:62:11:31:7A:9B:8F:1F:BA
Certificate issuer: /CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Certificate serial: 0111
Authority key identifier: FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/loz2qyHrfRIykUgiYhExepuPH7o.roa
Signing time: Fri 01 Sep 2023 01:30:21 +0000
ROA not before: Fri 01 Sep 2023 01:30:21 +0000
ROA not after: Wed 14 Aug 2024 01:30:02 +0000
asID: 4721
IP address blocks: 114.142.128.0/21 maxlen: 24
Validation: Failed, certificate revoked on Wed 31 Jul 2024 01:29:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 273 (0x111)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB06B2E4A9D567EB7D80FF59A755FD283BFB13AB
Validity
Not Before: Sep 1 01:30:21 2023 GMT
Not After : Aug 14 01:30:02 2024 GMT
Subject: CN=968CF6AB21EB7D12329148226211317A9B8F1FBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7c:d5:33:74:d7:77:27:19:2c:4a:4c:d4:fc:
4e:c6:71:4e:ab:7a:2e:8b:54:5c:92:01:32:b7:f9:
29:ab:86:10:23:fd:25:d8:ef:94:ff:23:9c:16:a8:
66:7e:82:a0:ef:31:59:7a:00:39:5c:4c:ff:32:d8:
91:b9:86:36:b1:2e:ac:0b:a4:53:23:b6:1f:86:9b:
e7:74:bc:50:3e:45:1d:c0:d9:2e:d2:06:6d:1b:b0:
39:b6:6d:54:4f:38:fd:13:10:64:29:e3:b3:4a:5e:
c5:a6:ef:53:5b:59:0a:e3:09:ce:ae:e8:80:9d:5b:
6d:dd:8f:47:01:1c:07:d4:02:e0:d8:cd:43:d6:db:
a3:4c:4d:a8:5a:aa:4d:69:3e:70:5b:76:68:a1:e4:
c1:10:50:a5:b0:1c:24:be:b5:05:1b:73:43:ba:c4:
13:a2:2d:53:f1:1b:db:5d:4b:55:ec:57:75:75:0d:
dd:6e:ee:06:aa:fe:d4:6f:5b:51:2c:2c:15:c8:5a:
e8:7a:31:48:07:70:6f:0f:90:3c:7d:25:a7:74:78:
d7:69:52:0f:df:27:f9:7d:b5:97:44:d6:f7:db:ef:
e0:5a:95:6f:71:a0:c0:28:4b:f8:10:07:bf:8e:a5:
d6:71:35:dd:c4:dc:d5:77:db:a2:13:8a:c0:34:92:
f9:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:8C:F6:AB:21:EB:7D:12:32:91:48:22:62:11:31:7A:9B:8F:1F:BA
X509v3 Authority Key Identifier:
keyid:FB:06:B2:E4:A9:D5:67:EB:7D:80:FF:59:A7:55:FD:28:3B:FB:13:AB
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/-way5KnVZ-t9gP9Zp1X9KDv7E6s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-way5KnVZ-t9gP9Zp1X9KDv7E6s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/671/loz2qyHrfRIykUgiYhExepuPH7o.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
114.142.128.0/21
Signature Algorithm: sha256WithRSAEncryption
97:07:99:dc:7a:9a:7a:61:bc:f9:2a:02:4f:82:53:14:23:e8:
6d:2a:c3:d9:fe:3a:08:4e:ef:53:aa:cd:38:e4:4e:ce:c0:df:
42:db:a5:fd:4b:d8:60:23:ae:f8:f6:e9:cd:b8:5b:73:26:7a:
85:53:70:89:a5:9a:91:5c:22:dd:bd:42:01:f3:22:76:5f:8b:
5e:53:40:cc:d9:5c:c7:70:e7:5d:17:02:b7:b5:b6:ab:6f:71:
ed:65:fc:93:47:42:d1:c7:e8:6d:14:16:61:94:94:be:a4:72:
17:f4:8e:c3:ec:bd:20:35:52:83:98:1b:bd:fa:0d:86:4b:d2:
56:02:5f:35:ef:2c:80:db:18:76:55:69:54:a0:2c:0e:03:e5:
cd:39:0e:db:91:61:4f:67:a2:24:df:2b:a4:11:72:89:43:66:
60:7d:e5:03:54:f6:62:dc:1f:d6:dd:ab:6c:6e:5d:17:85:94:
5d:c0:8d:1c:ea:0b:5a:74:72:94:55:af:b8:61:5c:66:9a:de:
86:0b:1f:c0:99:2c:22:0e:75:c3:a9:06:4e:fc:07:88:c3:ad:
65:4d:4b:e7:83:75:ab:58:87:8a:70:59:30:56:80:77:29:3d:
ce:69:9b:5b:31:06:3d:00:ea:09:cb:fc:e3:67:ab:d3:71:bf:
c7:32:fe:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 03:01:49 2024 by rpki-client on console-ams.rpki-client.org