Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/68/oIA3jGiB8eGJethst2he6nfovzc.roa
File: oIA3jGiB8eGJethst2he6nfovzc.roa (raw, json)
Hash identifier: u76SPuOSADv971j2qCRTnT7mOvoLggfwk3gllWJWPfI=
Subject key identifier: A0:80:37:8C:68:81:F1:E1:89:7A:D8:6C:B7:68:5E:EA:77:E8:BF:37
Certificate issuer: /CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637
Certificate serial: 2A
Authority key identifier: 65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/oIA3jGiB8eGJethst2he6nfovzc.roa
Signing time: Fri 06 Oct 2023 06:05:40 +0000
ROA not before: Fri 06 Oct 2023 06:05:40 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 9374
IP address blocks: 219.121.192.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sat 31 Aug 2024 01:31:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 42 (0x2a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=65DE52E64BE43E328AA69F3AB2D347F8833EC637
Validity
Not Before: Oct 6 06:05:40 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=A080378C6881F1E1897AD86CB7685EEA77E8BF37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:03:8c:63:7e:60:65:d1:46:91:49:5b:1e:58:
d5:f1:43:91:81:a1:c2:08:cf:38:e9:07:04:54:49:
3d:23:1b:cb:64:a9:3f:50:92:7f:12:f1:04:72:b6:
f5:00:d0:58:82:2e:0c:bb:92:22:e4:c7:49:9b:03:
52:96:b3:e3:68:35:49:67:b4:f5:d3:f0:37:70:49:
5c:d0:e3:e8:d8:06:6d:e5:2d:81:5b:f1:34:ca:63:
09:8e:6e:f1:bb:a0:0b:97:74:19:c5:94:fc:68:79:
c8:e5:ab:31:fa:37:bc:22:32:db:b6:3e:bf:57:61:
c0:74:b7:0f:e9:8c:38:8b:a1:8e:21:de:c1:3d:cd:
9c:a9:50:36:33:1e:3b:13:4a:79:76:61:11:c6:f3:
db:5f:82:57:49:06:cf:2e:03:20:b3:68:4b:5f:7e:
61:fc:28:89:9e:b4:4e:b8:14:f7:e9:8a:93:fa:71:
85:9e:b7:f3:19:9a:40:ee:64:83:85:cf:b1:8c:17:
b3:18:f0:af:91:9d:4b:48:81:08:0f:75:c4:5f:36:
c3:dc:09:2e:5b:24:66:dd:ed:7f:a6:63:0b:d7:bf:
79:39:bb:0e:78:d7:03:a5:9f:38:e1:fc:65:54:71:
ef:40:87:10:6f:66:70:d1:83:7f:94:22:e3:fc:a7:
db:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:80:37:8C:68:81:F1:E1:89:7A:D8:6C:B7:68:5E:EA:77:E8:BF:37
X509v3 Authority Key Identifier:
keyid:65:DE:52:E6:4B:E4:3E:32:8A:A6:9F:3A:B2:D3:47:F8:83:3E:C6:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/Zd5S5kvkPjKKpp86stNH-IM-xjc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Zd5S5kvkPjKKpp86stNH-IM-xjc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/68/oIA3jGiB8eGJethst2he6nfovzc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.121.192.0/20
Signature Algorithm: sha256WithRSAEncryption
79:e5:df:78:21:1b:82:ac:57:14:04:53:be:df:c6:a1:fb:45:
d6:95:cb:a8:64:b4:78:fb:e1:47:31:71:d3:be:48:cb:7a:54:
4d:2a:a7:d7:db:e3:ee:df:12:24:93:a0:e6:ae:44:3d:66:f8:
54:51:3d:7a:39:4a:a4:21:c6:0f:fe:4a:cc:03:68:f6:f7:36:
cf:fd:5c:ce:5c:fc:47:42:91:1b:c6:37:db:b9:07:a1:b3:53:
0c:c8:3b:8c:25:15:d9:37:f5:aa:69:57:d8:f6:07:f6:ca:3a:
00:6b:c9:67:a3:17:71:a4:83:25:f5:83:61:fe:1a:3e:51:41:
6a:d7:c3:f3:e5:49:d8:3b:0f:e4:65:cd:e9:fd:15:3f:b1:81:
a4:69:19:18:8e:82:80:04:57:7e:14:b0:40:88:75:4d:25:e7:
e1:01:bb:63:52:70:1f:f7:6e:64:6f:e4:f1:27:36:d1:6b:b5:
b9:a5:bd:34:26:6c:0f:28:08:90:a2:82:94:15:84:6f:d6:c9:
2f:a7:7a:0f:b5:d2:86:e6:9a:6d:6d:26:fe:93:23:d1:3d:63:
aa:d0:e6:8c:26:ba:de:d1:60:dc:f2:e3:94:3c:57:15:3f:d2:
7b:dc:a1:36:4f:8e:89:1e:2c:30:30:38:25:5c:d1:89:72:d8:
8c:2f:87:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 31 04:11:56 2024 by rpki-client on console-ams.rpki-client.org