Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/699/WTjJtalsk87W9PVXKENCbhy9KoM.roa
File: WTjJtalsk87W9PVXKENCbhy9KoM.roa (raw, json)
Hash identifier: kZzi4kyDhQXBHEdt/g8FCSlwLy+c7cMhbVatjaC+MbU=
Subject key identifier: 59:38:C9:B5:A9:6C:93:CE:D6:F4:F5:57:28:43:42:6E:1C:BD:2A:83
Certificate issuer: /CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130
Certificate serial: 3222
Authority key identifier: 65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/WTjJtalsk87W9PVXKENCbhy9KoM.roa
Signing time: Thu 13 Apr 2023 09:53:09 +0000
ROA not before: Thu 13 Apr 2023 09:53:09 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 7671
IP address blocks: 202.62.176.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:29:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12834 (0x3222)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130
Validity
Not Before: Apr 13 09:53:09 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=5938C9B5A96C93CED6F4F5572843426E1CBD2A83
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:97:1e:32:e2:a6:50:98:a3:86:99:45:1b:fa:
86:ad:61:d2:7c:9b:7e:8b:bc:26:49:3b:fe:29:c8:
f6:93:03:19:b5:6f:8d:08:6a:1c:96:de:eb:e7:e9:
3d:a8:43:df:fd:6f:ef:82:0b:5a:b9:04:92:e3:37:
81:3a:a4:5a:ca:97:46:29:fc:97:06:ff:d5:1c:8b:
0c:c1:6a:c9:4d:27:e0:e3:70:d2:27:ef:6d:fa:19:
eb:19:b1:f6:4e:42:5a:07:e7:f0:2b:b8:cc:ff:12:
1e:d1:88:2e:c7:78:7f:04:fe:26:ec:07:3d:4c:5b:
ce:3e:a4:ae:c4:e4:d1:bc:d7:eb:15:42:3d:93:5c:
b3:4a:8d:3b:97:86:e0:46:91:5c:dd:7b:0f:34:da:
29:2e:7f:6d:1e:f9:7b:4c:76:d0:58:89:0e:5c:0f:
d7:24:ad:9e:c8:d9:20:20:76:74:ef:cc:6f:2c:48:
e8:a5:02:32:ca:e3:66:0a:a1:a8:58:18:e9:ac:4d:
ba:97:58:46:92:95:07:fd:5e:20:db:30:3a:78:8e:
29:e0:b5:c6:c1:6e:e8:2d:42:a6:45:1c:c9:42:2a:
96:33:6c:81:51:0b:7e:8b:ab:8e:a2:2f:96:16:d7:
fd:3a:aa:2a:b8:a2:5d:5b:ea:3c:3a:2d:ce:59:23:
66:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:38:C9:B5:A9:6C:93:CE:D6:F4:F5:57:28:43:42:6E:1C:BD:2A:83
X509v3 Authority Key Identifier:
keyid:65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/WTjJtalsk87W9PVXKENCbhy9KoM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.62.176.0/20
Signature Algorithm: sha256WithRSAEncryption
3e:0f:b8:64:36:ae:e1:46:68:fc:94:22:47:09:7c:64:0e:05:
45:04:47:68:8d:46:2f:f1:6c:f7:3b:41:38:d8:7a:37:06:bb:
67:0d:b1:eb:de:6b:19:63:80:b6:c3:bd:13:3c:4c:4e:67:48:
ce:9d:ff:93:5a:16:11:81:06:e4:aa:ac:9f:ac:3c:a0:2d:e7:
0e:7c:26:2f:a3:a4:ce:f6:86:8c:da:be:1a:a1:74:f5:0a:ec:
cc:ae:c4:5b:a1:17:01:53:33:11:12:92:e0:b7:69:e6:b9:65:
3f:77:45:27:93:2e:db:28:d7:77:94:10:27:0b:5c:8a:af:3f:
50:87:d7:6e:5b:12:d3:ec:fe:7d:de:a2:98:33:23:71:39:c5:
dd:aa:b8:a6:6f:d1:f2:e8:2d:65:18:09:cf:27:01:4c:0b:2f:
ab:e7:64:b5:b0:8f:83:54:68:8e:7d:24:2a:5c:c3:c2:a5:56:
49:ce:c4:04:09:31:57:ab:95:f7:21:29:cc:d2:a8:62:24:c2:
b1:45:b4:a2:ac:31:8a:db:39:8d:cf:f9:4c:8e:c3:2f:0b:50:
ac:f6:fe:93:57:74:df:66:2e:f1:b6:b0:19:77:ef:7c:86:37:
bb:f2:36:f8:de:3a:f5:ff:4f:26:6f:f2:b2:ed:14:c2:a1:72:
06:f9:d8:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 02:02:26 2024 by rpki-client on console-ams.rpki-client.org