Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/699/zxKXtZ61Wy-iWsPbhjsYugGKdPU.roa
File: zxKXtZ61Wy-iWsPbhjsYugGKdPU.roa (raw, json)
Hash identifier: zxY05PinwASeoTf3HGz7Qm+5JESqb2iaOJtPuEhGFJU=
Subject key identifier: CF:12:97:B5:9E:B5:5B:2F:A2:5A:C3:DB:86:3B:18:BA:01:8A:74:F5
Certificate issuer: /CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130
Certificate serial: 321F
Authority key identifier: 65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/zxKXtZ61Wy-iWsPbhjsYugGKdPU.roa
Signing time: Thu 13 Apr 2023 09:53:08 +0000
ROA not before: Thu 13 Apr 2023 09:53:08 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 7671
IP address blocks: 219.111.224.0/20 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:29:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 12831 (0x321f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6522E2C3EF4D93F13E758A807A40A8E1BF9AB130
Validity
Not Before: Apr 13 09:53:08 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=CF1297B59EB55B2FA25AC3DB863B18BA018A74F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:11:b5:c6:a4:9c:7d:c2:dc:50:98:5f:84:49:
e5:95:2b:a2:7e:11:86:ce:bf:d6:2b:1d:25:f1:5a:
7c:24:27:38:ec:4a:a4:c6:e4:db:36:df:3e:2f:b1:
74:84:95:6c:ba:c0:c0:3b:a5:f1:c0:4f:09:40:44:
2e:75:96:7c:ee:e7:23:76:76:26:c7:c6:fd:82:25:
18:30:e8:28:64:fc:89:2d:b9:77:2a:12:65:81:fa:
2c:d4:7c:89:98:04:12:d4:5e:26:37:91:23:97:2d:
c0:03:8a:ea:d7:41:7c:73:99:67:12:58:65:0e:64:
41:79:ae:53:c9:d8:3a:5c:b4:15:eb:ac:5b:d0:94:
37:b5:a0:61:4b:17:40:93:1f:6d:3e:19:ec:67:57:
74:ad:29:f3:0c:2d:2a:b9:05:f1:bb:4d:93:2b:54:
58:1d:93:b2:94:df:8a:02:9d:9e:2a:cb:ad:cd:dc:
82:f5:2b:a9:08:dd:28:81:62:14:43:5a:92:ee:09:
f1:90:37:11:0e:e5:75:34:a9:2e:9f:f4:0a:1c:a8:
ec:c1:c9:f5:1d:4c:02:f7:b3:45:c0:0a:00:b2:e0:
9b:a6:e0:2d:0c:bc:55:36:af:41:dd:62:83:9b:2d:
1d:61:5b:ed:3f:47:24:11:90:07:c8:e1:0c:84:1b:
05:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:12:97:B5:9E:B5:5B:2F:A2:5A:C3:DB:86:3B:18:BA:01:8A:74:F5
X509v3 Authority Key Identifier:
keyid:65:22:E2:C3:EF:4D:93:F1:3E:75:8A:80:7A:40:A8:E1:BF:9A:B1:30
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/ZSLiw-9Nk_E-dYqAekCo4b-asTA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ZSLiw-9Nk_E-dYqAekCo4b-asTA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/699/zxKXtZ61Wy-iWsPbhjsYugGKdPU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.111.224.0/20
Signature Algorithm: sha256WithRSAEncryption
66:d5:8b:93:4d:e6:b5:44:f6:47:e3:6f:1d:29:4b:f6:40:b6:
54:eb:c3:93:38:80:b7:ce:0f:26:8c:00:d0:d5:e7:c4:f2:72:
0e:db:22:c6:76:03:1e:08:c3:1b:e1:9e:e7:2e:65:bc:95:3a:
f0:54:f4:ea:9d:80:92:8d:2b:50:43:ac:ca:bc:61:e5:ca:50:
b8:10:90:83:ca:a2:13:5d:da:c7:45:41:d4:49:6c:14:37:7d:
b8:19:f3:7b:38:c0:a0:c4:e7:65:b6:c0:9e:d8:30:9d:37:af:
61:d0:08:e2:33:df:14:0e:11:63:97:98:1b:75:1f:69:b0:51:
a4:07:18:06:75:c7:8f:c3:64:26:e1:b0:b3:fd:80:52:36:f7:
d1:3f:06:ac:b7:6f:fa:a3:86:4a:3c:e1:8b:0d:22:dc:76:33:
9d:ff:4d:4c:23:6b:72:d1:1b:2f:c0:60:e7:a7:a9:97:21:14:
17:84:21:97:fe:2f:a1:8e:54:37:50:f9:46:11:b5:cc:a8:d2:
47:d4:f7:13:8f:5a:f1:64:52:03:7d:62:44:c4:35:c4:1e:79:
95:7c:82:a9:9b:33:79:67:46:cb:fb:43:96:e3:6f:5c:5d:15:
86:ba:0c:48:9e:9a:f3:cf:b8:3b:34:d8:40:bf:1f:20:31:a0:
58:cb:73:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 02:02:26 2024 by rpki-client on console-ams.rpki-client.org