Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/859/-03hcWrTJcD3l2Ug5kQh_dMt0yo.roa
File: -03hcWrTJcD3l2Ug5kQh_dMt0yo.roa (raw, json)
Hash identifier: lrl3JnMXy0SzhGMEe64CShmFpt4AA+3HQVke9X5TAKE=
Subject key identifier: FB:4D:E1:71:6A:D3:25:C0:F7:97:65:20:E6:44:21:FD:D3:2D:D3:2A
Certificate issuer: /CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B
Certificate serial: 2B
Authority key identifier: 3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/-03hcWrTJcD3l2Ug5kQh_dMt0yo.roa
Signing time: Mon 01 May 2023 01:29:27 +0000
ROA not before: Mon 01 May 2023 01:29:27 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 23778
IP address blocks: 202.58.144.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sun 31 Mar 2024 01:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 43 (0x2b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B
Validity
Not Before: May 1 01:29:27 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=FB4DE1716AD325C0F7976520E64421FDD32DD32A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:6f:db:25:e8:75:ba:40:f7:8f:7f:b1:22:e7:
26:97:0a:5f:5d:e2:47:9a:36:98:4c:17:ca:93:ab:
7c:55:c1:6f:71:8f:b6:99:ec:47:fb:96:fd:24:aa:
81:54:be:b6:fb:a0:85:45:6b:6f:01:ab:67:24:16:
18:34:ed:ef:93:76:2f:81:a8:6e:d3:78:47:8c:a2:
87:d0:81:b9:7f:a5:e6:47:5e:32:bd:ca:fc:2a:b7:
a0:20:85:cd:7e:0d:68:3a:a8:a4:b1:33:50:c8:c6:
2b:68:f4:ff:4d:53:5a:4d:9c:95:e0:f7:79:50:ea:
fc:ef:ed:49:c2:ad:59:18:b4:7b:09:4e:9a:1e:89:
74:a5:ab:2b:39:b9:21:fb:da:79:85:9b:7e:5d:4e:
eb:19:a4:b4:7b:ea:c3:a5:3e:91:75:da:5f:97:bb:
93:7b:c0:08:db:4f:a9:c9:7c:64:46:9e:49:ed:5e:
ae:aa:d8:46:54:86:96:80:18:f2:bf:32:59:42:01:
a1:8f:36:51:91:3a:8a:7f:43:2b:d2:9b:1f:b7:20:
2c:7d:b8:f4:1f:c8:23:bf:ca:27:7c:46:30:c1:df:
d6:ce:b0:6e:f7:26:c4:f8:17:bf:26:8a:27:e1:48:
ed:4d:27:62:50:e9:7e:d2:f5:33:c8:58:20:b2:2f:
27:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:4D:E1:71:6A:D3:25:C0:F7:97:65:20:E6:44:21:FD:D3:2D:D3:2A
X509v3 Authority Key Identifier:
keyid:3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/-03hcWrTJcD3l2Ug5kQh_dMt0yo.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.58.144.0/20
Signature Algorithm: sha256WithRSAEncryption
7d:9e:7e:a5:9c:e4:6f:14:38:b1:f3:c2:c0:8b:d8:a6:90:e7:
03:bc:69:eb:be:e0:d5:61:f9:88:20:c4:4d:07:50:d6:a4:89:
e9:52:4b:d5:66:63:b2:0c:b8:8b:cd:84:c7:cc:04:98:f8:69:
3a:42:05:9a:71:fd:06:ec:b9:cf:37:d5:52:a2:2a:ec:e4:0f:
da:ca:49:52:67:bf:d7:e7:95:75:69:64:e7:46:b4:5d:a2:16:
1a:8a:17:a1:49:9a:2d:b1:c9:02:fc:3d:51:b7:f8:b0:fc:b0:
95:1d:9c:3a:f7:fc:d3:91:48:18:03:39:bc:08:e2:d0:18:5a:
04:5c:bf:20:09:f5:5c:48:a8:d1:04:4a:7b:18:48:d6:29:58:
b9:72:b0:72:ac:3c:e8:d6:58:8a:25:d1:e5:1c:54:b5:c0:0f:
c9:0d:2e:bd:62:cd:4f:31:a7:0a:53:8a:87:46:db:84:9a:b6:
25:bb:96:9d:a0:67:64:13:2c:a7:90:02:48:d4:70:e8:1f:c7:
14:a6:8e:10:5b:e4:9a:31:54:7f:50:36:b4:0c:c2:47:a0:f7:
69:0a:0b:64:3b:08:0e:e5:20:c1:e1:7a:8e:16:ec:a7:60:c4:
23:15:3f:e4:10:da:ba:ae:dd:4c:34:aa:60:4b:5b:02:3b:0c:
a8:3d:6f:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 31 03:12:34 2024 by rpki-client on console-fra.rpki-client.org