Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/859/QKXwkTlFGWLE3l-csv-oqfG5m-M.roa
File: QKXwkTlFGWLE3l-csv-oqfG5m-M.roa (raw, json)
Hash identifier: 6tZhOEHlxrfPiz+GLRfU9lf6pl00ZtGvWUlMsXAKkbU=
Subject key identifier: 40:A5:F0:91:39:45:19:62:C4:DE:5F:9C:B2:FF:A8:A9:F1:B9:9B:E3
Certificate issuer: /CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B
Certificate serial: 37
Authority key identifier: 3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/QKXwkTlFGWLE3l-csv-oqfG5m-M.roa
Signing time: Wed 01 Nov 2023 01:30:18 +0000
ROA not before: Wed 01 Nov 2023 01:30:18 +0000
ROA not after: Mon 14 Oct 2024 01:30:03 +0000
asID: 23778
IP address blocks: 133.88.48.0/20 maxlen: 20
Validation: Failed, certificate revoked on Mon 30 Sep 2024 01:32:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 55 (0x37)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B
Validity
Not Before: Nov 1 01:30:18 2023 GMT
Not After : Oct 14 01:30:03 2024 GMT
Subject: CN=40A5F09139451962C4DE5F9CB2FFA8A9F1B99BE3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:42:83:75:7b:bb:94:2c:fb:e5:9f:23:b5:6d:
fa:b5:85:a9:12:b2:ca:18:8e:95:f7:6e:33:d9:14:
3c:85:bd:c2:9d:6a:ac:39:d7:3f:7f:cd:d9:50:2f:
79:c5:6f:8a:b0:ab:23:2b:20:22:77:b5:11:0e:78:
d5:bc:ae:74:5d:42:cd:b7:fb:43:67:17:aa:20:10:
eb:6a:0c:b5:42:8f:30:6f:6a:87:8b:a5:a8:f9:6d:
13:27:12:67:21:8e:a1:4d:02:f9:fc:46:1c:da:80:
4b:04:70:e6:dd:f8:fa:97:e6:45:78:96:bc:a5:c4:
f6:c9:98:f7:f7:37:e1:e2:6f:96:f7:d4:66:45:78:
53:ff:56:30:a6:a3:9a:c8:12:8e:6a:9f:f1:5b:59:
aa:43:fb:9d:ac:4a:04:9b:0e:bc:55:1b:71:bf:b9:
2a:3d:da:74:41:42:f5:e9:1a:1c:31:99:f6:52:7f:
10:32:d7:d0:5e:25:4a:2e:dd:88:e3:1d:b7:73:c3:
7e:ad:58:7e:6f:f9:c1:01:2c:9a:f4:95:44:70:92:
83:af:3f:cf:fc:dc:17:a3:30:af:16:78:76:d6:71:
e5:b2:d7:f4:f5:ee:88:0e:54:5d:a5:4d:30:2a:c1:
e5:cd:84:50:7d:c0:18:80:f8:51:38:52:ed:76:6f:
00:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A5:F0:91:39:45:19:62:C4:DE:5F:9C:B2:FF:A8:A9:F1:B9:9B:E3
X509v3 Authority Key Identifier:
keyid:3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/QKXwkTlFGWLE3l-csv-oqfG5m-M.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
133.88.48.0/20
Signature Algorithm: sha256WithRSAEncryption
9f:3f:f4:9c:2d:cf:36:93:84:3f:82:20:3e:17:6c:58:f7:cd:
bd:16:c3:68:28:51:2e:52:c7:ad:c4:5a:65:e2:82:08:f3:b7:
54:74:7c:dd:7e:87:13:ab:7a:b9:71:a9:3b:b1:bf:d3:56:47:
2f:0d:bf:75:3e:a9:34:e4:85:09:f4:18:0e:fe:d0:50:7d:e9:
0c:e5:da:a0:33:03:e9:ce:df:75:05:d9:63:08:b1:10:50:bc:
50:7c:4d:10:ab:66:4f:af:cc:e0:75:20:ea:29:b9:f6:1e:5f:
ad:94:13:a7:be:45:1b:75:01:b3:98:39:e7:2e:5a:13:74:f0:
d1:e0:d2:e9:50:58:e5:5d:c4:7b:58:a5:54:14:56:c6:e9:e6:
dc:dc:18:69:9f:91:cf:d7:04:54:b3:21:85:9d:41:8f:d7:88:
5b:3b:0a:35:72:ac:87:07:af:22:0c:44:61:15:20:18:71:b9:
13:2b:15:eb:0f:c8:39:3b:07:3d:f3:dc:2a:fd:68:ca:cf:ba:
22:f2:20:84:90:cc:73:38:66:d6:21:8e:98:a9:14:bc:b1:d4:
f4:4b:e1:cd:d2:1a:70:e5:15:05:36:5e:ed:16:61:ea:8a:d6:
1c:fe:15:c1:f7:49:3a:12:b9:d9:0a:92:fc:74:c3:36:ac:aa:
20:19:34:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Sep 30 04:40:47 2024 by rpki-client on console-ams.rpki-client.org