Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/859/pxWuyHXtKQn05VGOpqvscZNigAU.roa
File: pxWuyHXtKQn05VGOpqvscZNigAU.roa (raw, json)
Hash identifier: gNM1JAQV4f+ebYr6m3TuT05YxHhMdGn4LzYb/b4Ehhw=
Subject key identifier: A7:15:AE:C8:75:ED:29:09:F4:E5:51:8E:A6:AB:EC:71:93:62:80:05
Certificate issuer: /CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B
Certificate serial: 2E
Authority key identifier: 3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/pxWuyHXtKQn05VGOpqvscZNigAU.roa
Signing time: Mon 01 May 2023 01:29:28 +0000
ROA not before: Mon 01 May 2023 01:29:28 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 23778
IP address blocks: 210.235.40.0/21 maxlen: 21
Validation: Failed, certificate revoked on Sun 31 Mar 2024 01:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46 (0x2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3F90F2FBCAA2538CA6574FB22D8C6EB3E9CA046B
Validity
Not Before: May 1 01:29:28 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=A715AEC875ED2909F4E5518EA6ABEC7193628005
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:db:ca:f8:59:44:e9:cd:92:69:9a:32:6b:4f:
b0:bc:7d:08:4b:ad:bf:71:bb:12:32:1e:ca:7f:64:
56:92:e3:10:ae:f9:9a:e7:62:f3:40:f6:74:5d:5f:
63:60:11:5c:a3:49:dc:3a:c3:90:fe:00:41:70:c2:
2f:77:b1:16:17:b1:76:db:c8:13:f0:00:4f:1f:c2:
80:49:c4:1e:ad:26:20:15:27:e6:cc:1e:e1:ae:8f:
fb:79:05:2e:7f:70:74:09:44:ee:37:1a:1c:a4:f0:
9f:1c:2f:07:2e:fd:62:87:c5:df:4e:75:f0:25:3a:
87:a7:98:b1:ed:a0:8f:92:43:92:5f:fb:8a:8e:85:
1e:55:a6:c0:bc:e2:56:0c:49:d5:f7:37:7e:bc:22:
f4:43:0e:66:af:ba:b1:54:c8:20:6b:bf:41:eb:3a:
a0:a5:a2:e2:87:fb:57:63:3f:bf:6e:d8:a8:9f:15:
02:fe:46:89:ee:15:e2:93:13:ab:31:ee:13:a7:19:
10:63:b6:d7:b5:9e:97:7e:8f:cf:7d:a2:2b:1b:bf:
a2:ea:5b:f2:81:07:73:64:1d:9d:e7:5d:c8:13:fe:
65:52:3b:64:83:2f:fc:4a:11:bb:d6:ed:fc:09:2b:
3a:84:4a:05:03:83:30:5c:81:bb:af:d2:5d:bf:fa:
5c:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:15:AE:C8:75:ED:29:09:F4:E5:51:8E:A6:AB:EC:71:93:62:80:05
X509v3 Authority Key Identifier:
keyid:3F:90:F2:FB:CA:A2:53:8C:A6:57:4F:B2:2D:8C:6E:B3:E9:CA:04:6B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/P5Dy-8qiU4ymV0-yLYxus-nKBGs.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/P5Dy-8qiU4ymV0-yLYxus-nKBGs.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/859/pxWuyHXtKQn05VGOpqvscZNigAU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.235.40.0/21
Signature Algorithm: sha256WithRSAEncryption
b3:5f:c7:34:e6:05:b4:21:4b:23:8d:00:a4:5d:16:85:b2:7e:
0b:9a:63:69:d7:9d:f2:97:aa:79:fc:30:7e:0a:c7:dc:05:01:
72:80:59:8a:4b:81:f0:44:e4:e8:6c:90:09:f4:8c:75:ee:c6:
79:d2:a7:b1:64:30:de:0f:2c:be:6e:19:34:f4:fb:21:e2:d2:
ee:06:b7:a7:5c:fc:21:67:c9:61:ab:59:0e:54:37:6d:e1:b3:
1b:6e:c6:29:58:7d:7b:36:58:b8:ec:2e:09:f2:72:6c:bd:21:
15:82:6f:97:b2:d2:3c:e6:18:06:31:34:77:48:e6:35:b5:74:
c7:7f:68:d2:6c:37:3c:f6:bd:ac:04:d8:36:ae:bc:1f:d6:80:
6c:0d:20:cc:61:70:75:d6:62:1e:ca:54:1e:24:8e:1e:94:91:
2d:b4:43:7d:16:03:39:71:ae:80:c7:02:4e:1a:2e:43:63:e2:
65:05:fb:09:03:30:5d:56:aa:13:fb:39:29:b2:b0:54:66:38:
93:1f:8d:24:a8:93:4f:8e:98:f5:78:b8:2b:33:bc:3c:7c:d8:
3f:68:54:5b:62:9d:d0:eb:66:97:66:50:54:8b:b6:0a:58:3e:
13:e3:09:89:51:c5:04:e5:be:31:db:a1:6a:42:95:36:97:3c:
66:a9:ac:9b
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBLjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzRjkw
RjJGQkNBQTI1MzhDQTY1NzRGQjIyRDhDNkVCM0U5Q0EwNDZCMB4XDTIzMDUwMTAx
MjkyOFoXDTI0MDQxNDAxMzAwMlowMzExMC8GA1UEAxMoQTcxNUFFQzg3NUVEMjkw
OUY0RTU1MThFQTZBQkVDNzE5MzYyODAwNTCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALPbyvhZROnNkmmaMmtPsLx9CEutv3G7EjIeyn9kVpLjEK75mudi
80D2dF1fY2ARXKNJ3DrDkP4AQXDCL3exFhexdtvIE/AATx/CgEnEHq0mIBUn5swe
4a6P+3kFLn9wdAlE7jcaHKTwnxwvBy79YofF30518CU6h6eYse2gj5JDkl/7io6F
HlWmwLziVgxJ1fc3frwi9EMOZq+6sVTIIGu/Qes6oKWi4of7V2M/v27YqJ8VAv5G
ie4V4pMTqzHuE6cZEGO217Wel36Pz32iKxu/oupb8oEHc2QdneddyBP+ZVI7ZIMv
/EoRu9bt/AkrOoRKBQODMFyBu6/SXb/6XK0CAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBSnFa7Ide0pCfTlUY6mq+xxk2KABTAfBgNVHSMEGDAWgBQ/kPL7yqJTjKZXT7It
jG6z6coEazAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvODU5L1A1RHktOHFpVTR5bVYwLXlMWXh1cy1uS0JHcy5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL1A1RHktOHFpVTR5bVYwLXlMWXh1cy1u
S0JHcy5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC84NTkvcHhXdXlIWHRLUW4wNVZHT3BxdnNjWk5pZ0FVLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEA9LrKDANBgkqhkiG9w0BAQsFAAOCAQEAs1/HNOYFtCFLI40ApF0WhbJ+C5pj
aded8peqefwwfgrH3AUBcoBZikuB8ETk6GyQCfSMde7GedKnsWQw3g8svm4ZNPT7
IeLS7ga3p1z8IWfJYatZDlQ3beGzG27GKVh9ezZYuOwuCfJybL0hFYJvl7LSPOYY
BjE0d0jmNbV0x39o0mw3PPa9rATYNq68H9aAbA0gzGFwddZiHspUHiSOHpSRLbRD
fRYDOXGugMcCThouQ2PiZQX7CQMwXVaqE/s5KbKwVGY4kx+NJKiTT46Y9Xi4KzO8
PHzYP2hUW2Kd0Otml2ZQVIu2Clg+E+MJiVHFBOW+MduhakKVNpc8Zqmsmw==
-----END CERTIFICATE-----
Generated at Sun Mar 31 02:49:23 2024 by rpki-client on console-ams.rpki-client.org