Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/868/PQbVL1tWkVROU8PkFU-IprR49Xo.roa
File: PQbVL1tWkVROU8PkFU-IprR49Xo.roa (raw, json)
Hash identifier: ix2hl29LLEDGxc4CHulWbdBqiTdPnSJr7OqQd6h0uaA=
Subject key identifier: 3D:06:D5:2F:5B:56:91:54:4E:53:C3:E4:15:4F:88:A6:B4:78:F5:7A
Certificate issuer: /CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46
Certificate serial: 1B
Authority key identifier: 8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/PQbVL1tWkVROU8PkFU-IprR49Xo.roa
Signing time: Mon 01 May 2023 01:29:55 +0000
ROA not before: Mon 01 May 2023 01:29:55 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 24271
IP address blocks: 202.177.96.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sun 31 Mar 2024 01:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 27 (0x1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D0962EDE0F5E21A7E8F9E1AB006FF940E04ED46
Validity
Not Before: May 1 01:29:55 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=3D06D52F5B5691544E53C3E4154F88A6B478F57A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:e5:6e:13:50:b6:cc:cc:03:8f:57:fb:8d:69:
1b:2a:87:3d:3d:64:20:a5:40:b5:18:82:04:58:0a:
13:fa:7e:13:a9:67:d1:00:46:7e:e8:3c:61:d8:39:
32:de:78:3b:0e:40:60:5b:b6:88:97:ce:87:b3:f3:
e7:7f:7f:3b:1b:d6:6a:1e:b1:12:86:e0:5e:85:21:
52:fd:7f:f0:e5:9b:3e:21:8b:62:c0:db:89:bb:67:
17:f8:0e:be:d3:c9:97:fc:04:a8:56:7a:d1:5a:94:
b5:af:22:11:ec:7d:8e:30:42:22:38:e6:6a:b1:30:
07:ad:78:26:47:3b:e3:be:16:a5:99:86:d0:a5:35:
7f:ec:37:ff:31:ef:9b:cf:ff:d3:3c:c6:87:a2:cd:
92:5c:c5:87:75:02:0d:de:70:6c:e2:fe:e6:14:f2:
d6:2c:a5:2f:22:0c:aa:fd:0b:ca:3d:1c:1f:6a:a4:
99:10:ef:53:b2:c3:8b:9e:d0:1f:40:7a:24:44:87:
44:29:47:4c:64:e3:36:6e:8e:a8:a6:28:59:8f:fb:
00:56:2a:6a:be:a9:73:52:14:ef:d9:24:b6:3e:54:
0d:65:ce:66:03:13:f4:1e:b7:e5:aa:2a:11:12:ff:
f1:9b:06:50:83:a8:f9:54:e4:a4:12:04:ec:48:47:
10:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:06:D5:2F:5B:56:91:54:4E:53:C3:E4:15:4F:88:A6:B4:78:F5:7A
X509v3 Authority Key Identifier:
keyid:8D:09:62:ED:E0:F5:E2:1A:7E:8F:9E:1A:B0:06:FF:94:0E:04:ED:46
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/jQli7eD14hp-j54asAb_lA4E7UY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jQli7eD14hp-j54asAb_lA4E7UY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/868/PQbVL1tWkVROU8PkFU-IprR49Xo.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.177.96.0/20
Signature Algorithm: sha256WithRSAEncryption
bc:7f:41:2d:05:80:8c:98:fb:e7:df:f0:20:72:d4:04:9c:9c:
d2:35:1b:27:55:76:a5:eb:a4:39:2b:1c:af:0b:f9:c4:34:b3:
4a:d4:2b:76:f9:d5:aa:71:5d:2d:db:6d:3d:b8:73:1d:d6:44:
e7:fc:4f:79:53:e0:0c:20:0e:d7:4b:fd:a1:e1:f8:9e:5a:63:
76:d6:bd:8c:86:f8:9d:58:2b:40:c0:b4:30:e3:48:28:45:53:
6d:e7:02:fb:0b:69:cb:81:79:1a:d3:f7:ff:ac:ac:ff:61:67:
74:a7:2f:ba:a8:cf:ac:85:58:52:21:ee:79:9b:ad:ab:db:da:
ec:38:17:c8:ab:94:bf:d6:15:1d:11:98:b8:d4:cb:9c:ca:c7:
d3:82:e7:e7:6e:cb:55:0f:8d:2f:b7:38:28:49:a0:96:12:0d:
f0:37:62:7c:ab:02:f8:14:5f:e6:23:33:02:f7:83:03:8f:d3:
9b:ac:a7:ff:64:cf:2e:c4:af:86:9f:18:84:ca:7c:7c:85:9f:
0f:a6:9d:73:f5:af:1c:00:aa:cc:9e:61:89:01:86:ae:7f:0a:
2a:24:1f:1a:40:fd:87:57:3c:f1:7e:9a:5c:ce:73:4c:32:6f:
35:f1:97:9a:8b:59:fc:9c:9e:cd:c4:f0:11:a5:f3:81:0a:b8:
a7:e5:f4:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 31 02:49:23 2024 by rpki-client on console-ams.rpki-client.org