Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/905/Zh3hfRwVUN1SZzOKWkuHexKFtRs.roa
File: Zh3hfRwVUN1SZzOKWkuHexKFtRs.roa (raw, json)
Hash identifier: Ou5TIw0KdkOxWbhy4i7WKcKQYdOjv0Dic9O0FSoTNsM=
Subject key identifier: 66:1D:E1:7D:1C:15:50:DD:52:67:33:8A:5A:4B:87:7B:12:85:B5:1B
Certificate issuer: /CN=FAEF57FF144D25094E460E0FD38C80379334ED6D
Certificate serial: 05
Authority key identifier: FA:EF:57:FF:14:4D:25:09:4E:46:0E:0F:D3:8C:80:37:93:34:ED:6D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-u9X_xRNJQlORg4P04yAN5M07W0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/Zh3hfRwVUN1SZzOKWkuHexKFtRs.roa
Signing time: Tue 03 Oct 2023 07:44:42 +0000
ROA not before: Tue 03 Oct 2023 07:44:42 +0000
ROA not after: Wed 18 Sep 2024 07:00:52 +0000
asID: 24255
IP address blocks: 202.88.192.0/21 maxlen: 32
Validation: Failed, certificate revoked on Wed 04 Sep 2024 06:59:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FAEF57FF144D25094E460E0FD38C80379334ED6D
Validity
Not Before: Oct 3 07:44:42 2023 GMT
Not After : Sep 18 07:00:52 2024 GMT
Subject: CN=661DE17D1C1550DD5267338A5A4B877B1285B51B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:40:43:c8:a4:14:16:c3:e4:93:f3:1a:d6:8d:
84:23:77:7e:f1:b6:ee:09:9b:4e:5f:50:b8:30:6b:
fc:61:4d:a5:67:00:d8:fd:ea:8c:59:48:38:25:70:
03:8d:1d:31:fb:9f:83:23:ec:4c:d8:6a:21:aa:0e:
f0:77:43:93:67:ff:ed:2a:ca:ed:7f:ef:a7:54:b5:
3b:5e:26:28:58:a8:c8:69:9b:b1:25:90:54:13:b3:
81:0e:63:ef:02:24:69:83:fc:78:f2:a5:97:c8:8a:
6b:49:b5:dd:65:c8:91:7f:0c:a8:12:c7:25:58:79:
07:ab:c8:27:08:fe:75:b9:c8:4d:08:b2:3e:15:2f:
35:3c:93:66:2d:cd:79:e7:d3:1b:12:9c:58:35:ab:
fb:37:72:b0:42:26:e6:37:5e:0b:93:d0:b8:9b:98:
72:26:c3:e8:09:0d:c7:9d:84:36:f5:64:45:e5:fe:
e5:9c:65:af:bc:0f:f3:5e:f6:d1:9f:28:74:3f:7a:
31:1a:ea:cb:e0:df:0d:20:94:7f:3a:54:3c:47:13:
f5:04:99:56:10:bb:09:8a:2c:98:2b:55:59:4a:08:
cb:81:01:5b:b9:c5:40:3f:e0:e0:97:bb:e0:d1:6b:
1c:13:7f:95:78:cb:66:40:f6:aa:0e:04:12:d7:97:
e6:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:1D:E1:7D:1C:15:50:DD:52:67:33:8A:5A:4B:87:7B:12:85:B5:1B
X509v3 Authority Key Identifier:
keyid:FA:EF:57:FF:14:4D:25:09:4E:46:0E:0F:D3:8C:80:37:93:34:ED:6D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/-u9X_xRNJQlORg4P04yAN5M07W0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-u9X_xRNJQlORg4P04yAN5M07W0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/905/Zh3hfRwVUN1SZzOKWkuHexKFtRs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.88.192.0/21
Signature Algorithm: sha256WithRSAEncryption
c0:52:ac:b8:66:7d:56:70:f8:49:37:0e:19:88:67:c1:3e:21:
3e:e9:c4:71:27:a1:5b:4c:d5:9f:a6:59:20:4f:09:89:98:9d:
6f:79:26:4a:c4:1d:49:5f:44:84:5e:7b:48:7d:1c:cd:c0:ce:
f3:92:d0:db:78:15:88:58:42:48:c7:5f:98:d0:eb:1c:02:21:
d7:f5:68:89:73:a7:c5:34:cb:b6:af:2e:8e:7d:43:b5:37:4b:
f4:41:c8:06:43:b2:01:af:4e:fe:60:d4:44:ed:7a:8d:57:e5:
7a:21:75:ce:c2:79:a8:f8:7d:65:2a:c1:73:a6:53:40:84:13:
ed:7e:71:8b:60:52:58:41:b5:3e:c6:43:72:d7:63:2e:81:70:
9f:b3:a4:60:ee:4a:24:11:0f:72:54:ea:be:a9:46:75:2f:0b:
8e:4d:04:d3:25:93:3f:72:2c:a7:c1:0f:35:19:10:fb:b4:9a:
95:c9:53:46:34:5d:84:44:9f:50:26:c9:15:e8:d2:4f:37:f8:
18:59:31:e8:0e:31:4d:4f:fd:60:d7:75:6b:14:a8:b9:3e:93:
8c:6a:30:07:b5:b7:f3:95:d3:99:57:22:99:b2:1b:db:66:bc:
be:67:93:95:87:db:d5:03:2e:4c:12:e1:67:35:f5:16:cd:c1:
48:6d:92:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 4 09:07:41 2024 by rpki-client on console-fra.rpki-client.org