Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/948/QtcfpjNzeahzzO-numn_soZml7w.roa
File: QtcfpjNzeahzzO-numn_soZml7w.roa (raw, json)
Hash identifier: sfwcpBcummNdcp5kQSCYPsCq7IfTjvjC8XASrHn4BAg=
Subject key identifier: 42:D7:1F:A6:33:73:79:A8:73:CC:EF:A7:BA:69:FF:B2:86:66:97:BC
Certificate issuer: /CN=C4B9536C4EC785B8812E53A219D2B09A7DCBCE0C
Certificate serial: 11
Authority key identifier: C4:B9:53:6C:4E:C7:85:B8:81:2E:53:A2:19:D2:B0:9A:7D:CB:CE:0C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/QtcfpjNzeahzzO-numn_soZml7w.roa
Signing time: Tue 15 Aug 2023 00:56:47 +0000
ROA not before: Tue 15 Aug 2023 00:56:47 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 38628
IP address blocks: 115.126.136.0/21 maxlen: 32
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:32:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17 (0x11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=C4B9536C4EC785B8812E53A219D2B09A7DCBCE0C
Validity
Not Before: Aug 15 00:56:47 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=42D71FA6337379A873CCEFA7BA69FFB2866697BC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:9a:20:3e:a1:6c:c1:b6:84:16:3b:00:bc:57:
c5:cb:0f:28:30:25:6a:40:94:c7:cf:fd:e3:c5:7a:
41:a0:ad:e7:5b:4d:9d:44:7b:59:3f:57:ce:6e:81:
f8:c0:ec:e9:f9:fa:5b:7e:3c:a9:4e:1c:22:11:bf:
b3:85:94:ac:e3:f7:5f:92:ce:b6:73:d3:a3:03:8a:
0b:ca:d3:aa:0e:bd:56:4b:fa:71:93:11:6a:02:f0:
4c:ea:52:90:b0:1a:49:fb:fe:a1:fd:bf:94:b1:b6:
43:54:73:e4:79:09:bc:cc:e8:35:48:51:6b:4e:f2:
e0:67:33:69:5d:44:58:7b:42:0b:08:9e:8a:85:06:
5c:16:4e:07:86:f0:6b:c2:fe:e4:a1:a9:52:56:cb:
8f:ec:6b:c9:56:c7:e7:e5:3c:b4:51:46:8a:92:f0:
5f:6f:15:14:83:6a:a1:e4:7a:5d:66:99:aa:a9:f7:
e3:c6:16:dc:bd:af:e1:41:1c:1c:63:23:a3:03:bb:
9c:26:a7:76:95:e1:2e:b0:df:9e:31:8c:b0:2c:cb:
6d:40:a0:9e:dd:2e:60:e2:83:23:93:f2:34:e8:4c:
fb:88:6d:aa:56:36:d3:3c:48:de:25:5d:26:23:f5:
05:9d:2a:a6:84:5e:a2:bf:e0:44:33:9f:3d:5c:c0:
e0:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:D7:1F:A6:33:73:79:A8:73:CC:EF:A7:BA:69:FF:B2:86:66:97:BC
X509v3 Authority Key Identifier:
keyid:C4:B9:53:6C:4E:C7:85:B8:81:2E:53:A2:19:D2:B0:9A:7D:CB:CE:0C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/xLlTbE7HhbiBLlOiGdKwmn3Lzgw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/948/QtcfpjNzeahzzO-numn_soZml7w.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
115.126.136.0/21
Signature Algorithm: sha256WithRSAEncryption
17:f5:3c:6f:ba:e6:5b:19:96:a2:03:89:a2:6d:51:f1:65:1c:
c7:6a:3c:f9:38:8b:1e:56:5f:88:a1:e3:a0:1a:c3:cb:18:17:
77:58:dc:87:f9:e9:9c:ab:43:d2:c6:bd:bc:b1:a7:a6:0c:ef:
39:78:6f:e7:dd:3f:76:98:d1:40:de:81:9d:b1:18:42:28:bf:
ff:68:44:f4:10:24:4b:33:65:23:88:14:ef:15:38:1e:12:8f:
a9:58:1b:1e:d3:0f:f5:26:37:3b:e9:7e:18:86:dd:a4:0d:dc:
5c:6b:dd:b9:f0:d6:c9:1a:b6:2b:d1:13:c4:34:88:98:4f:25:
b1:6b:9b:30:7c:c7:c6:51:e6:f5:41:71:dd:bc:65:48:8f:ff:
e3:a5:0f:c2:f1:8c:e6:5c:28:b8:91:30:ed:9d:01:64:ea:50:
cb:f1:ac:1c:f6:91:60:12:06:3a:34:25:9e:cd:96:8a:d1:79:
f6:51:97:99:11:a1:9e:a5:1f:fe:af:f4:f1:b7:e3:57:b7:d8:
e9:fb:83:1f:8b:9d:44:62:a6:e1:0d:17:76:00:62:ef:f2:86:
1a:eb:70:03:94:5a:a8:16:70:28:7b:8e:aa:7b:9a:29:af:5d:
55:1a:00:f7:e0:8a:a3:25:92:73:ef:4c:9f:41:57:93:6f:ed:
fe:18:7e:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 02:59:42 2024 by rpki-client on console-ams.rpki-client.org