Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/954/PXtYa3dFLiQTY8YuGo95q0H5-w4.roa
File: PXtYa3dFLiQTY8YuGo95q0H5-w4.roa (raw, json)
Hash identifier: 9gKbZkgDOAIzpmUGaYi2/0bk2lI2CK7J4myu+pjGJrA=
Subject key identifier: 3D:7B:58:6B:77:45:2E:24:13:63:C6:2E:1A:8F:79:AB:41:F9:FB:0E
Certificate issuer: /CN=1678DD6B61CB673BA4423C81BF63A61DD724E840
Certificate serial: 14
Authority key identifier: 16:78:DD:6B:61:CB:67:3B:A4:42:3C:81:BF:63:A6:1D:D7:24:E8:40
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fnjda2HLZzukQjyBv2OmHdck6EA.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/PXtYa3dFLiQTY8YuGo95q0H5-w4.roa
Signing time: Fri 28 Apr 2023 00:41:19 +0000
ROA not before: Fri 28 Apr 2023 00:41:19 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 131954
IP address blocks: 103.212.76.0/22 maxlen: 22
Validation: Failed, certificate revoked on Sun 31 Mar 2024 01:32:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20 (0x14)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1678DD6B61CB673BA4423C81BF63A61DD724E840
Validity
Not Before: Apr 28 00:41:19 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=3D7B586B77452E241363C62E1A8F79AB41F9FB0E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:5a:90:33:bb:f6:00:07:94:39:ca:a6:b0:dc:
5e:fe:f4:24:9d:96:2a:49:5b:8c:5f:50:fd:af:4a:
c2:1b:6c:6a:dc:28:78:61:d8:e9:3d:8b:d8:79:33:
a4:2b:00:c1:17:e3:1e:f6:ff:8b:b3:21:6c:25:92:
4b:0b:58:63:1b:01:53:3b:ed:f3:4d:d3:38:90:a9:
94:7c:5c:a7:34:44:89:e3:58:25:4d:90:31:ce:81:
61:c8:e5:00:9c:2d:ba:38:32:49:bf:75:2d:28:6c:
6e:c9:5a:f6:4f:65:5b:d7:fb:ce:74:d7:b5:f3:a8:
75:74:00:08:f3:74:48:0a:e2:a2:c3:39:fb:e6:04:
20:e1:77:4d:24:a7:25:a8:0f:a4:5d:fe:7e:83:f4:
e6:8b:fd:ef:40:73:22:b2:07:ed:d7:ea:69:81:09:
b8:2d:2b:c3:5f:a5:20:89:43:fe:3b:69:9a:61:75:
a1:39:de:74:ff:0c:18:c0:4b:7b:d2:de:c2:e0:4a:
5b:e4:c7:d0:34:00:50:ff:38:40:cc:53:52:75:ca:
1e:12:16:83:07:f7:e1:a7:bb:e6:94:c4:a5:c0:da:
96:0d:c4:dd:b3:b0:77:d7:ca:e8:44:4f:aa:e1:bf:
75:26:33:b3:d3:ca:4f:44:74:78:2f:3c:6a:4c:2c:
c5:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:7B:58:6B:77:45:2E:24:13:63:C6:2E:1A:8F:79:AB:41:F9:FB:0E
X509v3 Authority Key Identifier:
keyid:16:78:DD:6B:61:CB:67:3B:A4:42:3C:81:BF:63:A6:1D:D7:24:E8:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/Fnjda2HLZzukQjyBv2OmHdck6EA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fnjda2HLZzukQjyBv2OmHdck6EA.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/954/PXtYa3dFLiQTY8YuGo95q0H5-w4.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.212.76.0/22
Signature Algorithm: sha256WithRSAEncryption
9d:46:12:cb:fe:ac:97:c3:cc:07:9b:a8:09:ef:04:3e:6a:ee:
5a:51:22:0a:d5:d9:d5:d2:60:21:b7:b4:fe:52:3f:ce:20:9f:
db:01:bb:96:9c:3f:11:d2:c5:7b:7e:19:b3:98:81:0b:6b:3e:
dc:93:aa:21:26:44:eb:17:22:6e:93:52:b6:01:ac:97:8a:03:
02:be:97:19:9b:3c:fb:52:68:a0:82:8d:a3:8c:53:9c:7a:f5:
8b:8a:64:c5:db:be:37:87:3f:9d:8c:53:69:7b:87:7d:e4:0f:
89:14:8a:14:71:92:16:ae:f6:f9:07:92:e6:00:e6:b4:4f:40:
5f:d1:3b:f0:95:f9:dc:94:f4:e0:6e:d9:d9:66:28:1f:11:1b:
f2:58:64:d8:b2:1c:61:ef:85:39:9d:f9:d3:dc:10:46:99:79:
66:fd:0d:23:14:5f:fc:47:37:8a:a3:de:e1:3d:ec:77:fc:da:
96:cc:2d:ce:b5:78:5a:7f:f9:eb:fb:54:87:5b:1b:8e:d7:3a:
4e:4d:c9:31:a6:ec:56:fb:33:fa:60:4e:b7:0a:00:46:fd:ff:
99:38:0f:26:20:db:f8:e0:6f:ff:30:4f:74:ee:89:8f:2a:75:
50:08:48:a9:ef:3f:9a:86:61:11:84:4f:e9:ec:1d:dc:f2:70:
32:5f:b8:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 31 03:12:34 2024 by rpki-client on console-fra.rpki-client.org