Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/958/UP-86ThTOFnaXWfMLj8A8L066dI.roa
File: UP-86ThTOFnaXWfMLj8A8L066dI.roa (raw, json)
Hash identifier: OinMwSDADveli+tY5ERgruGyFh9TcMD/DnWvhc+Ozzo=
Subject key identifier: 50:FF:BC:E9:38:53:38:59:DA:5D:67:CC:2E:3F:00:F0:BD:3A:E9:D2
Certificate issuer: /CN=9904ECBCD85F22A2E8AE7E1F991E8345D06A9816
Certificate serial: 75
Authority key identifier: 99:04:EC:BC:D8:5F:22:A2:E8:AE:7E:1F:99:1E:83:45:D0:6A:98:16
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mQTsvNhfIqLorn4fmR6DRdBqmBY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/UP-86ThTOFnaXWfMLj8A8L066dI.roa
Signing time: Thu 13 Apr 2023 09:53:49 +0000
ROA not before: Thu 13 Apr 2023 09:53:49 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 38631
IP address blocks: 203.104.158.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:30:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117 (0x75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9904ECBCD85F22A2E8AE7E1F991E8345D06A9816
Validity
Not Before: Apr 13 09:53:49 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=50FFBCE938533859DA5D67CC2E3F00F0BD3AE9D2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:3b:f6:f1:48:f3:5e:dd:61:f5:76:12:e5:65:
12:22:a2:8e:6b:cd:e9:0b:f5:37:78:e4:e2:62:cb:
03:b5:25:8b:f3:b4:b2:57:c4:a5:ba:44:a2:49:2e:
62:99:c7:8c:0a:99:6a:cc:40:e9:41:d9:d2:bf:4e:
b9:dd:ff:6c:c1:7d:0a:ad:a4:20:c5:ec:91:fa:1a:
35:e6:d7:d3:3f:16:78:4a:2b:fd:67:9c:92:34:f3:
3d:c5:c1:5f:31:05:c2:df:37:a7:c9:e3:14:4d:17:
72:e6:f9:9a:88:04:7d:a5:82:39:7a:0f:77:b2:91:
0e:64:c6:1f:5d:02:21:35:24:af:b0:fd:28:18:0a:
0c:d3:2c:11:ad:a4:2d:dd:ea:ab:de:3f:29:c4:e0:
c3:c6:4e:bf:56:e6:4e:61:8e:e6:29:d4:29:37:50:
05:32:bc:cc:7b:8a:61:3c:23:ea:e7:8f:ff:1f:88:
10:04:53:c1:45:42:c0:81:b4:3c:44:ab:5d:15:21:
f4:ba:c0:9e:df:27:eb:e4:34:97:a5:2a:4e:91:cf:
9f:f6:cb:70:52:b3:41:04:18:27:36:dd:62:67:32:
ad:61:5e:30:97:dd:9e:17:d7:2a:11:c1:d6:1e:e6:
00:8a:3a:d0:c0:cf:e0:c4:3e:ee:c3:67:5b:99:75:
e1:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:FF:BC:E9:38:53:38:59:DA:5D:67:CC:2E:3F:00:F0:BD:3A:E9:D2
X509v3 Authority Key Identifier:
keyid:99:04:EC:BC:D8:5F:22:A2:E8:AE:7E:1F:99:1E:83:45:D0:6A:98:16
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/mQTsvNhfIqLorn4fmR6DRdBqmBY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/mQTsvNhfIqLorn4fmR6DRdBqmBY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/958/UP-86ThTOFnaXWfMLj8A8L066dI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.104.158.0/24
Signature Algorithm: sha256WithRSAEncryption
af:ca:03:d5:47:c6:00:75:71:ec:5f:37:32:e2:a7:8d:8e:37:
5c:6d:14:b4:3b:d8:69:eb:37:d3:ee:b5:f5:cd:a6:9d:64:28:
da:d5:25:17:95:59:48:7d:73:f8:f7:60:c9:82:fb:63:6a:49:
36:97:04:96:9b:5d:d6:f1:bf:ac:a7:43:5d:2a:3a:b6:7c:88:
47:d1:a0:b4:f6:0a:ca:96:3b:f6:a9:c0:c5:42:42:56:c6:74:
dc:0f:30:e7:4a:57:ed:76:01:93:da:a6:c9:ea:ec:68:5f:6d:
21:4c:8f:f7:50:24:ee:e7:3c:28:10:66:bc:0d:b2:e8:e0:b7:
08:22:56:07:49:49:c2:f1:b8:cc:9f:a1:3c:fe:0c:b0:df:33:
40:07:43:c9:a6:b9:34:fb:b1:58:1d:5f:ed:54:05:7b:aa:d3:
6a:ad:cf:34:61:94:88:17:d6:8f:50:5a:75:f3:8d:eb:b7:0d:
20:07:bc:3b:4e:26:0d:d7:40:cf:cf:d8:9f:8b:a6:a9:f0:90:
cd:e3:74:e6:bc:d4:24:6a:d8:8c:81:72:b5:c0:81:46:44:6f:
28:67:99:58:62:4e:98:b4:04:e8:cd:49:71:44:27:1d:fe:eb:
7b:5f:79:dc:4b:1b:67:13:c4:b0:6c:c8:34:92:70:62:69:df:
db:0f:1f:6b
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBdTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg5OTA0
RUNCQ0Q4NUYyMkEyRThBRTdFMUY5OTFFODM0NUQwNkE5ODE2MB4XDTIzMDQxMzA5
NTM0OVoXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoNTBGRkJDRTkzODUzMzg1
OURBNUQ2N0NDMkUzRjAwRjBCRDNBRTlEMjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBALk79vFI817dYfV2EuVlEiKijmvN6Qv1N3jk4mLLA7Uli/O0slfE
pbpEokkuYpnHjAqZasxA6UHZ0r9Oud3/bMF9Cq2kIMXskfoaNebX0z8WeEor/Wec
kjTzPcXBXzEFwt83p8njFE0Xcub5mogEfaWCOXoPd7KRDmTGH10CITUkr7D9KBgK
DNMsEa2kLd3qq94/KcTgw8ZOv1bmTmGO5inUKTdQBTK8zHuKYTwj6ueP/x+IEART
wUVCwIG0PESrXRUh9LrAnt8n6+Q0l6UqTpHPn/bLcFKzQQQYJzbdYmcyrWFeMJfd
nhfXKhHB1h7mAIo60MDP4MQ+7sNnW5l14XsCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBRQ/7zpOFM4WdpdZ8wuPwDwvTrp0jAfBgNVHSMEGDAWgBSZBOy82F8iouiufh+Z
HoNF0GqYFjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvOTU4L21RVHN2TmhmSXFMb3JuNGZtUjZEUmRCcW1CWS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL21RVHN2TmhmSXFMb3JuNGZtUjZEUmRC
cW1CWS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC85NTgvVVAtODZUaFRPRm5hWFdmTUxqOEE4TDA2NmRJLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAMtonjANBgkqhkiG9w0BAQsFAAOCAQEAr8oD1UfGAHVx7F83MuKnjY43XG0U
tDvYaes30+619c2mnWQo2tUlF5VZSH1z+PdgyYL7Y2pJNpcElptd1vG/rKdDXSo6
tnyIR9GgtPYKypY79qnAxUJCVsZ03A8w50pX7XYBk9qmyersaF9tIUyP91Ak7uc8
KBBmvA2y6OC3CCJWB0lJwvG4zJ+hPP4MsN8zQAdDyaa5NPuxWB1f7VQFe6rTaq3P
NGGUiBfWj1BadfON67cNIAe8O04mDddAz8/Yn4umqfCQzeN05rzUJGrYjIFytcCB
RkRvKGeZWGJOmLQE6M1JcUQnHf7re1953EsbZxPEsGzINJJwYmnf2w8faw==
-----END CERTIFICATE-----
Generated at Thu Feb 29 01:58:11 2024 by rpki-client on console-fra.rpki-client.org