Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/989/BXdPcskTJpA3m_6Zi9awagRFQm0.roa
File: BXdPcskTJpA3m_6Zi9awagRFQm0.roa (raw, json)
Hash identifier: iR2NpdmJx/H8yhivPA6la+X8fd9vzMZMsfOhww2ijKY=
Subject key identifier: 05:77:4F:72:C9:13:26:90:37:9B:FE:99:8B:D6:B0:6A:04:45:42:6D
Certificate issuer: /CN=8D26E0D17E30D8BF5714F4BA92EEEB0D22DDDB1D
Certificate serial: 5F
Authority key identifier: 8D:26:E0:D1:7E:30:D8:BF:57:14:F4:BA:92:EE:EB:0D:22:DD:DB:1D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jSbg0X4w2L9XFPS6ku7rDSLd2x0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/989/BXdPcskTJpA3m_6Zi9awagRFQm0.roa
Signing time: Thu 29 Feb 2024 01:30:21 +0000
ROA not before: Thu 29 Feb 2024 01:30:21 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 45680
IP address blocks: 101.78.4.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:31:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95 (0x5f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8D26E0D17E30D8BF5714F4BA92EEEB0D22DDDB1D
Validity
Not Before: Feb 29 01:30:21 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=05774F72C9132690379BFE998BD6B06A0445426D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:d1:03:0e:c8:6e:e9:91:a8:9d:6e:8d:3a:a6:
f0:58:a9:d5:a7:ab:aa:59:25:50:e1:bc:fd:db:60:
f6:eb:bb:79:4e:0b:6f:92:fa:71:ed:17:6e:50:7b:
cf:0c:94:94:57:7c:b2:ea:af:33:4b:c7:87:0b:1e:
b8:c5:10:a4:07:d5:95:b1:4d:97:89:15:4f:95:f0:
9c:c4:a1:df:74:33:3a:dd:9b:b9:77:97:b8:1f:94:
c6:ae:f4:53:86:e8:e9:69:7a:dc:ad:3d:9a:0e:a3:
20:ac:da:73:5b:a2:ee:61:a3:5e:42:52:02:67:a8:
87:b9:8b:78:f5:47:ce:84:00:81:7e:33:03:c9:ca:
17:6d:f0:97:b4:fd:ed:99:f9:1a:82:03:9f:1f:de:
9c:cc:8b:b9:8f:b8:f4:c5:6e:48:a5:26:8e:2b:89:
da:e0:60:eb:0a:9d:c9:4a:83:5a:72:e5:8a:d0:0b:
a2:c7:70:5a:dc:b9:ae:d1:cc:b6:e4:f3:95:c2:55:
d2:35:f1:13:4c:00:dc:05:8f:8f:c5:76:f8:1e:c2:
2d:d5:ef:8d:b5:d5:6a:22:73:8a:51:e0:ba:05:71:
0f:29:63:2a:b0:c8:22:5b:69:49:79:cd:bd:5e:46:
a8:b9:7c:2a:20:a5:1f:aa:ce:ea:38:7b:d8:74:8a:
1a:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:77:4F:72:C9:13:26:90:37:9B:FE:99:8B:D6:B0:6A:04:45:42:6D
X509v3 Authority Key Identifier:
keyid:8D:26:E0:D1:7E:30:D8:BF:57:14:F4:BA:92:EE:EB:0D:22:DD:DB:1D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/989/jSbg0X4w2L9XFPS6ku7rDSLd2x0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/jSbg0X4w2L9XFPS6ku7rDSLd2x0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/989/BXdPcskTJpA3m_6Zi9awagRFQm0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
101.78.4.0/22
Signature Algorithm: sha256WithRSAEncryption
7a:7f:bb:6c:4c:a0:13:9b:23:e7:83:f4:bf:80:4e:8f:c5:38:
4f:f6:33:14:01:99:bd:59:b2:e5:f3:76:c0:f3:d7:67:1f:f0:
10:fa:bf:58:8c:ab:0d:26:d2:c1:7a:eb:ac:6e:7f:72:5c:e9:
3d:bd:a3:b8:a1:cf:23:c8:c0:f7:96:9e:87:12:be:7d:d6:7e:
78:f2:fd:8a:ba:ed:b3:27:e7:be:26:f7:e6:9c:d1:3b:fb:6c:
71:21:89:f0:8b:20:fd:35:eb:89:ab:df:56:29:42:49:2e:e1:
8b:0d:c2:72:99:26:df:d6:c8:5c:b9:f8:e2:3d:ef:ea:e2:0d:
12:6b:f6:27:c3:29:7e:50:fc:a4:34:1e:1f:65:70:7c:be:8a:
fc:f2:2c:c6:72:95:46:d3:96:53:35:77:48:99:7c:ed:1f:a1:
7d:42:65:8e:c7:d3:70:14:21:22:73:87:67:68:d8:cf:ea:7d:
84:73:8e:e5:ef:40:51:42:20:a7:30:2a:e8:e5:f2:2c:e5:14:
e5:55:f1:aa:dd:a2:d1:3c:af:3c:b9:f1:36:b4:03:54:ce:67:
7b:62:63:ab:44:78:b5:a1:15:82:44:ac:77:93:2e:2e:7b:71:
31:af:5c:31:d4:88:87:d1:6a:72:5e:1e:33:ea:ad:5e:4a:34:
a4:c1:21:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:24:13 2025 by rpki-client