Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/990/OptQI8wp0N1lFNyrFBOeykotwgM.roa
File: OptQI8wp0N1lFNyrFBOeykotwgM.roa (raw, json)
Hash identifier: 4CMtuCHRevh809abpKQSdZFWegyVTvLKC39gWs4ElzE=
Subject key identifier: 3A:9B:50:23:CC:29:D0:DD:65:14:DC:AB:14:13:9E:CA:4A:2D:C2:03
Certificate issuer: /CN=42E32457C16BA874216A8F5DBB0D335BD148CB31
Certificate serial: 05
Authority key identifier: 42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/OptQI8wp0N1lFNyrFBOeykotwgM.roa
Signing time: Wed 28 Jun 2023 01:09:46 +0000
ROA not before: Wed 28 Jun 2023 01:09:46 +0000
ROA not after: Sat 15 Jun 2024 06:45:48 +0000
asID: 131965
IP address blocks: 103.54.156.0/22 maxlen: 24
Validation: Failed, certificate revoked on Sat 01 Jun 2024 06:45:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 5 (0x5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=42E32457C16BA874216A8F5DBB0D335BD148CB31
Validity
Not Before: Jun 28 01:09:46 2023 GMT
Not After : Jun 15 06:45:48 2024 GMT
Subject: CN=3A9B5023CC29D0DD6514DCAB14139ECA4A2DC203
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:14:08:ef:c4:9b:9d:1b:9d:e6:bb:b9:37:26:
bb:de:b7:9f:cb:c3:24:b2:04:5f:e9:d4:e9:26:8e:
c8:03:92:79:2f:c0:39:02:59:d1:99:51:0a:7f:b2:
27:c6:af:08:78:e2:34:ee:ba:5a:c6:2d:33:21:ef:
c7:c8:1f:8a:be:cc:ac:fa:e7:49:06:f5:2d:d0:2c:
73:5b:01:cc:4a:8b:f4:41:94:d4:d7:5e:ba:2e:f9:
53:c8:51:75:0a:48:dd:47:31:5a:50:aa:62:51:a3:
22:d9:0d:03:1f:4e:7e:41:54:6c:8e:2d:67:e9:04:
43:37:cb:4c:65:27:57:8b:b2:06:87:ed:0d:90:a0:
7c:73:d6:43:37:75:71:46:00:3f:97:ad:37:83:8c:
b1:48:be:f3:a4:ff:b9:f7:84:42:bd:99:a9:29:3b:
2d:a8:c2:f2:c7:ad:fb:cb:77:0d:39:ed:83:5b:eb:
06:01:e3:59:4c:14:86:f1:ca:38:2e:08:49:b8:b5:
20:51:a2:c8:c8:cc:10:4a:76:8a:d2:5a:8b:5d:ea:
d6:09:55:92:ca:15:38:13:83:92:23:1a:70:66:f9:
80:7d:c9:74:66:65:22:7d:3d:0d:2b:c9:76:13:8a:
91:c1:b9:ea:f5:a6:3e:c8:62:09:af:12:9f:51:d4:
fc:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:9B:50:23:CC:29:D0:DD:65:14:DC:AB:14:13:9E:CA:4A:2D:C2:03
X509v3 Authority Key Identifier:
keyid:42:E3:24:57:C1:6B:A8:74:21:6A:8F:5D:BB:0D:33:5B:D1:48:CB:31
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/QuMkV8FrqHQhao9duw0zW9FIyzE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QuMkV8FrqHQhao9duw0zW9FIyzE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/990/OptQI8wp0N1lFNyrFBOeykotwgM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.54.156.0/22
Signature Algorithm: sha256WithRSAEncryption
2a:2c:49:93:e7:67:6a:fd:e9:b3:a5:d9:18:74:a8:57:53:5d:
a8:38:9a:6c:92:9e:92:6e:1f:81:a1:78:01:fb:f7:3e:d7:7a:
5a:f8:8f:0a:65:c9:f5:e3:ff:9d:e3:92:d2:6b:45:c0:39:55:
06:16:af:62:75:76:72:6d:57:4d:02:57:0c:9b:cb:e6:3a:ab:
db:e3:42:06:6e:cd:25:a1:98:7a:44:af:fe:32:e2:9d:f8:39:
76:88:c9:87:af:ea:84:55:40:6b:89:6e:50:90:7d:96:10:bc:
ac:39:c6:d7:0b:31:92:be:b7:f7:9f:d1:05:b0:39:17:09:27:
ed:99:06:0f:0b:01:4e:3a:e3:f2:18:3c:61:23:3d:2b:76:ea:
4f:e4:80:ea:4d:00:66:54:f1:d5:21:00:a8:44:89:66:4c:94:
44:d0:b0:da:f0:88:7b:b2:cd:7e:9f:78:2e:8c:6e:74:c2:79:
d3:bc:6f:7d:7f:99:81:0c:c4:ae:85:e5:22:23:e8:9e:86:4e:
3f:4b:2e:a0:7b:5d:56:49:3b:8e:c4:3d:23:75:33:55:b1:6a:
4d:cd:8c:f7:51:c8:86:5b:99:15:ae:aa:71:bd:5e:3e:51:58:
54:83:f4:84:83:25:6c:96:69:88:e9:50:48:bf:5e:f5:e7:d3:
41:43:11:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 1 10:22:46 2024 by rpki-client on console-ams.rpki-client.org