Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/9997/wP2as7T3A1U_294U004hbmGDOGE.roa
File: wP2as7T3A1U_294U004hbmGDOGE.roa (raw, json)
Hash identifier: fbgd01XrQdRRzmu4fjZMfBdjZdg546gMUjJamrTMXCA=
Subject key identifier: C0:FD:9A:B3:B4:F7:03:55:3F:DB:DE:14:D3:4E:21:6E:61:83:38:61
Certificate issuer: /CN=A935D5AD33DC630C4611987140F5E468B7081D11
Certificate serial: 40
Authority key identifier: A9:35:D5:AD:33:DC:63:0C:46:11:98:71:40:F5:E4:68:B7:08:1D:11
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qTXVrTPcYwxGEZhxQPXkaLcIHRE.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/wP2as7T3A1U_294U004hbmGDOGE.roa
Signing time: Thu 27 Jun 2024 02:37:31 +0000
ROA not before: Thu 27 Jun 2024 02:37:31 +0000
ROA not after: Tue 24 Jun 2025 10:46:45 +0000
asID: 146979
IP address blocks: 202.1.216.0/22 maxlen: 24
Validation: Failed, certificate revoked on Fri 02 Aug 2024 05:06:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 64 (0x40)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A935D5AD33DC630C4611987140F5E468B7081D11
Validity
Not Before: Jun 27 02:37:31 2024 GMT
Not After : Jun 24 10:46:45 2025 GMT
Subject: CN=C0FD9AB3B4F703553FDBDE14D34E216E61833861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:e9:3d:92:fc:2f:95:eb:55:56:0e:50:57:c6:
c0:17:f8:91:6c:c6:a5:c6:db:25:7a:95:3b:3a:60:
dd:f6:76:8e:64:f9:6f:20:16:e6:59:11:69:35:ee:
ea:dd:ff:17:ec:88:50:64:f7:15:a6:7b:80:83:ab:
1e:64:2b:55:83:bc:28:fd:9a:e1:37:37:07:81:f1:
9d:93:9f:ba:97:9b:19:97:f3:5f:51:0a:6e:cc:24:
8c:dd:25:8b:08:a1:6d:d6:96:8b:1a:3f:b1:0f:42:
3f:9a:cf:e5:8d:e3:85:9d:2c:71:e3:10:bf:6b:de:
eb:94:39:48:ea:f5:03:75:b1:45:8b:ce:38:a9:62:
d8:f6:f0:37:82:54:17:3f:7b:c2:80:91:ae:66:41:
c8:0c:e4:c9:90:39:42:eb:5c:a5:b3:ab:df:64:7c:
e3:4b:dc:6f:2a:c7:77:6d:24:b3:5e:85:2d:53:2e:
06:15:9d:84:53:9a:d4:9f:a1:87:a3:72:00:c7:89:
6f:45:cb:6a:97:05:55:74:3d:ee:5a:96:97:c4:a8:
54:0a:26:65:0f:a0:1e:20:4d:45:bd:43:1d:93:f4:
46:72:a6:43:e6:a1:69:eb:26:1c:9e:04:09:bf:ab:
61:42:9d:b7:2f:82:bd:b2:06:a6:be:6c:8e:cd:e3:
b8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:FD:9A:B3:B4:F7:03:55:3F:DB:DE:14:D3:4E:21:6E:61:83:38:61
X509v3 Authority Key Identifier:
keyid:A9:35:D5:AD:33:DC:63:0C:46:11:98:71:40:F5:E4:68:B7:08:1D:11
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/qTXVrTPcYwxGEZhxQPXkaLcIHRE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/qTXVrTPcYwxGEZhxQPXkaLcIHRE.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/9997/wP2as7T3A1U_294U004hbmGDOGE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.1.216.0/22
Signature Algorithm: sha256WithRSAEncryption
b2:25:05:3e:c1:29:e1:aa:05:65:a8:53:01:45:a9:a6:b2:d0:
71:88:ec:9c:7a:b7:64:d2:fa:54:c6:c8:e8:5d:b5:18:93:cd:
28:f0:ca:41:b2:80:b4:99:9c:9e:c4:a7:8b:21:c3:bf:44:be:
7b:92:52:93:7e:e1:11:a9:e8:4f:25:71:70:51:68:ba:7c:6d:
b0:f0:17:57:87:8d:2b:a9:c6:f6:4e:de:7c:bb:2e:41:cb:8c:
7b:43:3a:93:70:80:63:1d:a9:db:7d:69:f8:f3:df:eb:eb:40:
a1:38:22:a7:39:33:6c:e5:44:89:68:7e:4f:9f:10:f5:fe:8b:
7d:66:c7:ea:8d:92:fc:65:89:04:72:a0:37:0f:00:3b:9b:18:
3f:05:69:2b:57:90:01:0a:c6:90:f9:fb:f5:37:a1:ef:a1:c8:
20:e8:b1:7c:7b:b3:e2:88:46:5e:af:6d:bd:7d:55:53:77:70:
22:3d:67:54:d0:f7:15:32:ee:29:6d:24:1a:08:3c:58:32:fb:
3a:1c:22:5a:c5:f5:d9:40:81:f7:a2:f6:8b:ec:fc:26:5f:16:
94:b2:c5:ff:ae:c9:2c:a5:81:f0:74:be:75:a1:42:4c:49:82:
97:a3:44:35:2a:cf:18:32:04:fc:f5:15:2d:23:76:12:1a:f7:
35:1a:a5:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 2 07:45:01 2024 by rpki-client on console-ams.rpki-client.org