Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/OcMQ00tsgThZqA8mrL6YYNQRM08.roa
File: OcMQ00tsgThZqA8mrL6YYNQRM08.roa (raw, json)
Hash identifier: xkFGYb00YSQ9cwUarOHvd+ptoj9FxIImG87w8OtXHrI=
Subject key identifier: 39:C3:10:D3:4B:6C:81:38:59:A8:0F:26:AC:BE:98:60:D4:11:33:4F
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 08FC
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OcMQ00tsgThZqA8mrL6YYNQRM08.roa
Signing time: Tue 30 Apr 2024 02:26:38 +0000
ROA not before: Tue 30 Apr 2024 02:26:38 +0000
ROA not after: Tue 15 Apr 2025 01:30:02 +0000
asID: 9605
IP address blocks: 49.103.32.0/19 maxlen: 19
Validation: Failed, certificate revoked on Tue 01 Apr 2025 02:29:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2300 (0x8fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Apr 30 02:26:38 2024 GMT
Not After : Apr 15 01:30:02 2025 GMT
Subject: CN=39C310D34B6C813859A80F26ACBE9860D411334F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:4b:a9:71:de:c0:81:8e:6c:21:48:cb:b5:c8:
6e:ec:a7:4b:53:33:0d:58:49:22:59:11:e0:e8:5c:
f0:88:d4:09:de:2d:bd:45:1f:c5:f1:20:27:b1:ee:
50:b0:04:8c:0d:bc:5e:47:02:f1:fb:6b:c3:50:48:
c4:63:65:ef:db:2c:cb:d3:ac:96:85:ce:56:bf:89:
09:0e:9b:ba:1c:78:91:56:15:dd:0f:fb:ec:f7:d1:
ce:d6:35:4c:c4:9f:d0:49:37:d5:96:d5:e3:e4:61:
dc:2c:89:f5:24:0c:5d:08:53:9f:62:46:8d:d4:b4:
50:67:e9:7b:45:ea:ab:7a:37:66:42:18:8a:8e:ed:
5e:bc:06:4a:6d:72:8e:e9:ff:cb:12:df:54:0c:2d:
ca:ba:75:43:7d:d0:73:32:47:8f:92:90:e2:8c:50:
5f:fb:d8:f0:26:99:a2:1b:e3:46:8c:50:07:ed:5c:
1a:02:94:09:a6:42:9a:d2:6b:5b:0d:53:10:82:e9:
03:60:77:55:e9:bb:9a:d2:af:11:9f:87:8b:b2:6b:
15:2b:6f:3e:86:e4:f0:66:f9:99:d7:53:81:8c:ba:
11:9d:ee:9f:32:4f:cd:66:fc:45:0e:94:7b:44:37:
e2:01:34:5a:d2:67:6c:f0:52:b2:51:99:bd:48:d7:
e6:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:C3:10:D3:4B:6C:81:38:59:A8:0F:26:AC:BE:98:60:D4:11:33:4F
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/OcMQ00tsgThZqA8mrL6YYNQRM08.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.103.32.0/19
Signature Algorithm: sha256WithRSAEncryption
68:e0:01:f3:80:62:60:85:c7:44:d8:e6:81:8f:13:d9:71:b7:
c6:d9:81:bc:bd:eb:6a:15:c2:cc:5f:a2:18:b9:6b:41:a4:22:
32:6b:36:a9:84:2d:50:15:d1:f5:dc:f5:11:1f:cc:c6:b9:54:
7e:a8:eb:b8:90:77:7e:c3:18:18:a2:be:69:1b:96:08:68:f5:
cd:6b:24:5a:c6:14:3b:88:0c:88:94:94:07:1a:0e:77:5c:f0:
a3:b9:d8:46:61:66:39:75:e0:96:9b:1d:74:ac:9c:69:f4:73:
54:66:b4:4c:4a:86:da:ea:a2:41:9a:d2:b9:4a:cc:9d:f9:96:
d8:6b:39:78:b2:1f:e2:15:37:27:1c:80:d1:63:8d:90:c5:84:
57:79:b9:3c:14:dd:86:34:74:49:7b:b9:a5:3f:35:1e:1d:e2:
a3:ff:0f:93:e3:75:31:0e:d9:d0:dc:08:0f:cb:87:08:30:37:
ca:c2:d0:d3:b5:ab:c2:72:7c:ac:68:c2:45:37:7b:52:05:9f:
32:4d:37:59:f1:90:d1:7d:5e:00:bc:12:2c:94:72:76:98:45:
2a:98:21:4f:74:b5:44:f8:6b:2e:ab:d1:4b:59:07:9f:3c:99:
f0:91:cc:fa:77:94:71:8f:22:71:c7:d7:eb:ec:91:89:ae:2f:
e3:a0:e3:89
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:25:30 2025 by rpki-client