Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Y9wzmUtFIrWkPWfAGJJyEoeLonI.roa
File: Y9wzmUtFIrWkPWfAGJJyEoeLonI.roa (raw, json)
Hash identifier: fdOtwEP+toFt+AIHp5cTyulWwERlwpOox5OVSc/khiY=
Subject key identifier: 63:DC:33:99:4B:45:22:B5:A4:3D:67:C0:18:92:72:12:87:8B:A2:72
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 072F
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Y9wzmUtFIrWkPWfAGJJyEoeLonI.roa
Signing time: Tue 30 Apr 2024 01:55:58 +0000
ROA not before: Tue 30 Apr 2024 01:55:58 +0000
ROA not after: Tue 15 Apr 2025 01:30:02 +0000
asID: 9605
IP address blocks: 49.106.220.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 01 Apr 2025 01:57:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1839 (0x72f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Apr 30 01:55:58 2024 GMT
Not After : Apr 15 01:30:02 2025 GMT
Subject: CN=63DC33994B4522B5A43D67C018927212878BA272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:59:1e:44:3c:30:49:ff:3a:bd:22:3c:1f:47:
f0:39:23:0e:e4:9e:be:25:44:a5:06:c4:7e:91:7d:
82:39:ca:c5:04:4d:40:3c:2e:7d:a6:7d:a8:27:6f:
c8:8e:28:2c:81:89:a2:b4:c6:29:92:e9:79:c6:eb:
f5:26:5d:18:f1:03:b0:e0:8e:83:e0:aa:57:bc:a7:
9f:ae:3e:75:bd:06:b8:d8:04:f9:6f:11:3f:45:2b:
1d:b9:35:d6:5c:15:4b:39:57:e0:be:d1:2b:86:19:
d7:00:0c:32:21:88:22:73:f8:c4:d6:b0:56:41:0f:
28:9f:03:bb:20:fa:fa:de:3e:25:54:71:05:57:90:
3d:47:c4:de:bd:0e:8a:7d:c8:00:67:7f:7b:2a:ac:
2a:aa:ed:7e:c7:19:d8:eb:a4:04:ec:ac:d6:d1:83:
eb:79:62:ec:4a:13:99:ea:e0:e8:56:b8:34:d8:fa:
2a:c8:d3:90:81:7b:a4:f8:a9:ae:66:8a:0f:5a:98:
3f:b3:80:23:81:2c:d2:ce:6b:0a:6b:a1:2c:fa:2b:
0c:b8:37:d2:e5:fe:be:97:2c:ae:13:21:06:a9:bf:
27:44:1f:11:c8:98:f4:5a:2c:57:17:e1:db:f0:c3:
c5:c2:d8:4c:9a:1d:63:c6:13:a0:5f:87:99:e9:0b:
37:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:DC:33:99:4B:45:22:B5:A4:3D:67:C0:18:92:72:12:87:8B:A2:72
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Y9wzmUtFIrWkPWfAGJJyEoeLonI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.220.0/23
Signature Algorithm: sha256WithRSAEncryption
96:30:6b:25:29:c5:b9:3c:eb:19:ef:dc:4c:dc:6f:b0:4d:a6:
5f:b0:eb:46:d5:7b:65:3e:c0:c9:75:60:c4:33:a0:83:ed:89:
5d:69:39:29:bc:db:59:72:f5:32:0a:d5:1a:c8:8a:b2:6a:36:
40:d5:d3:97:28:3a:1e:03:af:41:3b:04:39:b9:9e:75:5e:8e:
67:54:22:b3:3f:12:d7:5c:1e:de:62:c4:fd:5b:e3:ad:f5:82:
03:15:6a:ec:79:42:e7:b7:b0:b0:41:8c:eb:94:7b:94:6d:66:
12:eb:7f:c5:b6:d4:2a:cc:57:d2:31:a0:e2:ea:69:dc:4c:97:
45:4a:7f:6c:a8:5d:e8:c3:a9:15:f7:0b:ea:56:75:5a:ba:a4:
d5:97:d2:80:c9:6f:ab:35:ec:d2:c4:53:bd:ab:01:0d:6d:e5:
14:48:4b:20:63:db:d6:fa:25:df:67:e4:fa:03:14:a9:b7:04:
9e:f5:d5:2e:45:41:ce:52:84:4a:39:14:a0:c6:0d:5d:09:36:
3a:f0:e2:f0:5b:9a:5d:c8:75:5f:6b:81:30:b3:ac:70:8c:5e:
e5:c7:f2:79:ff:58:5c:8f:2a:92:42:58:66:58:d3:8b:a6:81:
e8:f7:08:a6:13:06:62:b0:c9:32:f8:b4:b8:5a:24:f0:a1:de:
c0:f9:47:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:41:49 2025 by rpki-client