Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ia3_0HDkdcO4XeuSaoMJyjUBSU0.roa
File: ia3_0HDkdcO4XeuSaoMJyjUBSU0.roa (raw, json)
Hash identifier: qtpynDrdmZ6kIZVnFsK+847eSdxIDH+zsfAjnJGWQ28=
Subject key identifier: 89:AD:FF:D0:70:E4:75:C3:B8:5D:EB:92:6A:83:09:CA:35:01:49:4D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 07D3
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ia3_0HDkdcO4XeuSaoMJyjUBSU0.roa
Signing time: Tue 30 Apr 2024 02:08:53 +0000
ROA not before: Tue 30 Apr 2024 02:08:53 +0000
ROA not after: Tue 15 Apr 2025 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.108.0/22 maxlen: 22
Validation: Failed, certificate revoked on Tue 01 Apr 2025 02:09:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2003 (0x7d3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Apr 30 02:08:53 2024 GMT
Not After : Apr 15 01:30:02 2025 GMT
Subject: CN=89ADFFD070E475C3B85DEB926A8309CA3501494D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e8:50:01:02:fd:72:48:3c:1c:48:e4:80:3d:6b:
7d:b8:d3:11:16:40:29:90:ea:4c:af:ca:63:bf:d5:
37:30:85:1d:6c:79:84:f1:55:ce:99:b9:61:b3:76:
fc:20:dd:a9:df:51:f6:86:2b:48:b4:bf:53:c6:b9:
62:7e:1d:00:10:31:95:77:49:18:92:46:69:c0:fd:
9e:48:e4:34:59:e2:7e:86:4c:ce:b5:df:6b:47:13:
66:e9:90:00:f3:bc:21:b9:14:dc:26:03:d9:17:05:
45:d4:d4:46:11:fb:12:2d:f5:32:14:cc:99:0a:14:
02:b1:5e:bb:ab:80:d7:a3:05:43:6f:70:52:f6:88:
7e:43:93:d0:25:63:09:6f:02:f3:bf:31:78:42:91:
eb:75:15:77:db:e0:d4:29:b9:c1:a5:ac:96:65:cf:
85:96:29:04:5a:dd:2a:9e:cd:7e:5f:22:30:1b:38:
46:13:0c:bf:43:d6:06:c9:3e:d9:d9:a4:38:6d:08:
89:6f:9a:13:60:a7:d4:ac:e3:b3:65:76:9e:6e:37:
c5:42:7d:36:ce:0a:75:09:69:8a:4b:5a:c9:bc:25:
32:b8:e5:a7:77:59:91:20:11:c2:31:b9:07:2d:4b:
68:db:43:6b:f0:6b:38:bd:d0:16:83:2a:97:16:3b:
82:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:AD:FF:D0:70:E4:75:C3:B8:5D:EB:92:6A:83:09:CA:35:01:49:4D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ia3_0HDkdcO4XeuSaoMJyjUBSU0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.108.0/22
Signature Algorithm: sha256WithRSAEncryption
42:a4:7b:97:76:56:cf:61:26:87:c1:ad:f7:24:88:d4:8b:9a:
18:21:fd:97:f5:2d:b3:3f:6f:d8:22:6d:93:af:5d:ec:2f:27:
4c:96:f2:78:ae:9f:17:5c:55:71:ad:c4:54:b1:71:a3:fe:73:
51:8e:d6:50:8c:a9:35:a6:a2:49:7b:67:50:3b:b7:94:f9:0c:
69:1b:18:fd:dc:79:91:6b:bc:20:b5:99:35:03:35:b3:86:b2:
de:eb:45:86:36:9e:ad:a7:cf:fd:8f:a3:e0:31:8f:f9:eb:d7:
b3:6f:f2:ba:cd:09:5f:8b:28:83:b4:fa:d5:90:f3:d7:90:9e:
f1:dc:8c:fe:85:3a:9f:93:9f:c2:dd:7d:2d:52:fe:d6:55:5c:
d6:f7:b2:08:d1:ea:fc:fe:0d:1c:ac:21:f6:d0:9e:aa:ff:82:
71:38:cf:7f:4d:5e:91:af:eb:25:7f:6d:36:4f:05:5a:fc:c1:
f7:f5:89:d2:3d:ec:38:bf:ca:16:98:0b:93:d4:b7:8c:25:2d:
df:92:0f:08:5a:3b:20:c0:34:0f:81:1d:a7:a1:70:b8:ff:3e:
75:b9:3d:1f:ee:32:9e:49:f8:d3:2d:2a:e7:6d:d7:ca:fb:cd:
5d:d3:b7:76:3f:10:2f:9a:e0:59:08:73:4d:5b:8f:ac:b5:c2:
1c:ea:4f:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:35:07 2025 by rpki-client