Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/2CDR99d378mrtPRweBQ_NA85uac.roa
File: 2CDR99d378mrtPRweBQ_NA85uac.roa (raw, json)
Hash identifier: 2ewicwcQqqWYfSGjLQh9UOKPrQzIsslaXksiUsAmX3g=
Subject key identifier: D8:20:D1:F7:D7:77:EF:C9:AB:B4:F4:70:78:14:3F:34:0F:39:B9:A7
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0485
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2CDR99d378mrtPRweBQ_NA85uac.roa
Signing time: Thu 27 Jul 2023 16:44:13 +0000
ROA not before: Thu 27 Jul 2023 16:44:13 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 49.100.160.0/20 maxlen: 20
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:36:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1157 (0x485)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:44:13 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=D820D1F7D777EFC9ABB4F47078143F340F39B9A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:14:c6:d7:cc:ed:23:9c:08:4a:c5:f2:23:18:
fb:54:f2:4b:26:ad:c1:81:ed:07:bf:76:81:52:86:
01:25:ca:db:f0:59:79:3f:e9:b1:93:91:36:54:93:
72:51:61:aa:05:83:05:fe:7e:cc:1a:30:77:02:ee:
91:62:20:ce:09:a2:1d:ef:a3:53:ab:92:45:06:5d:
d4:f7:0b:d7:ea:d5:04:75:64:49:b2:29:b5:86:d6:
b6:df:c7:ed:4e:5f:6f:7c:9f:f9:4a:61:30:93:33:
67:33:e7:c7:66:32:c0:9b:ad:10:8a:8b:e1:17:f2:
f5:17:f7:0c:c4:dc:0f:c8:15:fd:29:74:dd:39:98:
4b:6b:a9:fc:f5:59:91:13:15:e7:63:70:e2:50:6c:
82:b4:8f:88:f7:49:e5:92:40:f4:68:ce:c1:e5:11:
91:30:b4:7e:d7:1e:2d:13:85:e2:5a:29:c6:54:46:
1e:22:26:6e:2d:82:16:b4:c5:d8:a9:64:5a:67:1a:
b8:bf:25:11:fe:7c:39:5d:74:f7:81:df:c4:a1:18:
f8:c9:33:71:c0:4c:a3:61:a7:b3:25:d7:f5:db:81:
86:d5:fb:30:ed:55:c3:aa:cf:0a:41:98:9c:be:ec:
0d:96:c2:46:fb:46:69:76:4f:17:db:a0:39:7a:ce:
e8:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:20:D1:F7:D7:77:EF:C9:AB:B4:F4:70:78:14:3F:34:0F:39:B9:A7
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/2CDR99d378mrtPRweBQ_NA85uac.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.100.160.0/20
Signature Algorithm: sha256WithRSAEncryption
4c:33:6f:ec:8f:05:26:35:82:f2:ff:5a:1d:1f:49:f0:4b:5a:
38:f8:30:14:ff:98:93:32:43:73:61:6a:00:dd:56:c6:82:4c:
26:47:02:4b:5d:b9:aa:17:2d:c7:51:91:83:4b:26:e5:df:15:
78:08:bd:56:c8:34:87:10:76:8c:7a:92:ff:b3:3f:df:9c:c4:
88:4f:fd:53:ba:2b:84:fc:0b:af:93:41:c8:10:f5:47:59:f7:
ab:03:ae:9c:8d:49:ec:b4:cc:ec:fe:dc:e9:1a:90:19:96:5a:
24:57:74:a9:51:6d:ee:3c:f9:dc:54:08:34:cb:d6:16:d9:85:
a7:a4:8e:97:9e:e3:68:90:1e:33:6c:e3:66:e2:f9:c1:63:22:
3e:19:56:d0:c5:a1:e5:39:bc:14:94:28:87:ff:c4:d2:b2:b3:
a0:2c:96:4b:88:2a:a5:e3:fb:c7:1c:a5:66:a3:95:2c:35:09:
6a:81:f8:0c:4c:e8:fe:35:5a:b6:9e:2a:57:29:b2:7c:03:2c:
98:c3:31:5a:d3:1a:eb:ec:d9:68:17:e9:21:d6:34:8a:7f:cb:
a5:5b:fb:52:fc:2e:b4:db:bf:2b:24:80:19:5b:cd:2e:d6:66:
f2:52:e0:0e:3b:08:6e:4f:61:e3:23:35:c1:75:af:4c:d7:42:
34:06:a0:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 02:59:41 2024 by rpki-client on console-ams.rpki-client.org