Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/3tQNagerQs7MOD0n91DUcAddEhU.roa
File: 3tQNagerQs7MOD0n91DUcAddEhU.roa (raw, json)
Hash identifier: T5dVn+nVNfgS9f6Gwg1tkYuxFnmljN3imXPwHxOM0dw=
Subject key identifier: DE:D4:0D:6A:07:AB:42:CE:CC:38:3D:27:F7:50:D4:70:07:5D:12:15
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05DE
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3tQNagerQs7MOD0n91DUcAddEhU.roa
Signing time: Thu 29 Feb 2024 01:32:19 +0000
ROA not before: Thu 29 Feb 2024 01:32:19 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 9605
IP address blocks: 1.73.74.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:28:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1502 (0x5de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Feb 29 01:32:19 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=DED40D6A07AB42CECC383D27F750D470075D1215
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:7b:0e:0f:83:9b:a3:7d:6b:c1:84:40:dc:5c:
99:f4:9c:9d:bf:6d:9f:b9:28:4f:70:2f:5c:88:2b:
47:a1:63:c2:74:44:1f:2e:24:8b:d4:e3:b0:4d:f7:
9a:a5:4b:32:3f:c8:af:a8:21:d5:a0:08:ef:23:45:
ba:b4:d5:2d:be:76:c9:7e:41:c9:b7:79:0e:fe:10:
3c:41:7c:28:fc:42:3b:6c:35:5c:6d:88:59:ec:1a:
f1:83:45:9e:de:84:59:1e:3e:dc:63:44:4d:a9:5a:
b2:13:b5:6f:af:84:b7:b5:58:51:7c:57:5d:f2:01:
ef:5b:53:ba:0a:05:fb:84:0e:30:4b:d7:d6:00:29:
d5:3a:f4:cc:67:ea:fb:e6:8e:f2:88:f7:bd:41:6b:
33:bb:3c:da:2a:91:b1:3e:cb:ec:e5:dc:16:16:9f:
7c:b7:af:6c:79:da:7b:8a:2b:25:63:7f:02:43:ed:
45:ef:67:40:38:5c:9b:60:d5:ca:9b:06:32:4c:bb:
00:ea:1d:ca:f1:39:30:29:bc:1f:ae:26:9a:be:fa:
71:a0:3b:aa:89:10:df:36:70:69:07:ee:1c:b8:9f:
50:31:5c:fa:8c:9e:02:c0:39:08:68:71:04:a9:47:
dc:a1:61:f0:30:48:87:e6:f3:0d:fe:de:01:16:e7:
94:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:D4:0D:6A:07:AB:42:CE:CC:38:3D:27:F7:50:D4:70:07:5D:12:15
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/3tQNagerQs7MOD0n91DUcAddEhU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.73.74.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:0f:30:03:a6:04:c1:88:bd:06:16:0f:cc:69:ff:d1:31:91:
fb:66:8d:5d:58:cb:e3:79:3e:f9:5b:07:f6:81:c0:bf:02:dd:
08:a4:0a:6a:ba:b6:ce:b4:39:01:df:7a:cf:f9:d2:27:e3:a5:
07:32:fe:4b:51:cf:33:1c:40:65:99:c6:c2:e6:2f:06:07:f2:
68:4e:22:a8:f4:5d:b7:55:04:e5:9f:f4:ed:43:fe:65:ad:fe:
1a:35:de:50:45:65:15:8d:98:64:a3:8b:a5:66:74:8d:d6:1e:
70:20:fc:9f:af:03:0b:00:3e:69:f1:e2:93:84:f6:35:e1:4b:
2b:ce:c6:55:1c:a1:c2:e9:5a:f5:35:5b:1d:ad:58:1a:b7:79:
dd:6f:9a:30:ad:88:f6:d5:d3:0a:c2:df:6e:ca:29:68:3c:fa:
d2:2d:f1:ff:c4:7b:c9:b6:f4:de:52:17:0a:48:8e:39:1e:76:
23:99:9d:3e:2c:7e:66:4b:4e:7f:33:d3:d8:3d:6f:e4:95:37:
4d:25:c2:87:8d:21:cc:fa:bc:cc:76:58:f6:14:27:8b:6b:6c:
4b:2d:6f:74:9c:02:d7:5c:0f:1e:40:98:ba:4a:a0:87:28:95:
21:92:7a:4b:8a:d5:63:f4:f2:b5:62:d6:3b:28:41:ed:dc:85:
ef:89:42:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:28 2025 by rpki-client