Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4SH6mcvp3GktTF0YySOjpFlI9tQ.roa
File: 4SH6mcvp3GktTF0YySOjpFlI9tQ.roa (raw, json)
Hash identifier: HgRBwaie9nxHLmbvPaAM6JZWDFoCchtfd1DsqZwfSeY=
Subject key identifier: E1:21:FA:99:CB:E9:DC:69:2D:4C:5D:18:C9:23:A3:A4:59:48:F6:D4
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 57
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4SH6mcvp3GktTF0YySOjpFlI9tQ.roa
Signing time: Mon 27 Mar 2023 16:04:28 +0000
ROA not before: Mon 27 Mar 2023 16:04:28 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.68.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 87 (0x57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:28 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=E121FA99CBE9DC692D4C5D18C923A3A45948F6D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:07:3f:4a:de:e1:3a:29:8c:14:45:70:7f:0b:
87:ec:a7:fa:54:84:55:10:2f:2b:d4:69:ab:90:f5:
2e:09:e1:ef:fc:3c:80:e2:01:60:c6:69:8b:2c:28:
9c:0e:47:01:42:e9:a6:b0:a7:a9:95:58:f3:fa:98:
9a:c1:94:64:6f:74:2d:3b:f0:54:d6:d6:a2:76:f2:
78:08:28:20:2a:a3:15:18:78:a3:8f:3d:28:bf:51:
63:ea:c4:33:7d:d4:0d:f2:67:e3:8f:89:f8:fb:13:
b1:3c:59:73:38:f6:68:07:f8:92:bb:dc:97:fe:50:
65:e2:a3:aa:71:87:86:18:43:3e:b7:9d:9d:02:31:
61:b5:4c:0c:45:92:48:df:77:7e:87:17:20:8a:51:
9c:ca:dc:ba:3d:1e:39:00:19:10:da:be:00:91:5b:
20:23:51:44:cd:e9:59:fb:4c:7f:a7:e5:10:7a:d2:
e2:3d:2f:19:fb:12:c5:56:89:10:49:78:72:31:16:
c7:fe:5e:ef:fc:49:37:d8:2b:34:1e:6c:6f:73:7a:
26:d2:00:3c:45:b3:e2:ab:4b:d0:b0:a4:56:ca:18:
b5:5c:96:94:f0:86:5a:65:00:f1:15:33:12:ab:c0:
60:c6:b4:15:8c:98:64:7d:b8:11:66:f1:3f:17:f7:
19:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:21:FA:99:CB:E9:DC:69:2D:4C:5D:18:C9:23:A3:A4:59:48:F6:D4
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4SH6mcvp3GktTF0YySOjpFlI9tQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.68.0/22
Signature Algorithm: sha256WithRSAEncryption
40:98:b1:35:7f:89:1c:ef:0f:6c:8b:7a:fc:27:82:26:d5:b2:
31:2c:c3:ec:97:93:a1:c5:11:57:22:1e:5b:86:c3:68:52:a5:
9d:f8:0d:bb:19:f3:d9:95:51:15:a0:e5:a0:1c:92:3f:aa:c7:
a6:02:18:35:07:59:d6:96:76:23:8c:bc:45:95:8d:ef:19:39:
55:36:a2:9c:9a:4f:f3:88:6d:42:39:ce:5a:75:b0:10:a5:46:
df:b4:c1:f9:35:60:93:77:ce:d1:70:4f:c7:66:92:0d:0e:5c:
4b:99:52:a1:47:e5:a4:78:b2:6a:bb:88:0d:fd:1e:9c:26:99:
f3:48:53:2d:73:d5:c6:82:ed:b6:00:2a:d3:64:d9:b9:ff:f3:
fd:62:95:39:66:7f:c8:09:c5:77:d9:23:6a:ed:c4:b4:94:7e:
77:a1:7d:11:41:fc:95:cd:50:c0:1a:b9:08:e9:e3:ce:e3:70:
02:fd:a3:61:da:bd:e5:67:a5:73:ee:7d:1b:67:68:9e:15:64:
3a:4f:a0:cc:76:78:51:31:20:90:63:71:a0:7e:d6:71:91:c1:
d6:83:3e:ea:9d:82:c0:45:58:5f:72:38:7f:be:9d:79:b8:99:
8a:f4:33:b4:ab:20:ef:ce:56:b7:5b:57:d8:67:1c:d6:e1:af:
a2:f4:05:ab
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBVzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2OTY1
QjBCMjBEREUwN0E0Qzk3OEUyNDA3M0VBMEUxMTE3QjM3NDczMB4XDTIzMDMyNzE2
MDQyOFoXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoRTEyMUZBOTlDQkU5REM2
OTJENEM1RDE4QzkyM0EzQTQ1OTQ4RjZENDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAKMHP0re4TopjBRFcH8Lh+yn+lSEVRAvK9Rpq5D1Lgnh7/w8gOIB
YMZpiywonA5HAULpprCnqZVY8/qYmsGUZG90LTvwVNbWonbyeAgoICqjFRh4o489
KL9RY+rEM33UDfJn44+J+PsTsTxZczj2aAf4krvcl/5QZeKjqnGHhhhDPrednQIx
YbVMDEWSSN93focXIIpRnMrcuj0eOQAZENq+AJFbICNRRM3pWftMf6flEHrS4j0v
GfsSxVaJEEl4cjEWx/5e7/xJN9grNB5sb3N6JtIAPEWz4qtL0LCkVsoYtVyWlPCG
WmUA8RUzEqvAYMa0FYyYZH24EWbxPxf3GfECAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBThIfqZy+ncaS1MXRjJI6OkWUj21DAfBgNVHSMEGDAWgBRpZbCyDd4HpMl44kBz
6g4RF7N0czAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzA5L2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJlemRITS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJl
emRITS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8zMDkvNFNINm1jdnAzR2t0VEYwWXlTT2pwRmxJOXRRLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAjFhRDANBgkqhkiG9w0BAQsFAAOCAQEAQJixNX+JHO8PbIt6/CeCJtWyMSzD
7JeTocURVyIeW4bDaFKlnfgNuxnz2ZVRFaDloBySP6rHpgIYNQdZ1pZ2I4y8RZWN
7xk5VTainJpP84htQjnOWnWwEKVG37TB+TVgk3fO0XBPx2aSDQ5cS5lSoUflpHiy
aruIDf0enCaZ80hTLXPVxoLttgAq02TZuf/z/WKVOWZ/yAnFd9kjau3EtJR+d6F9
EUH8lc1QwBq5COnjzuNwAv2jYdq95Welc+59G2donhVkOk+gzHZ4UTEgkGNxoH7W
cZHB1oM+6p2CwEVYX3I4f76debiZivQztKsg785Wt1tX2Gcc1uGvovQFqw==
-----END CERTIFICATE-----
Generated at Thu Feb 29 03:00:58 2024 by rpki-client on console-fra.rpki-client.org