Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/4on935GbRxiFdm_6jwYkU8hd-AM.roa
File: 4on935GbRxiFdm_6jwYkU8hd-AM.roa (raw, json)
Hash identifier: 97uxWmrvQ8i+srSWpkTQYFZ9Wm5qhaH41w5LI/s9R4k=
Subject key identifier: E2:89:FD:DF:91:9B:47:18:85:76:6F:FA:8F:06:24:53:C8:5D:F8:03
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 4B
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4on935GbRxiFdm_6jwYkU8hd-AM.roa
Signing time: Mon 27 Mar 2023 16:04:24 +0000
ROA not before: Mon 27 Mar 2023 16:04:24 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.111.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:35:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 75 (0x4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:24 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=E289FDDF919B471885766FFA8F062453C85DF803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f6:c6:de:fb:81:05:96:51:a7:7f:18:94:f8:
f7:8d:b2:4e:6b:18:ca:2f:93:62:b2:d0:8e:f5:ac:
56:2a:e5:78:93:97:8d:50:15:3a:5f:fc:5c:79:5a:
3a:d9:9f:10:cf:2e:12:06:26:7b:ce:a6:66:5f:e3:
13:2d:85:53:e0:d0:29:7c:ea:34:02:4f:fa:7a:19:
55:5a:5c:83:57:9e:0b:a2:cf:1b:4e:b5:ba:ef:ab:
f3:b1:70:76:80:cf:58:08:31:20:e1:db:86:cc:4a:
ec:65:12:76:0a:fe:53:b9:2e:27:f2:bf:7d:5d:e3:
7f:4f:60:4e:e5:56:84:cf:0d:e3:10:31:3b:5d:24:
2d:f0:44:2c:f8:e6:32:b6:74:9f:83:fa:06:f1:1e:
11:22:82:a4:5d:cd:cb:16:ea:49:66:b3:e4:fe:03:
ed:49:e5:80:40:6e:37:24:5c:08:0f:c8:0b:38:17:
f5:4a:0d:1b:85:a5:06:2c:3e:74:38:bf:35:52:4c:
72:ac:24:4c:6d:8d:3a:3e:92:36:f5:a2:72:46:f8:
ae:d8:77:54:b7:cd:13:1c:37:07:34:f6:1a:b6:f5:
51:fb:4c:29:2f:76:73:fb:5c:46:f2:7d:93:f7:3c:
45:ba:cc:53:e5:4e:e3:ba:5d:7a:3a:1d:0b:45:a8:
40:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:89:FD:DF:91:9B:47:18:85:76:6F:FA:8F:06:24:53:C8:5D:F8:03
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/4on935GbRxiFdm_6jwYkU8hd-AM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.111.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:2d:67:90:62:b0:98:9a:e2:a9:d8:8f:2f:35:5f:a8:9c:4e:
0f:88:f9:8f:ac:f4:72:a9:52:d7:87:46:31:c1:db:ef:0b:c0:
e3:55:94:68:a9:6e:24:05:5c:f0:72:14:a5:a4:57:ef:7f:d6:
95:07:a6:fc:af:7e:81:b0:78:59:3e:ea:49:26:01:2c:d1:92:
c4:3c:85:69:bb:de:40:76:a5:e3:5b:18:f8:5a:65:7c:ad:07:
8d:ce:a4:b7:c2:68:a0:be:0e:43:f7:a2:e5:f1:00:9f:1c:a7:
09:d1:cc:65:08:51:0f:48:99:5c:c9:75:ab:81:c6:3c:8f:07:
53:aa:3d:c2:0c:80:8b:b3:97:02:5f:da:0e:b5:38:c0:c0:4d:
c0:74:7e:d9:6a:04:84:82:0b:3d:0a:7a:43:0d:95:12:90:a2:
af:27:12:ff:ed:3e:4d:56:74:62:3e:eb:95:94:6c:e6:42:c5:
da:83:76:8b:8f:81:f2:2d:bc:d0:28:17:6f:2f:7d:e7:d2:2e:
9b:3e:11:6f:f1:36:80:b2:33:73:71:01:48:2a:89:0e:b3:cf:
47:da:51:f3:94:22:8a:64:57:07:69:38:b4:af:92:c1:47:53:
d2:4d:1f:0c:6c:68:ff:bc:b1:2b:d4:92:04:45:03:72:97:a0:
71:81:a1:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 03:00:58 2024 by rpki-client on console-fra.rpki-client.org