Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/5rxI3lZQBs8h_HuN2UdNeZicbE0.roa
File: 5rxI3lZQBs8h_HuN2UdNeZicbE0.roa (raw, json)
Hash identifier: /LWxEbGKkJTUTsiMQyeyGJTGV0tQjW03AHCvAKsKgPc=
Subject key identifier: E6:BC:48:DE:56:50:06:CF:21:FC:7B:8D:D9:47:4D:79:98:9C:6C:4D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 01EE
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5rxI3lZQBs8h_HuN2UdNeZicbE0.roa
Signing time: Tue 30 May 2023 16:29:19 +0000
ROA not before: Tue 30 May 2023 16:29:19 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.79.216.0/21 maxlen: 21
Validation: Failed, certificate revoked on Tue 30 Apr 2024 01:31:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 494 (0x1ee)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:29:19 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=E6BC48DE565006CF21FC7B8DD9474D79989C6C4D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:51:b0:c0:2e:79:23:9e:57:e6:f2:84:c0:e7:
75:1d:2e:61:d7:9c:35:a9:c2:bf:d6:b4:46:36:ec:
38:b8:70:aa:a4:09:b7:e7:19:d2:62:30:91:b9:b2:
00:9c:e2:0d:8e:27:43:c6:54:a2:8c:fa:fd:5e:ca:
09:b7:cc:10:15:9f:c7:9c:85:10:4a:5b:39:ea:3a:
9e:ff:72:98:16:fc:21:6b:bf:df:d1:79:9f:68:d4:
2d:9d:df:1f:59:66:d0:12:b3:c0:58:6e:c4:a9:c0:
ad:59:3f:12:85:fe:57:ae:4c:58:83:94:23:36:25:
e4:fb:33:2b:22:d6:71:5b:a1:e8:67:30:28:16:c5:
3d:0c:79:f3:3e:8b:40:15:cf:bc:10:c4:7e:af:82:
33:fe:71:0b:5c:e3:a6:96:19:53:de:7a:c5:31:7b:
a3:1e:7e:ef:9c:fb:03:55:58:19:37:b8:61:93:90:
77:46:ba:b3:86:30:65:d0:a3:5d:ed:7e:f5:20:55:
7e:18:e6:17:cb:8f:2f:a2:56:99:29:a9:bf:99:33:
44:b1:42:8c:ba:a1:32:cd:5c:d4:9d:df:91:8b:36:
ad:a0:db:2f:3f:09:de:b4:ad:a1:3c:f8:5f:63:d6:
33:d5:78:f8:bd:b8:bc:80:5c:20:0c:78:88:25:c1:
70:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:BC:48:DE:56:50:06:CF:21:FC:7B:8D:D9:47:4D:79:98:9C:6C:4D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/5rxI3lZQBs8h_HuN2UdNeZicbE0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.79.216.0/21
Signature Algorithm: sha256WithRSAEncryption
11:d2:62:9d:47:f4:c2:a3:ae:8a:e6:96:23:28:29:74:7a:30:
c5:c5:08:0f:d3:24:a1:c8:e8:36:a6:b1:fc:10:e1:d8:56:2d:
e1:fa:6c:fd:53:b0:c6:91:ee:cb:3f:03:e1:83:c2:8e:07:78:
07:62:c5:bf:df:32:92:46:af:3f:77:1b:8e:63:ab:72:43:0b:
67:2d:0a:31:06:c7:12:fc:b1:6d:e3:a9:b0:80:6c:38:f4:71:
d1:10:ba:78:ce:c7:2d:5c:05:1a:b4:80:47:f6:c4:e9:1b:a5:
3c:b9:c9:c0:0a:c8:13:17:0d:76:bf:91:ae:48:ba:86:29:43:
39:79:fe:d4:51:bd:d6:4c:4c:65:4b:c5:b1:29:f2:c0:d4:96:
8b:34:08:cb:6c:ad:49:26:29:c6:cc:7d:e6:d9:38:c7:64:07:
3b:f7:75:04:a7:4a:56:2a:67:07:08:28:c6:fd:1f:0f:e9:9a:
1c:99:08:79:84:24:fe:6b:4f:ed:c9:1b:8b:d0:58:b0:c4:66:
f2:57:b5:76:bc:21:9a:af:f2:f8:5a:e8:2a:85:09:2d:2c:f1:
b5:38:79:b5:8f:c7:27:f4:0b:79:56:01:3b:7e:80:49:dd:8f:
ae:e1:00:f0:bc:4a:d5:77:d0:be:d1:4b:c2:da:58:d2:3f:84:
51:8e:75:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:31 2024 by rpki-client on console-fra.rpki-client.org