Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/60rvaKRpAsZ3D-FM087b568KgFI.roa
File: 60rvaKRpAsZ3D-FM087b568KgFI.roa (raw, json)
Hash identifier: Ed1bvWvtR/5Z/WYRwAzhcob5v1CfEYgJNGP4to4IrE8=
Subject key identifier: EB:4A:EF:68:A4:69:02:C6:77:0F:E1:4C:D3:CE:DB:E7:AF:0A:80:52
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 01B5
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/60rvaKRpAsZ3D-FM087b568KgFI.roa
Signing time: Wed 24 May 2023 16:37:07 +0000
ROA not before: Wed 24 May 2023 16:37:07 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.79.24.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:28:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 437 (0x1b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:37:07 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=EB4AEF68A46902C6770FE14CD3CEDBE7AF0A8052
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:02:5e:74:be:55:f7:86:3e:d8:41:e3:2c:dc:
42:d1:7c:6c:6f:79:87:91:0f:66:aa:4b:66:51:ed:
7d:33:a7:93:ae:44:c8:47:18:a3:1c:59:1b:3b:0e:
67:a2:eb:4c:c2:42:5d:3e:1c:86:f8:00:59:3f:8e:
25:4b:b8:a9:11:d8:f1:20:85:5a:1c:ab:ca:8b:4f:
48:5a:49:6a:3d:4e:12:e0:b9:1b:82:4f:b9:8a:ba:
9d:e5:95:76:04:a0:03:08:ba:90:41:29:33:68:93:
1c:82:3b:8c:51:b8:e5:44:42:5d:ab:a8:b6:fe:72:
87:d2:9d:a8:bf:e4:82:08:dd:e5:8f:4d:fb:04:a2:
b0:31:00:ec:2d:f0:14:a4:cd:6c:15:09:94:d7:53:
e4:96:dd:42:9e:b6:67:14:f4:e8:e3:11:9b:fc:bb:
ba:62:c2:8e:55:5c:21:b4:b8:87:3e:ad:78:cd:f0:
60:d7:47:52:97:54:9f:45:a0:60:fd:c2:bf:58:c7:
7c:f2:81:33:bc:22:7d:6a:e0:da:3e:99:e4:45:58:
de:1d:44:83:56:2f:ac:d4:16:de:25:5b:28:2f:2e:
ab:64:af:ca:35:ce:5a:a4:4a:63:df:e1:52:da:ab:
e0:9c:ed:cc:93:9b:f6:1d:49:f1:79:42:5e:71:dd:
41:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:4A:EF:68:A4:69:02:C6:77:0F:E1:4C:D3:CE:DB:E7:AF:0A:80:52
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/60rvaKRpAsZ3D-FM087b568KgFI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.79.24.0/23
Signature Algorithm: sha256WithRSAEncryption
a1:62:7b:cd:1f:cf:32:76:fa:3e:2c:1c:b1:64:77:c1:93:ab:
7d:1c:87:a8:87:b4:40:4c:58:d2:a4:1c:ae:77:c5:33:1d:50:
7b:ab:c9:2d:41:57:04:cc:d7:94:26:b2:d2:13:02:cb:ec:62:
dd:80:2c:bf:1d:34:82:72:6d:92:c4:23:92:aa:df:3a:a7:58:
1f:9d:94:e4:b8:96:e3:3a:ff:8e:e5:6e:b4:60:db:6a:3a:2b:
6e:ba:d6:df:bd:28:cd:2e:24:06:cd:00:4d:25:80:5a:2f:0c:
a1:8f:d2:68:a1:0d:ee:81:56:00:e7:09:05:d0:15:b7:ca:25:
13:2b:08:87:b2:25:a3:9f:2d:34:98:ac:b5:f6:de:d5:bb:4e:
8f:3e:26:35:c4:bd:7a:49:cb:ca:38:a1:8e:47:eb:81:87:75:
0f:20:8f:d4:46:f0:f2:e9:b1:ea:a4:45:0b:77:38:c8:d8:b4:
55:38:51:36:94:be:17:10:fc:ba:97:93:c5:85:d0:d7:41:d7:
4e:72:c3:3f:b5:d2:b0:e8:8f:6e:6f:10:ff:70:b2:23:bb:b1:
71:c6:a4:a5:04:65:cf:df:c3:0b:8c:6c:e0:60:85:ec:e2:65:
12:27:44:e3:d3:91:b3:09:ff:2b:6f:a5:1e:87:af:d1:28:f3:
dd:ef:1b:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:31 2024 by rpki-client on console-fra.rpki-client.org