Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7HriNTgKqtIlyzjUK_zFvwbga40.roa
File: 7HriNTgKqtIlyzjUK_zFvwbga40.roa (raw, json)
Hash identifier: d4zWjB6A7ZD4IBvimtG0kIdc+RKGFUOcbVycc7vRMYc=
Subject key identifier: EC:7A:E2:35:38:0A:AA:D2:25:CB:38:D4:2B:FC:C5:BF:06:E0:6B:8D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 1A
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7HriNTgKqtIlyzjUK_zFvwbga40.roa
Signing time: Wed 15 Mar 2023 02:05:50 +0000
ROA not before: Wed 15 Mar 2023 02:05:50 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.73.228.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:32:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 26 (0x1a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 15 02:05:50 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=EC7AE235380AAAD225CB38D42BFCC5BF06E06B8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bd:95:e2:6b:18:e3:81:96:1e:01:aa:8c:ae:
50:c7:fb:de:b8:7a:22:0e:56:65:b9:49:a9:cd:69:
de:e6:e9:c2:42:a4:08:18:ca:f7:a9:43:0a:26:de:
18:95:e8:50:a3:53:da:2b:e6:b3:64:b1:60:95:5b:
25:24:84:af:75:a4:10:09:af:d5:ae:68:96:b7:d2:
3f:19:02:4d:86:21:47:8c:99:fc:08:6d:00:8b:83:
d8:85:35:67:4c:51:09:92:ac:d1:a8:7f:cf:0e:11:
f9:08:35:87:1a:c1:e3:b7:aa:9b:61:f8:66:e2:07:
43:d7:d4:f3:27:1a:45:20:3c:ca:cc:df:43:c1:00:
a2:fe:e0:6c:2e:2e:94:40:62:d4:63:76:0d:95:e6:
fd:d5:9a:4c:96:81:2b:0e:d7:05:66:70:81:b9:b7:
90:0a:10:60:92:d5:b5:bb:7b:e7:34:73:74:d4:52:
26:4b:ea:e0:fa:e3:0e:68:ca:50:b6:a4:f4:62:b5:
f2:87:02:aa:0f:e7:0c:68:bd:52:0e:b8:2b:39:dc:
5c:08:b0:bc:4a:0f:17:89:47:0a:04:b1:f4:db:4b:
b3:51:62:8e:48:6b:7f:11:ef:d4:a4:0d:86:fb:fb:
94:05:4d:bc:f7:55:56:3f:21:89:78:00:11:f2:ef:
48:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:7A:E2:35:38:0A:AA:D2:25:CB:38:D4:2B:FC:C5:BF:06:E0:6B:8D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7HriNTgKqtIlyzjUK_zFvwbga40.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.73.228.0/22
Signature Algorithm: sha256WithRSAEncryption
30:de:6c:ea:9a:35:7d:4b:29:c3:58:8a:bc:9d:84:5d:5b:73:
fc:b6:2e:9d:73:a7:00:e3:41:ad:d7:63:37:24:6c:48:2f:50:
bc:4c:6e:eb:4e:29:98:61:d3:3b:b4:c0:50:09:a0:25:48:fd:
78:e1:0e:85:67:9f:c4:38:23:b1:44:1f:84:98:cb:b8:a5:42:
51:37:e5:d7:0b:52:89:c2:b6:b8:ab:34:27:66:3c:00:31:b8:
67:cb:95:f0:16:75:72:83:e4:1a:ae:03:8d:4d:06:3f:db:88:
cd:5b:08:31:1c:49:8f:ef:1f:a6:d7:62:c5:e3:09:27:9d:3c:
c3:4a:ad:72:bb:b7:2c:5a:bf:9a:f8:e3:94:a4:82:55:30:f4:
6f:07:d1:25:66:e8:e4:1d:58:c7:ac:50:3b:f6:8b:c5:91:d3:
1e:b2:bc:f0:e4:0a:e8:08:8c:39:37:03:21:52:44:76:cd:ff:
36:3a:61:2c:34:f4:e1:9b:f9:71:8d:c8:5b:80:90:c7:cd:93:
a2:58:52:c3:da:4a:02:a3:ae:e2:25:d6:38:b5:42:41:11:3d:
6a:f3:54:6d:39:6d:84:ac:18:59:f2:38:80:ae:be:05:44:87:
0b:18:f0:ac:8d:61:70:f7:98:32:58:84:28:f4:cc:88:b6:12:
f4:71:4d:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 01:58:11 2024 by rpki-client on console-fra.rpki-client.org