Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/7Rc7JSJ2fnCq9-e4_gn8rIMYoCg.roa
File: 7Rc7JSJ2fnCq9-e4_gn8rIMYoCg.roa (raw, json)
Hash identifier: MdN6D/xk0mm0053OW/fdydpv1uy/gmqdCPDPFLeAM8Y=
Subject key identifier: ED:17:3B:25:22:76:7E:70:AA:F7:E7:B8:FE:09:FC:AC:83:18:A0:28
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0609
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7Rc7JSJ2fnCq9-e4_gn8rIMYoCg.roa
Signing time: Thu 29 Feb 2024 01:38:24 +0000
ROA not before: Thu 29 Feb 2024 01:38:24 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 9605
IP address blocks: 49.102.164.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 18 Sep 2024 03:59:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1545 (0x609)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Feb 29 01:38:24 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=ED173B2522767E70AAF7E7B8FE09FCAC8318A028
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f6:87:bf:a1:5d:fa:12:01:9d:b8:3d:2b:f4:
3b:4d:8a:ef:18:df:ec:1b:fb:4f:00:df:4b:1f:20:
4d:1a:43:6b:3f:53:ce:e5:9f:dc:57:e2:a1:d8:0a:
eb:c2:32:9c:84:cd:89:6f:de:74:69:b3:f3:f0:16:
bd:4e:8c:8b:81:03:57:cd:35:49:6e:b7:2b:cf:02:
80:43:3a:4e:d2:a1:c4:ad:a3:c2:a8:e1:b6:fe:1b:
bd:4d:fa:d8:90:d1:54:e9:76:44:15:79:0a:4b:d1:
11:f2:cf:ed:59:c1:14:0b:92:2c:f8:57:6a:1b:68:
39:cd:67:e0:36:ec:a1:6f:98:ef:10:21:99:dc:6c:
a0:e6:7c:46:16:e8:49:0c:4f:ac:fc:9c:73:61:33:
01:38:c2:7f:f5:e4:5d:bc:c6:49:25:74:b0:b1:c0:
e7:1b:69:2b:93:ca:a9:39:47:8c:17:6f:d9:f4:36:
bd:be:9a:11:d0:a2:45:78:a3:13:be:86:3f:21:62:
01:25:0c:69:3a:f3:19:e4:d2:09:8e:71:dc:ab:65:
6a:e2:f1:2f:c1:cd:db:51:12:80:69:4f:8b:0f:9f:
8d:12:15:a6:9f:62:ea:73:48:0d:85:79:4c:5b:39:
42:c7:68:27:43:7c:de:61:d9:80:0e:82:37:c4:70:
8c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:17:3B:25:22:76:7E:70:AA:F7:E7:B8:FE:09:FC:AC:83:18:A0:28
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/7Rc7JSJ2fnCq9-e4_gn8rIMYoCg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.102.164.0/22
Signature Algorithm: sha256WithRSAEncryption
3e:0d:32:54:4b:aa:98:b8:2e:6d:e2:9f:2b:30:c5:24:fb:4d:
1f:29:94:cf:5e:64:bc:c8:31:d4:ce:5f:ac:3b:be:3a:aa:12:
30:81:42:80:fd:05:2f:be:ea:42:ea:da:ec:31:b1:12:94:24:
88:c7:b5:db:38:5f:01:96:7b:d6:09:8b:56:32:56:57:8f:32:
f9:5c:e5:0d:6a:0b:fb:16:d9:f2:8b:b0:90:c1:6e:bc:ca:7b:
6a:2e:ca:86:a9:6f:10:49:75:cd:c4:06:7b:7e:ed:a1:49:ab:
03:f8:e7:42:db:21:02:7e:3b:79:60:43:72:a7:64:d8:8f:40:
a1:b5:61:87:92:ab:ff:68:a8:68:98:60:dc:7e:e2:53:8a:63:
fa:9d:d6:29:63:da:1a:00:d4:d7:a4:ad:ec:ba:3e:6d:15:7c:
75:33:7c:95:8a:ef:d5:15:69:4f:f7:f7:f1:11:25:0f:bd:64:
8b:dc:1c:29:5e:b5:b0:a6:f5:0d:fb:d6:7c:bd:d8:30:ca:86:
45:2c:34:ae:dd:f2:e6:e5:ef:e1:84:38:cb:48:b0:2c:0f:81:
2c:d6:5d:ed:42:53:85:09:a7:6e:71:2f:b1:7a:39:c0:8d:35:
63:39:b4:2b:be:a9:24:d0:60:8a:5a:4d:2b:00:6f:e2:5f:14:
ef:14:1a:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:27:39 2025 by rpki-client