Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/AdwfayxaehCAKuLX3LnNnTktvhA.roa
File: AdwfayxaehCAKuLX3LnNnTktvhA.roa (raw, json)
Hash identifier: yunxJWEZQX7mXU+VYUgiajRQyhg3bkIGPTZf8Tq2pPc=
Subject key identifier: 01:DC:1F:6B:2C:5A:7A:10:80:2A:E2:D7:DC:B9:CD:9D:39:2D:BE:10
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 39
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/AdwfayxaehCAKuLX3LnNnTktvhA.roa
Signing time: Mon 27 Mar 2023 16:02:07 +0000
ROA not before: Mon 27 Mar 2023 16:02:07 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.24.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:32:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 57 (0x39)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:02:07 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=01DC1F6B2C5A7A10802AE2D7DCB9CD9D392DBE10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:8d:4f:42:c2:86:3e:93:b5:7f:88:26:d2:bf:
c3:bc:53:a8:0a:fe:0d:c7:1c:f5:7b:82:48:76:a8:
28:d9:66:ad:03:75:b5:da:cc:ba:a3:05:5f:60:0e:
77:56:3a:a6:d7:a8:62:64:45:53:21:93:46:f5:11:
ea:4f:1f:83:00:75:73:e3:f4:4b:a5:09:0d:3a:2c:
c5:da:aa:1a:67:47:c1:fd:4f:b7:71:39:77:28:a3:
96:86:a6:fd:e9:b8:8b:bf:b1:cc:f6:f9:46:5e:b4:
23:a4:c3:11:36:fb:62:f2:dc:e3:35:a9:89:ec:48:
49:f4:d1:02:5f:e4:d9:63:3d:60:51:6f:04:7a:e4:
76:ac:24:05:0a:88:73:8d:19:30:83:d2:1b:6d:b3:
59:cd:ad:b6:82:64:c4:4d:75:69:fa:41:bc:0e:81:
3f:a1:1f:ba:b9:61:fc:d7:77:85:4f:5b:81:af:f9:
1a:d8:21:2a:63:d5:47:27:42:56:2a:e6:4c:35:cf:
30:95:0b:9b:51:09:7d:e9:a4:60:bc:1b:cd:1f:5f:
67:f4:8b:59:b8:2a:46:44:cf:43:b4:dc:3a:34:f4:
71:12:dc:17:35:ce:7e:41:12:63:ac:fa:ee:67:20:
aa:39:18:aa:50:b3:35:b6:44:01:ea:f3:4c:63:41:
d7:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:DC:1F:6B:2C:5A:7A:10:80:2A:E2:D7:DC:B9:CD:9D:39:2D:BE:10
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/AdwfayxaehCAKuLX3LnNnTktvhA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.24.0/22
Signature Algorithm: sha256WithRSAEncryption
9a:b0:0d:1d:6f:98:2a:6f:4d:f4:b8:05:39:2b:5e:98:db:33:
f8:5b:75:02:80:e0:df:fe:12:72:0d:23:d9:82:35:f9:61:72:
80:3e:4b:3f:47:2c:88:58:e5:d9:ba:62:aa:b3:f6:f7:ae:72:
d8:f0:7a:e6:62:5c:82:a4:8c:1f:3c:ba:f4:c9:99:a7:37:2a:
92:c2:50:c0:78:f7:d4:84:a7:88:83:f0:72:c3:54:60:56:d7:
55:24:2b:8d:74:0f:6c:5d:be:c6:98:4c:cf:bd:3f:2d:53:f2:
ff:89:f5:97:5d:7a:52:81:1b:41:58:19:7c:cf:81:65:30:ed:
14:e6:a1:29:92:9e:fd:50:74:66:88:72:d2:72:b6:49:0e:fb:
85:9a:39:a5:2f:5b:1b:17:6b:26:d0:76:19:43:4e:0c:9b:bb:
5e:73:24:d6:c6:51:5f:16:ad:fc:45:6d:cb:74:39:cd:83:33:
bd:1e:3a:64:8b:92:a9:08:1c:78:1f:1e:5d:ad:ba:91:36:ec:
51:de:8a:76:14:55:30:ea:91:8d:2a:10:f0:f6:68:04:05:1e:
69:10:78:be:c6:9b:f9:ac:28:34:90:e3:e1:8b:28:21:0a:ad:
4e:13:5c:87:7e:8f:0d:bd:27:7c:68:dd:e3:2b:d4:a7:64:47:
2a:ca:1d:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 02:02:26 2024 by rpki-client on console-ams.rpki-client.org