Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/EZjHf7U1-AA1-QUrvxxE1pLsvOg.roa
File: EZjHf7U1-AA1-QUrvxxE1pLsvOg.roa (raw, json)
Hash identifier: OSlgnebIdEqwyp/GqEodKHysWPgI9PDnmWl7AzLt3Ek=
Subject key identifier: 11:98:C7:7F:B5:35:F8:00:35:F9:05:2B:BF:1C:44:D6:92:EC:BC:E8
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0575
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/EZjHf7U1-AA1-QUrvxxE1pLsvOg.roa
Signing time: Thu 27 Jul 2023 16:58:05 +0000
ROA not before: Thu 27 Jul 2023 16:58:05 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 49.106.98.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:50:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1397 (0x575)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:58:05 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=1198C77FB535F80035F9052BBF1C44D692ECBCE8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:50:81:5a:3e:e8:01:bb:79:7c:96:7f:76:9b:
bc:1d:e3:64:80:8b:9a:f9:23:8b:fb:bc:7f:a2:44:
7f:6f:8d:68:69:28:34:36:56:b1:6d:ba:0a:15:9d:
58:ff:a0:fa:96:35:51:76:d3:3d:23:9c:0d:c0:81:
8c:40:42:5b:c7:dd:6a:72:e7:36:80:53:27:fa:41:
e4:9e:b5:08:57:fb:33:31:c2:e9:5a:db:ab:fc:87:
49:42:fc:69:e8:65:be:46:cb:20:27:1f:cd:46:c4:
44:d4:8e:87:e0:48:ff:02:74:82:1c:94:4b:e4:e3:
88:e8:2e:72:2d:9b:22:37:d4:fb:7c:ee:fe:a2:b0:
06:16:51:d7:13:e3:19:63:69:4d:4c:bf:9b:b2:e6:
e1:65:8e:df:b6:91:16:1d:aa:77:54:f3:fe:0a:14:
59:b4:76:60:32:84:ad:7c:25:80:b1:1a:20:89:f7:
3a:ee:5d:d7:d2:96:e2:af:37:d9:80:f4:1e:9b:59:
42:11:ed:3e:ad:3f:40:3a:09:cf:c3:01:47:4d:b5:
d3:0a:37:4a:0e:7f:99:0d:86:7e:28:b8:05:0f:01:
12:f3:63:9f:d0:84:f0:7d:99:78:29:95:3a:8f:37:
91:19:59:00:aa:f7:43:a3:18:58:76:b4:6a:4a:a4:
0c:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:98:C7:7F:B5:35:F8:00:35:F9:05:2B:BF:1C:44:D6:92:EC:BC:E8
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/EZjHf7U1-AA1-QUrvxxE1pLsvOg.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.106.98.0/23
Signature Algorithm: sha256WithRSAEncryption
13:db:6e:9f:da:8c:0f:48:70:15:02:b0:c9:9b:26:07:7e:2a:
de:8c:2e:90:8c:b1:7a:99:c4:d6:37:1a:1f:03:fb:c4:8b:ce:
47:d4:58:8a:9f:79:53:bb:60:8b:24:20:a4:e4:ea:72:30:df:
de:de:56:b7:fd:68:17:02:31:b1:61:12:80:b0:76:13:0e:95:
2c:c4:08:57:7a:1d:1b:d3:da:61:41:b5:5b:89:8c:01:d8:d1:
c1:0f:a5:59:c7:02:d3:1e:64:1d:75:da:88:f3:d2:d4:45:68:
6d:ee:bd:41:49:20:5b:f4:09:b9:59:62:b2:57:84:c2:e4:ba:
d9:91:c0:60:dc:b7:06:ec:47:fe:ed:5b:4d:40:9e:04:99:e9:
a2:7a:18:2d:94:84:5f:cd:5a:9a:95:81:72:e6:1f:9b:e7:ed:
2a:f8:f4:a3:c0:ec:79:b5:97:0b:6b:d8:86:c3:d4:b7:4c:7e:
d5:84:cc:3f:36:ae:bc:b9:72:14:41:f4:45:dd:86:1a:b3:78:
d1:e8:27:cc:ba:22:d7:5e:5c:9a:2c:68:e5:07:ae:d8:3d:e1:
4b:34:74:13:6a:6d:73:41:7c:bc:a2:bf:44:b4:38:bc:c3:70:
ec:69:f5:9a:99:ba:82:ae:09:40:6a:01:13:ab:f0:77:64:45:
90:06:0d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 04:12:19 2024 by rpki-client on console-fra.rpki-client.org