Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/FKuHdqwBycDrqoyPKbQQKgm9tNE.roa
File: FKuHdqwBycDrqoyPKbQQKgm9tNE.roa (raw, json)
Hash identifier: 2G+7ovNeMIhkmNaP62Cc1b1XkRPejFYipx8ei4Sik3A=
Subject key identifier: 14:AB:87:76:AC:01:C9:C0:EB:AA:8C:8F:29:B4:10:2A:09:BD:B4:D1
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0533
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FKuHdqwBycDrqoyPKbQQKgm9tNE.roa
Signing time: Thu 27 Jul 2023 16:54:15 +0000
ROA not before: Thu 27 Jul 2023 16:54:15 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 1.72.24.0/21 maxlen: 21
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:46:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1331 (0x533)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:54:15 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=14AB8776AC01C9C0EBAA8C8F29B4102A09BDB4D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c2:8e:34:f1:42:0e:4d:24:83:e6:9e:9c:98:
0e:e1:36:07:58:0c:5e:96:a6:bf:39:91:c1:af:ec:
ec:98:cf:0f:0b:54:a8:e6:e0:0f:ec:0e:d0:0a:8a:
c4:28:be:58:88:af:6d:f5:29:f7:1a:f4:b2:57:c8:
3d:0a:79:4a:b5:fe:99:62:99:ee:74:b2:b2:4e:26:
00:7d:e6:3b:77:57:59:f9:8b:cf:7a:12:7a:64:f8:
75:c0:e3:7c:5f:80:a8:33:4f:80:57:5f:7f:ee:8f:
15:fb:6f:cc:2c:7d:7b:9f:89:35:79:e6:24:77:9f:
ad:b3:bb:b9:73:16:f7:4a:c6:80:81:ac:44:5c:19:
de:3e:43:19:83:d4:bf:ef:47:c1:28:99:f7:1e:09:
52:82:03:45:3b:c3:88:33:69:1f:04:42:ed:2c:6e:
60:2e:69:95:39:07:9f:bc:f9:ed:b4:94:00:f8:0f:
1b:6c:39:6c:cb:7b:23:30:00:56:37:56:d6:a1:0e:
d9:09:d3:28:d2:8c:7f:6e:4a:25:f3:ca:6f:d8:c6:
43:d5:19:b4:d5:6c:6b:5e:67:e0:57:82:cd:06:90:
2e:72:74:1d:a9:23:be:59:c8:1f:52:b8:39:e9:17:
44:8a:8f:80:07:ee:ef:db:61:8f:42:3e:07:0c:d7:
e8:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:AB:87:76:AC:01:C9:C0:EB:AA:8C:8F:29:B4:10:2A:09:BD:B4:D1
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/FKuHdqwBycDrqoyPKbQQKgm9tNE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.72.24.0/21
Signature Algorithm: sha256WithRSAEncryption
9b:52:2b:eb:2e:c9:bd:07:57:33:34:43:09:e9:c9:96:a6:e9:
9f:d6:a5:78:f0:31:c8:3c:cc:c9:cc:47:4a:24:54:c5:fc:87:
d5:6a:3d:33:19:08:83:22:80:08:ac:d8:de:4a:c9:d2:3b:4d:
1e:92:9e:60:79:f5:d1:9d:d6:8a:0a:a7:ca:75:73:6c:51:3e:
e8:c0:05:f0:ee:d6:dd:de:cf:cc:34:2b:72:97:09:57:1a:0f:
3c:1b:24:61:fb:10:94:68:89:c2:7d:8d:a6:d5:96:92:c0:66:
09:a9:f4:78:e8:19:b1:d8:0a:2e:cd:ff:c3:4b:93:9e:2d:59:
2c:1d:0b:d7:42:71:2a:a0:1f:c7:30:4b:d3:7b:6d:38:b6:e5:
79:27:7a:f5:5d:8a:0f:a1:da:4c:77:6f:0c:78:29:8c:46:38:
aa:04:0f:6b:62:d3:c6:02:cd:7d:ba:78:f3:77:7f:c1:e1:66:
ca:6e:0b:a5:5b:d7:2f:7c:ce:e5:aa:c4:e4:03:95:b9:3c:a1:
74:97:f8:71:b8:cb:ef:a8:68:b9:97:00:2d:6c:5e:cd:ab:0f:
2e:e1:35:92:2f:49:c3:8f:b4:76:51:b3:1b:3d:bd:2e:f6:92:
46:e5:86:79:05:ae:80:ba:d1:2f:b9:ae:30:4d:41:d5:54:21:
0d:32:dd:6b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 04:12:19 2024 by rpki-client on console-fra.rpki-client.org