Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/HwaCihzoSW0zAQ12zf1yqwb2dJ4.roa
File: HwaCihzoSW0zAQ12zf1yqwb2dJ4.roa (raw, json)
Hash identifier: v230QoXMRb844VhDk4MjgTfjAvE781oO3xotby1LYmI=
Subject key identifier: 1F:06:82:8A:1C:E8:49:6D:33:01:0D:76:CD:FD:72:AB:06:F6:74:9E
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 66
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HwaCihzoSW0zAQ12zf1yqwb2dJ4.roa
Signing time: Mon 27 Mar 2023 16:04:34 +0000
ROA not before: Mon 27 Mar 2023 16:04:34 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.107.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:38:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102 (0x66)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:34 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=1F06828A1CE8496D33010D76CDFD72AB06F6749E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:66:4b:27:6d:f3:4b:5c:0c:2f:9c:bb:ca:73:
be:72:c0:a0:7a:ee:97:ef:99:e9:4a:77:09:52:4d:
34:ff:7a:25:35:e3:20:51:04:7f:20:0e:ec:7e:2d:
f5:34:04:99:10:1f:43:81:60:94:69:4e:21:57:a8:
e0:47:53:79:e3:98:19:32:d7:61:6a:44:05:7c:d8:
52:8a:1c:dc:18:27:33:12:da:a9:c3:c5:70:7f:04:
04:bf:e6:9d:68:78:5d:6c:1f:dd:f9:cc:7d:26:a7:
2e:8b:8b:b1:37:f9:4f:79:08:89:d3:a7:71:0a:64:
45:bf:fb:c0:9e:74:cb:0e:f4:fc:a7:82:a7:27:2c:
99:50:da:b4:f2:d4:c4:52:db:5e:02:d7:5a:6e:1e:
72:e7:ad:a4:c7:84:9b:05:63:97:34:49:35:ad:74:
a9:6e:be:30:d5:74:6a:04:dc:0b:08:f2:d2:77:d9:
aa:99:11:e5:0b:a2:73:1f:bb:03:94:f8:b6:4a:10:
d1:d8:1a:7e:10:86:52:af:67:f8:71:eb:dd:f1:60:
72:ae:ad:2b:8f:a6:a3:fa:38:2b:54:32:6c:45:6b:
b3:18:92:e5:24:c0:28:e2:e4:62:12:7b:a5:06:67:
df:ff:f7:31:c5:d0:95:f1:89:1c:e2:b4:ce:49:0f:
1a:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:06:82:8A:1C:E8:49:6D:33:01:0D:76:CD:FD:72:AB:06:F6:74:9E
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/HwaCihzoSW0zAQ12zf1yqwb2dJ4.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.107.0/24
Signature Algorithm: sha256WithRSAEncryption
7b:39:10:43:82:67:6c:8b:c3:98:d0:59:12:5b:f8:f2:ca:4e:
af:b4:d6:66:50:90:88:3a:02:24:55:b3:4a:89:82:6a:f6:d3:
db:b0:35:dc:0c:be:53:c0:5a:64:5d:29:01:89:53:c5:3f:c3:
c1:7d:d8:c8:63:91:24:12:3b:53:da:fd:d5:ff:01:98:e1:1d:
5d:97:d4:fb:b3:cb:81:5d:a0:1e:fc:8b:ff:f4:73:a7:c8:cb:
be:6d:14:4b:c5:f2:b1:9e:ad:3e:0c:1c:23:ee:f2:79:c2:e8:
55:aa:8e:65:61:d5:c1:75:be:5d:af:44:73:cd:e9:cd:ee:4d:
4f:41:19:7c:20:20:4c:0d:f1:d9:62:ae:fe:07:85:3d:33:9d:
ed:91:0e:2d:de:08:9b:b9:03:35:ce:46:97:b7:ed:95:fb:b8:
99:7f:42:2f:32:24:33:6a:8e:4f:ab:36:49:55:29:7c:25:b5:
33:80:38:6f:3e:59:85:f3:59:0c:3d:a1:22:a5:a2:a6:b4:bf:
8c:84:55:fd:b2:7f:d7:f8:d7:9c:4a:8d:80:5f:fd:83:c0:bf:
86:cf:ea:81:4d:c5:1a:1f:2a:25:82:41:01:b4:c7:64:d9:db:
e3:f2:1b:22:93:e9:95:7a:96:5a:ec:3f:96:87:12:25:2e:d4:
7b:1f:ac:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 03:05:49 2024 by rpki-client on console-ams.rpki-client.org