Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/LJbt3GjLG83nczFN1-2eLXVzAK8.roa
File: LJbt3GjLG83nczFN1-2eLXVzAK8.roa (raw, json)
Hash identifier: Q4YEQ6xDMpmOG7EzyY+D8gi25WzXEO0jim4oiz9GqRA=
Subject key identifier: 2C:96:ED:DC:68:CB:1B:CD:E7:73:31:4D:D7:ED:9E:2D:75:73:00:AF
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 34
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LJbt3GjLG83nczFN1-2eLXVzAK8.roa
Signing time: Mon 27 Mar 2023 16:02:06 +0000
ROA not before: Mon 27 Mar 2023 16:02:06 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.109.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:35:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52 (0x34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:02:06 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=2C96EDDC68CB1BCDE773314DD7ED9E2D757300AF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:58:18:4b:da:29:f5:95:ae:ca:4a:26:94:df:
08:92:94:11:4a:39:6b:39:db:bb:c0:52:e0:c8:2e:
88:be:d0:cf:1c:06:da:e3:5f:45:06:8c:02:c7:1e:
69:3c:f8:c0:32:eb:a1:31:b8:06:4f:c9:71:3f:8c:
e3:90:60:5e:65:10:b2:ba:86:90:4e:ca:33:b7:ce:
71:11:02:a6:e6:78:2d:a7:fc:8a:a8:0a:6d:ce:aa:
69:8c:a9:ed:a0:95:af:0d:5f:7f:2b:da:a6:25:f3:
9d:3f:a0:83:fd:5c:d3:df:69:0d:8e:5f:2b:4a:d2:
47:33:58:4d:a2:a7:80:2e:2f:09:96:23:6e:af:86:
d6:a1:3a:8f:70:fe:9a:e4:81:c2:05:77:6e:4d:09:
e3:ae:8e:e4:86:36:9f:73:53:16:ef:c7:d8:4d:f0:
a5:23:45:a8:a2:d1:a5:e0:18:29:95:13:69:ca:f8:
f6:2c:9e:9a:95:e3:8e:20:f6:b2:de:77:65:34:b6:
fa:bc:82:47:19:df:79:cb:e4:c1:0b:d7:c1:b2:7b:
bc:7e:a2:b1:4a:ac:b9:1a:31:70:92:50:62:0a:95:
9c:f4:50:45:e5:8f:ba:57:e5:84:50:b9:fa:50:07:
5e:0c:51:7f:0a:73:5e:b9:14:a5:9b:b8:8b:3d:21:
75:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:96:ED:DC:68:CB:1B:CD:E7:73:31:4D:D7:ED:9E:2D:75:73:00:AF
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/LJbt3GjLG83nczFN1-2eLXVzAK8.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.109.0/24
Signature Algorithm: sha256WithRSAEncryption
5e:ad:ea:d4:ec:28:5f:63:5e:d3:b1:c1:78:72:71:26:5d:db:
21:59:fc:d5:cf:0e:82:cb:3f:e6:e9:c9:1a:52:60:b4:97:3a:
d4:9b:a1:b8:5f:07:80:74:18:a2:9f:f0:dc:e4:d8:05:7f:53:
fa:59:97:6d:96:c3:2b:e7:08:f5:42:4a:d3:65:59:af:2c:5a:
46:72:0e:c7:a0:35:aa:10:3a:cc:fe:1b:cd:e6:5d:3e:4c:c1:
ef:94:5b:ff:ff:f9:be:6c:91:da:c7:0b:9e:22:75:4b:49:73:
78:0a:35:12:6f:91:26:2a:a0:40:e2:0f:aa:a5:07:4e:31:ca:
fb:18:0f:93:a3:8d:34:03:f3:6d:36:30:be:32:99:df:ce:93:
6e:32:5b:20:92:40:a1:da:be:33:be:8e:0c:e0:82:02:8f:bf:
b8:c6:af:bf:53:d2:05:a6:f1:04:be:3e:86:b8:2b:17:0e:69:
b4:d4:11:ca:7a:62:59:5e:8f:dd:64:c9:ff:a3:ca:4f:13:70:
93:bd:5a:7a:a4:b7:aa:dc:b9:ff:ed:55:ec:b8:73:c5:29:d6:
9c:04:3c:95:ac:3c:b1:c1:7b:2d:a0:74:05:af:44:1e:c2:89:
75:d2:95:c6:0b:bd:8e:61:70:a0:ec:c4:66:99:fd:6a:04:20:
89:cd:0b:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 03:00:58 2024 by rpki-client on console-fra.rpki-client.org