Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/QNXQPFLn4RMWtbmUfzRAtfLm0-A.roa
File: QNXQPFLn4RMWtbmUfzRAtfLm0-A.roa (raw, json)
Hash identifier: j7uU33CsWb/4j3zHVsBbGF1VSsrPoKY1fVuAsEm2Hb4=
Subject key identifier: 40:D5:D0:3C:52:E7:E1:13:16:B5:B9:94:7F:34:40:B5:F2:E6:D3:E0
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 04E1
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QNXQPFLn4RMWtbmUfzRAtfLm0-A.roa
Signing time: Thu 27 Jul 2023 16:50:11 +0000
ROA not before: Thu 27 Jul 2023 16:50:11 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 49.103.18.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:42:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1249 (0x4e1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:50:11 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=40D5D03C52E7E11316B5B9947F3440B5F2E6D3E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:93:7a:80:de:bf:d4:26:51:f6:87:12:3f:25:
81:3c:1b:63:1f:77:2b:ec:04:55:30:d8:6e:c7:42:
bd:72:f8:49:6b:01:2b:0b:36:36:76:e7:3b:e0:85:
cc:53:7a:4e:0f:ec:05:5d:e3:8e:ce:30:8c:9c:3c:
be:fa:df:d9:18:08:59:dc:b8:07:f4:e8:d7:c4:8e:
46:6a:c4:1c:52:43:82:2d:d2:5e:f0:e2:f5:06:85:
01:4e:d0:be:f9:a5:c4:80:a3:23:49:92:25:ac:9b:
a2:a8:07:4c:64:cb:8e:c6:e2:01:eb:c7:22:20:13:
74:cc:74:9a:ee:41:06:7e:db:32:a6:97:fa:03:a0:
be:47:ed:97:a2:3c:16:30:cd:2f:ac:09:ba:b7:58:
da:bf:73:40:80:74:c8:e1:c5:58:cd:54:fb:fa:d7:
21:5f:aa:2a:3e:02:27:02:be:63:e4:80:b3:bc:1f:
d9:8f:21:9d:de:d8:b7:4b:f6:2d:3f:83:4c:24:74:
ca:4d:f7:51:b8:40:81:ee:c9:37:bc:0e:15:cb:c4:
28:c7:1a:fd:aa:ba:42:4f:c1:99:ad:ee:80:e7:d4:
11:cc:85:df:41:28:75:c9:5c:97:f9:78:5a:11:c7:
b2:9f:5d:db:4b:b3:7a:6f:a1:ce:eb:8c:03:9d:c7:
ce:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:D5:D0:3C:52:E7:E1:13:16:B5:B9:94:7F:34:40:B5:F2:E6:D3:E0
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/QNXQPFLn4RMWtbmUfzRAtfLm0-A.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.103.18.0/24
Signature Algorithm: sha256WithRSAEncryption
b4:aa:27:9a:d6:ca:34:a6:8c:b0:06:19:2e:36:67:55:42:b8:
cb:82:b2:93:e3:90:fa:18:ce:ad:d7:23:99:29:a3:6c:1a:65:
b9:0f:4c:3a:f1:b0:0f:20:ad:21:87:b5:4b:4b:85:1f:77:9b:
3b:33:bc:2e:78:78:94:dd:81:2a:8c:f6:c8:8b:d9:f8:77:ef:
eb:a3:1a:14:4e:54:45:b6:9c:b9:d4:66:d6:e6:5f:0f:39:2a:
32:0f:a8:81:8b:a2:c8:dc:6b:98:1e:55:c7:ad:fa:36:2a:ea:
76:de:45:b8:ae:13:55:cb:b2:9a:57:69:6f:a8:35:e3:c5:83:
fe:29:df:84:78:e0:21:59:0c:a3:f8:d3:dc:fe:7a:d9:8e:55:
bc:99:6c:61:b9:7f:fb:89:54:3c:bb:a0:d8:e9:ea:be:b3:d4:
a9:fe:a6:c9:68:5a:2f:18:40:f7:07:5a:fc:cd:08:5b:34:2a:
16:f9:ce:d3:fc:87:a9:c7:58:c7:6a:36:a2:64:22:b2:85:f1:
51:69:7a:d5:f6:2a:3e:d9:e8:bf:3d:bc:3c:2e:f8:d2:f0:3f:
37:e9:a9:c6:88:d0:e1:54:ce:05:04:99:84:2a:c1:08:86:b3:
78:37:45:11:e1:ce:cb:eb:7e:74:17:70:3f:7d:d5:3a:4f:d7:
e1:38:5e:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 03:11:26 2024 by rpki-client on console-fra.rpki-client.org