Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/T5T3pzqPFW6lwzJ-SpTfPJTGmUc.roa
File: T5T3pzqPFW6lwzJ-SpTfPJTGmUc.roa (raw, json)
Hash identifier: uA9ywNwSSEXZUPx1nMEDUQydM9D0CeNB8ptx/zDEDf8=
Subject key identifier: 4F:94:F7:A7:3A:8F:15:6E:A5:C3:32:7E:4A:94:DF:3C:94:C6:99:47
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 6C
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/T5T3pzqPFW6lwzJ-SpTfPJTGmUc.roa
Signing time: Mon 27 Mar 2023 16:06:42 +0000
ROA not before: Mon 27 Mar 2023 16:06:42 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.116.0/22 maxlen: 22
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:41:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108 (0x6c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:06:42 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=4F94F7A73A8F156EA5C3327E4A94DF3C94C69947
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a1:45:66:72:19:a4:79:65:8c:48:6d:ac:43:
ba:8e:3f:2d:a8:3c:a4:f7:79:b4:af:8c:02:3e:a6:
7b:60:8c:e1:ce:ba:98:da:a3:47:5d:a1:cb:1b:f8:
92:b4:0c:85:84:a0:22:ab:73:f6:06:4e:0b:01:df:
f0:83:5b:09:0a:1c:04:cc:ec:00:34:73:05:93:f9:
e7:66:8d:d6:8c:e6:8a:fc:9e:32:91:01:a2:98:b5:
47:35:a0:40:9c:64:c2:c3:30:9f:1a:b5:5e:fa:ca:
cf:5d:71:ec:94:a9:54:05:60:05:25:cd:1e:55:d9:
26:cf:a0:95:bb:14:30:67:3c:02:38:4c:01:eb:de:
e7:be:9c:44:22:36:3b:2a:8d:18:48:dd:80:0b:8e:
3f:ab:74:fc:3c:1c:d1:ed:db:f6:65:e4:d3:eb:0b:
4e:e3:77:0a:9d:d2:96:d2:b9:01:f2:a2:d7:af:21:
f0:6f:3c:1d:bb:d4:5a:c5:f9:4a:d7:9f:b3:13:15:
67:b9:e7:9d:de:2d:4d:8f:02:d7:95:50:4b:bb:31:
dd:9c:97:65:cf:ae:20:c1:76:a8:b7:8d:c7:c9:cb:
37:39:98:70:56:66:b1:c9:51:47:fd:3a:66:0d:e8:
20:1d:2f:55:69:ec:50:af:ee:95:c3:a0:8a:d3:66:
aa:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:94:F7:A7:3A:8F:15:6E:A5:C3:32:7E:4A:94:DF:3C:94:C6:99:47
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/T5T3pzqPFW6lwzJ-SpTfPJTGmUc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.116.0/22
Signature Algorithm: sha256WithRSAEncryption
d0:66:69:6d:d3:a6:59:61:94:d2:69:cf:bc:cc:02:09:d0:b0:
5a:5a:1b:35:c5:e8:a3:a8:f3:86:e0:44:3f:81:ef:c2:a1:11:
c0:d7:93:bd:6f:38:ba:2a:44:79:e5:bd:17:0d:41:5f:30:00:
05:23:2d:95:63:93:53:0e:22:9c:eb:a5:27:6a:3d:91:3c:f3:
e3:5d:0b:19:fa:88:a0:f9:f1:55:f9:14:e3:51:66:de:84:77:
6a:5b:c5:0c:f0:5c:3a:50:81:fc:2b:02:0a:5d:72:2f:c9:0f:
60:f1:ae:18:da:4d:59:84:1e:21:d4:bd:d4:da:8f:3a:29:a7:
a1:b4:1a:f0:d3:4b:71:2d:36:c8:17:39:ff:10:52:96:92:9d:
7d:68:b8:dc:5d:f1:01:71:1c:e9:f5:cc:4d:61:60:a4:aa:9e:
88:25:c1:e3:55:6d:f7:ea:5d:92:0a:9b:ce:a2:b8:09:df:4f:
22:40:8f:05:df:65:78:32:6f:1b:33:35:4f:01:6b:ae:aa:c7:
91:5c:35:8a:24:b4:33:3d:81:93:02:24:30:4a:76:b6:57:76:
fc:a6:65:07:6a:ee:23:53:dc:8d:11:e6:e2:c4:0c:c5:3d:ac:
a7:11:8d:e2:d9:b7:d4:2c:ca:f6:b7:eb:7e:87:98:f2:8f:de:
ea:82:94:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 03:05:49 2024 by rpki-client on console-ams.rpki-client.org