Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/TizBx774K2BxjONpFZeHAv2bANs.roa
File: TizBx774K2BxjONpFZeHAv2bANs.roa (raw, json)
Hash identifier: ySTQmLZZJglOcNwU9n+xev8ARhK1RGMPE7rQONweHOs=
Subject key identifier: 4E:2C:C1:C7:BE:F8:2B:60:71:8C:E3:69:15:97:87:02:FD:9B:00:DB
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0323
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/TizBx774K2BxjONpFZeHAv2bANs.roa
Signing time: Thu 01 Jun 2023 16:07:25 +0000
ROA not before: Thu 01 Jun 2023 16:07:25 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.36.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:14:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 803 (0x323)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:07:25 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=4E2CC1C7BEF82B60718CE36915978702FD9B00DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:34:97:0f:53:f3:d4:80:8a:fd:e9:fa:90:f9:
02:af:18:70:14:07:e4:3c:f7:0e:c5:dc:51:e9:3c:
f7:49:6f:fa:6a:50:57:6c:76:cd:89:3f:a9:a6:8d:
ea:c9:b4:cd:fc:43:5b:34:1c:d0:14:2f:06:db:05:
69:0c:7d:b0:f7:45:70:01:7a:23:02:6e:20:92:56:
1a:8e:46:bc:c7:ec:cd:8f:fd:2b:3e:4c:1f:40:ae:
92:1e:06:3d:21:a8:c6:6f:c0:8b:f3:63:ad:7b:6b:
14:06:56:1c:68:30:72:52:e2:a8:0b:38:e3:96:cb:
17:89:31:d2:11:e4:40:05:ce:5a:0e:76:84:dc:c8:
7c:80:7e:2d:fb:33:a3:ae:81:18:ab:11:9c:64:75:
c1:9e:a2:61:68:c8:06:04:d4:30:6b:f7:56:bd:38:
64:6d:a4:12:75:47:24:11:61:dd:ff:59:58:f9:1f:
8c:14:0d:4f:c0:67:56:82:54:d2:f3:51:08:ca:d6:
88:fa:51:a8:b9:34:00:c6:bc:4f:60:cf:b6:69:01:
23:0d:7c:ee:05:0f:08:e6:6e:8f:e8:a6:9c:9a:47:
0e:02:a2:15:86:35:6b:be:37:07:33:0a:95:a3:e9:
de:da:99:4f:a5:1d:55:66:19:42:ad:1f:68:0a:39:
f6:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:2C:C1:C7:BE:F8:2B:60:71:8C:E3:69:15:97:87:02:FD:9B:00:DB
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/TizBx774K2BxjONpFZeHAv2bANs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.36.0/23
Signature Algorithm: sha256WithRSAEncryption
b9:3a:80:1d:02:ee:f4:5a:d7:13:c3:91:f5:6e:a4:ff:d7:0e:
37:38:72:eb:4d:48:a0:54:eb:b4:74:62:5b:b1:eb:12:87:60:
88:1b:ab:25:d4:cd:23:e9:eb:f5:f1:32:09:36:4b:12:de:99:
14:23:1f:8f:7e:ca:22:df:57:01:82:d0:a2:6d:f9:f3:5b:dd:
0f:26:4c:6e:27:b9:76:68:91:a5:2e:c6:4e:d8:b4:71:55:9f:
75:59:0b:36:e3:75:5b:2d:25:4b:ae:0a:54:10:52:77:1a:51:
bc:81:cc:cb:c3:ab:b5:ce:42:37:8e:60:40:e2:fd:fa:59:0b:
39:b5:31:3a:db:85:ba:ed:36:07:81:f3:ca:42:0c:e9:0c:5f:
fb:5c:b6:15:32:31:0f:a7:cc:4e:e3:9c:ba:66:29:ad:54:d5:
ad:17:00:8b:eb:05:b8:8c:78:3b:f4:fd:93:e5:80:c7:8d:6f:
bf:f5:e1:b0:dc:4a:98:f5:8d:7c:d5:c2:0a:79:06:bd:66:69:
a1:fc:2a:46:c5:5a:e0:5a:c5:e7:a5:80:a8:58:ec:cf:e9:96:
a3:85:29:7d:ef:07:09:9f:86:22:ee:34:1f:bb:fa:fc:b6:13:
01:f1:66:11:d0:01:8d:79:c0:6a:e2:fa:cf:55:cd:8d:8b:d1:
30:94:2f:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:33 2024 by rpki-client on console-fra.rpki-client.org