Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/U7I4x_7gEd2w47h0O5WMFJ44qVU.roa
File: U7I4x_7gEd2w47h0O5WMFJ44qVU.roa (raw, json)
Hash identifier: TdqwQ5yZT3Zj8/ENBntn56OfRVKwka22jUSo55DPr7I=
Subject key identifier: 53:B2:38:C7:FE:E0:11:DD:B0:E3:B8:74:3B:95:8C:14:9E:38:A9:55
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0318
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/U7I4x_7gEd2w47h0O5WMFJ44qVU.roa
Signing time: Thu 01 Jun 2023 16:05:33 +0000
ROA not before: Thu 01 Jun 2023 16:05:33 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.14.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:08:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 792 (0x318)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:05:33 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=53B238C7FEE011DDB0E3B8743B958C149E38A955
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:30:82:2d:39:a4:de:74:32:ab:bc:17:89:c3:
89:d0:77:6a:f1:b6:ae:c7:39:0a:a4:0b:76:6e:c6:
90:b5:c3:d7:5b:0d:01:ea:b6:9d:d5:cf:a9:24:bf:
28:3b:f7:f8:c9:b9:76:d5:0e:48:38:dc:66:d4:31:
d8:4a:ef:c3:a5:0d:8c:62:db:6c:b0:ea:67:5d:fc:
8d:82:2e:a2:6a:43:ee:ee:2b:0c:96:fc:52:bc:02:
d0:1e:51:6e:75:31:ad:7f:23:4c:76:9d:93:e0:59:
1c:55:67:a9:26:70:cc:83:b3:8f:f3:e2:9a:de:a5:
de:03:fd:77:30:16:c3:06:d7:9d:21:b1:3b:0f:c3:
26:0f:fa:d8:17:76:15:d3:99:c5:ad:72:73:0b:e1:
ec:7d:a3:2c:fc:0d:05:2f:9d:25:b6:a9:34:0d:04:
d5:a1:52:ac:9a:5b:59:e3:48:46:76:f1:51:af:72:
a8:06:ae:83:cb:80:c4:48:76:7a:70:23:db:d7:48:
40:21:0c:83:cf:29:59:a4:5b:30:6a:64:3e:6d:b2:
37:b1:63:8f:d8:5a:44:75:f1:e6:bd:a2:2a:f5:81:
f0:22:b8:45:57:8e:63:20:19:e7:2e:ae:03:90:fb:
c5:13:73:5d:7d:55:2c:99:56:22:9d:fe:d1:4b:99:
24:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:B2:38:C7:FE:E0:11:DD:B0:E3:B8:74:3B:95:8C:14:9E:38:A9:55
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/U7I4x_7gEd2w47h0O5WMFJ44qVU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.14.0/23
Signature Algorithm: sha256WithRSAEncryption
2e:80:ef:b9:a7:6b:dc:a1:b6:3b:18:4b:23:68:c1:2d:d8:0f:
3e:68:75:5d:2e:a9:5f:13:7d:66:a1:f4:29:5f:95:7d:68:9d:
3d:6c:3f:5c:3d:68:13:7c:57:9a:59:b2:9a:ae:45:3c:61:78:
67:68:de:cd:16:be:8a:37:3f:3d:95:3c:df:74:db:8c:5e:bd:
c9:3c:1c:80:90:40:9d:a0:e0:82:d3:39:6f:3f:59:a3:f8:da:
d8:a7:7a:d4:94:ac:94:18:79:60:aa:4a:c3:5d:3a:eb:99:7c:
66:c6:45:04:5c:82:38:1a:14:4a:ea:ed:1b:a2:d5:c5:22:58:
9e:e8:16:2c:1c:48:f8:a9:1a:0b:43:09:ca:3c:08:78:55:8d:
51:6b:7e:bd:3b:fb:d4:23:23:0f:e2:bf:9d:9d:13:21:56:0a:
87:cb:0b:94:76:ba:a1:aa:43:f2:e8:92:00:07:4f:36:0a:74:
e2:29:20:da:7b:d2:fc:4d:b8:5e:cb:41:10:3d:46:1f:c7:bd:
1a:e8:01:fb:3a:5c:83:de:bb:5d:bd:d2:17:21:3f:40:40:bc:
5b:08:95:94:c7:d5:9d:43:49:64:61:ab:d6:5f:71:c8:69:cc:
9c:3e:67:d2:24:ac:b7:a4:d5:2b:8f:34:68:bd:d9:46:eb:55:
a3:ec:0c:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:33 2024 by rpki-client on console-fra.rpki-client.org