Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ur1sbfrqMPjLwJmG05x6X7dZS38.roa
File: Ur1sbfrqMPjLwJmG05x6X7dZS38.roa (raw, json)
Hash identifier: ajCTHptUdLXTkVQ1Yjpx8e9HPDnyLur1PjnbueWhizk=
Subject key identifier: 52:BD:6C:6D:FA:EA:30:F8:CB:C0:99:86:D3:9C:7A:5F:B7:59:4B:7F
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 023D
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ur1sbfrqMPjLwJmG05x6X7dZS38.roa
Signing time: Tue 30 May 2023 16:32:22 +0000
ROA not before: Tue 30 May 2023 16:32:22 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.74.64.0/18 maxlen: 18
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:04:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 573 (0x23d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:32:22 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=52BD6C6DFAEA30F8CBC09986D39C7A5FB7594B7F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4d:2e:39:1f:1d:83:bb:27:5a:7d:f0:32:0f:
d7:58:d3:fe:a8:c7:b9:b3:c7:58:68:48:96:dd:a1:
04:ea:3e:d8:98:27:b6:19:9d:a7:1d:78:5e:7d:c0:
1f:bb:f4:49:24:d3:9e:af:b0:b8:9d:f4:f7:c1:c8:
5c:10:ad:a4:6a:78:76:5f:a3:fa:d3:a4:49:3e:de:
0f:ac:5d:1a:d2:1e:b4:fe:7f:1a:b3:f5:23:68:b0:
1f:03:24:f8:e6:42:85:22:0c:bf:bd:27:eb:87:73:
93:b1:d9:d2:bf:8d:9a:da:c7:2e:be:76:00:ae:aa:
22:29:05:5d:ac:58:48:46:95:87:7d:d7:f1:cc:80:
86:ac:f5:48:e2:e7:d8:bb:72:a6:d3:b2:17:01:49:
77:d3:56:03:e1:71:07:b1:f6:f3:fa:09:7f:c5:30:
f2:a1:f5:77:57:98:3d:e6:86:39:22:ee:a8:d7:70:
36:0d:11:09:ba:af:bd:16:c6:4f:22:d5:4a:99:91:
67:0f:68:b2:81:59:9a:bb:b2:a6:0e:8f:09:98:e2:
7e:10:cb:00:0c:2f:a4:a2:65:d1:a8:95:e5:66:f6:
d0:50:a8:01:11:b0:a6:29:29:94:a7:3a:92:d3:8d:
1a:5f:51:61:09:62:3f:15:b6:15:87:86:68:5e:1f:
c3:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:BD:6C:6D:FA:EA:30:F8:CB:C0:99:86:D3:9C:7A:5F:B7:59:4B:7F
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Ur1sbfrqMPjLwJmG05x6X7dZS38.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.74.64.0/18
Signature Algorithm: sha256WithRSAEncryption
47:3d:fb:c1:bb:c9:7c:42:99:fb:fb:bb:02:af:11:27:bf:2d:
4c:7b:67:4c:54:b0:4d:58:29:7b:48:b5:24:2d:c9:57:a0:59:
c3:42:c0:fc:63:d7:d4:20:0c:70:fa:85:16:99:ad:91:45:6a:
94:54:0d:b4:a5:47:fd:4c:33:a0:68:21:89:78:ac:d2:d9:65:
0f:93:21:a3:1a:94:ba:81:a1:4c:e2:b4:e0:3c:47:e6:96:6a:
5c:f9:5a:3d:eb:60:ca:ee:e0:63:64:50:d9:74:e0:8e:f4:3a:
81:4a:42:b7:cf:8c:13:10:eb:b9:3c:19:52:ce:23:90:bb:9b:
41:38:5a:20:ac:25:09:32:19:f0:c2:f9:47:7c:06:1f:01:bb:
96:3f:41:fb:60:b2:c0:b1:ad:53:a0:67:a1:03:01:17:91:f9:
28:f6:81:0a:32:3a:50:e5:b4:47:f0:3f:a0:8b:83:3c:4f:88:
48:22:93:60:57:11:29:f0:4c:b2:f5:d1:04:9e:8f:44:b3:84:
4b:46:c4:43:7f:3c:d2:45:8f:ce:c4:2e:a0:cc:8c:dc:50:c2:
4a:28:38:74:33:20:73:18:99:46:90:69:16:d5:3b:ca:8a:b9:
68:53:77:a8:07:7e:e3:3d:26:6d:d2:b6:50:65:e6:7d:81:73:
d0:6a:07:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:34 2024 by rpki-client on console-fra.rpki-client.org