Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XE_i67CukpDy045gHtOohHPRy5E.roa
File: XE_i67CukpDy045gHtOohHPRy5E.roa (raw, json)
Hash identifier: yvUNUoq8N8LU/L7Lv5Va+7gui4Dq/l1/AmRlHNReyZo=
Subject key identifier: 5C:4F:E2:EB:B0:AE:92:90:F2:D3:8E:60:1E:D3:A8:84:73:D1:CB:91
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 060A
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XE_i67CukpDy045gHtOohHPRy5E.roa
Signing time: Thu 29 Feb 2024 01:38:24 +0000
ROA not before: Thu 29 Feb 2024 01:38:24 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 9605
IP address blocks: 1.72.4.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:34:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1546 (0x60a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Feb 29 01:38:24 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=5C4FE2EBB0AE9290F2D38E601ED3A88473D1CB91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:f8:3a:72:24:08:98:31:4f:b5:4c:a1:34:4f:
30:96:61:f3:18:0f:31:37:ef:8e:d2:9b:54:c9:37:
3b:8f:f0:e1:fa:32:22:f1:c4:91:c0:5f:33:cb:cc:
d2:a2:91:85:f0:23:00:61:dd:d1:e3:0b:e3:fa:7a:
7a:cb:48:1d:98:86:b6:27:ba:00:c8:9c:88:7b:6a:
fe:da:64:1d:ab:6a:82:1a:24:dc:7e:4c:ab:25:29:
a0:27:a6:7b:62:de:aa:4f:65:26:21:b8:02:d9:09:
07:38:47:ba:fb:7b:ae:9a:e6:08:e6:b6:a5:2c:2f:
45:bd:0b:5e:64:59:86:d7:71:89:a7:ba:db:79:5f:
a2:34:61:10:b2:fe:ca:ab:64:7c:fc:f6:01:82:96:
bf:c0:d4:ef:2e:d2:5b:9d:05:8f:21:3d:1b:88:e5:
64:a7:6e:50:f6:93:2b:37:e1:c7:7a:cf:f0:83:f1:
ed:9e:ea:cf:ba:fe:fb:4a:57:f1:d1:dd:db:58:4e:
0d:d4:cb:80:ef:31:16:15:b4:6a:28:73:ae:cb:90:
53:d8:fe:07:b2:bb:ed:86:48:61:7f:b4:98:32:3d:
16:e6:8c:d0:a3:5f:a8:ea:06:02:39:ff:63:4d:20:
85:b5:f5:4d:9f:43:70:a1:34:9c:69:e0:6b:67:02:
e3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:4F:E2:EB:B0:AE:92:90:F2:D3:8E:60:1E:D3:A8:84:73:D1:CB:91
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XE_i67CukpDy045gHtOohHPRy5E.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.72.4.0/23
Signature Algorithm: sha256WithRSAEncryption
11:00:25:7b:9f:12:f0:a8:76:ac:90:5b:6b:b4:40:0b:30:06:
7a:cb:0c:80:39:19:9d:36:08:1e:d7:25:ba:7c:e6:d9:6b:e0:
35:20:35:ef:32:9d:a6:c5:d4:e2:43:2e:49:bc:9e:44:c2:d1:
0f:42:91:6f:d1:9a:35:ff:db:b3:0f:87:c1:03:3a:7a:dc:fc:
2c:60:65:2a:a1:be:5f:53:d0:2e:56:64:6e:17:85:08:a0:01:
80:83:29:9c:52:f1:8b:1e:f7:f2:21:62:29:28:0e:9f:36:4b:
93:92:a1:f8:4c:df:b5:af:cf:7c:0f:3a:42:f6:47:3a:0e:4e:
d8:a6:6e:05:96:a0:a7:0c:c9:49:0f:49:6e:ba:f2:2d:40:17:
71:8c:09:27:16:2e:e8:05:1e:77:7b:42:e6:3b:42:dc:d5:fe:
59:11:f3:d9:5e:c3:b5:79:10:59:93:f8:85:6f:53:f4:c5:94:
32:57:4b:c5:9d:9e:fa:0c:e1:9f:27:e8:0b:b1:43:f0:2f:16:
7a:3d:af:00:8b:27:28:98:45:f9:8e:d7:67:fb:a9:96:ef:56:
31:88:24:3a:19:86:62:29:82:8f:b0:33:9a:d7:cf:b7:88:48:
79:c4:2f:f2:80:ba:d4:6f:b6:3e:40:9c:63:60:39:72:04:86:
1b:95:82:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:08 2025 by rpki-client