Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/XlFvfKg32vPCYOqdJ1eEFdnQy0g.roa
File: XlFvfKg32vPCYOqdJ1eEFdnQy0g.roa (raw, json)
Hash identifier: diIVHSXnH0iNGjrTdSX1OL06f9jpnF5fvc0VKrTx3tw=
Subject key identifier: 5E:51:6F:7C:A8:37:DA:F3:C2:60:EA:9D:27:57:84:15:D9:D0:CB:48
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05BD
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XlFvfKg32vPCYOqdJ1eEFdnQy0g.roa
Signing time: Tue 22 Aug 2023 05:35:57 +0000
ROA not before: Tue 22 Aug 2023 05:35:57 +0000
ROA not after: Wed 14 Aug 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.109.96.0/19 maxlen: 19
Validation: Failed, certificate revoked on Wed 31 Jul 2024 01:28:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1469 (0x5bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Aug 22 05:35:57 2023 GMT
Not After : Aug 14 01:30:02 2024 GMT
Subject: CN=5E516F7CA837DAF3C260EA9D27578415D9D0CB48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:39:5d:94:49:08:2d:73:fc:7e:fc:71:6d:a3:
c1:e1:79:53:0d:a8:0d:db:74:2f:14:cf:8c:5a:96:
59:4f:6e:72:2c:83:8d:39:b8:15:ae:7f:2b:84:81:
a8:22:5f:bd:70:e5:cf:a2:b0:22:de:42:3d:a2:7a:
0e:4f:8e:b8:d9:8a:35:06:5e:fa:b9:0e:92:ac:5c:
6d:e5:ce:a2:20:87:eb:4e:a2:8b:6b:dc:07:82:61:
96:8c:d2:52:94:60:5e:4f:f9:fa:44:b7:a9:c1:c0:
e1:c6:f0:52:06:bc:29:8e:24:da:2f:50:00:a2:bb:
be:29:a1:92:cc:ca:8f:cf:ab:52:9b:17:18:e4:2b:
65:51:67:29:3e:a6:1b:a3:fe:8c:b5:03:94:4b:26:
da:5f:7e:da:73:cb:db:63:6b:31:9a:8d:cb:a3:ba:
84:61:5d:52:27:ba:6a:c4:4b:78:8c:af:da:9b:de:
8e:8a:ac:a0:fe:18:a6:1b:02:38:a9:03:85:1e:84:
f5:36:ac:33:01:fd:c4:db:3e:8d:12:8e:78:2d:8e:
81:08:89:b3:e3:26:bc:71:b7:f5:df:e5:e8:5f:d1:
1e:b6:25:8f:a6:32:9b:d1:0d:51:65:94:e3:0d:fe:
7e:8c:c7:30:d7:58:22:68:a7:46:b6:84:53:ad:fa:
8d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:51:6F:7C:A8:37:DA:F3:C2:60:EA:9D:27:57:84:15:D9:D0:CB:48
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/XlFvfKg32vPCYOqdJ1eEFdnQy0g.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.109.96.0/19
Signature Algorithm: sha256WithRSAEncryption
a8:cf:2d:2b:fb:c5:6e:12:29:d7:b8:27:01:3f:75:4c:43:71:
51:4e:7a:13:b9:c1:06:fe:ba:9f:11:79:4c:9e:25:e7:c4:ae:
d7:1e:b3:48:f0:13:c8:87:68:fc:92:4f:3e:f4:69:7a:06:61:
ff:69:13:72:62:03:d9:d4:62:77:01:db:66:ca:e1:cb:ec:ce:
90:80:dc:f2:53:68:da:8e:b1:8c:55:ac:80:28:41:e1:61:87:
ef:29:66:f8:e7:20:64:a4:07:a1:4b:01:46:87:c6:c3:29:28:
fe:a2:cc:12:08:df:d1:91:e2:d7:0a:15:d1:98:fb:22:19:df:
f3:38:cb:9e:73:0b:a8:45:7f:d6:79:c2:06:6d:e9:02:94:a7:
62:8c:ea:db:7b:45:23:a4:58:84:2e:30:36:6a:9b:d7:73:8a:
66:49:ef:ab:a7:b6:83:b3:c9:18:b5:18:25:ab:b6:ec:49:32:
97:50:9e:fd:b0:ed:37:74:2b:90:dd:a3:fc:fe:b1:82:6b:82:
7a:60:70:17:65:bd:1a:5c:38:68:64:64:39:a8:f3:03:51:a2:
7c:44:8c:e2:a3:df:aa:de:89:41:2c:39:91:e8:26:3b:be:9e:
52:a2:b8:b7:02:45:24:9d:f7:4d:80:ec:17:ba:a5:09:6f:f6:
03:c1:7a:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 31 03:15:26 2024 by rpki-client on console-fra.rpki-client.org