Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Zb6zo6kYUbtoeSaAHXOw5YQpvtk.roa
File: Zb6zo6kYUbtoeSaAHXOw5YQpvtk.roa (raw, json)
Hash identifier: HA9zs3CFZ3caVHHhl3eFfwVF+n5A4y2w10m6Rzf8H5k=
Subject key identifier: 65:BE:B3:A3:A9:18:51:BB:68:79:26:80:1D:73:B0:E5:84:29:BE:D9
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02B4
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Zb6zo6kYUbtoeSaAHXOw5YQpvtk.roa
Signing time: Tue 30 May 2023 17:17:30 +0000
ROA not before: Tue 30 May 2023 17:17:30 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.102.128.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 30 Apr 2024 01:53:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 692 (0x2b4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 17:17:30 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=65BEB3A3A91851BB687926801D73B0E58429BED9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:c6:9c:9f:8a:66:ff:12:4e:05:a6:f6:48:5d:
c8:7c:c5:23:f9:dd:ff:0c:fd:94:86:5e:c0:e9:7c:
52:52:4b:44:35:7b:d4:21:23:cb:68:15:1c:bc:19:
6f:8b:e7:82:f7:76:12:f0:68:86:3f:99:85:ed:d3:
d2:b0:c3:7b:a0:77:1a:29:7d:b6:ad:99:ed:2d:d4:
24:03:08:f0:cb:1e:09:06:af:b3:a6:47:d8:29:9d:
1f:4d:7c:cc:68:1b:46:bb:f8:46:f4:7d:8a:f3:35:
db:03:ec:db:80:75:3c:2d:d6:0a:17:e9:35:71:76:
ba:68:55:d6:81:61:7e:79:8d:9e:26:f2:98:c1:e6:
5d:4f:95:19:86:ab:a7:71:3d:7a:8f:42:c4:04:ba:
c7:6c:8b:20:eb:06:ac:62:8b:bb:df:90:28:1b:a8:
9c:f3:c6:57:82:d1:c4:43:eb:01:57:63:f9:e0:fe:
6d:8a:f9:ee:15:4e:e4:d6:38:ac:6a:2c:31:e5:1e:
09:76:f3:13:13:43:dd:62:dd:fa:fa:29:1a:aa:00:
03:6b:03:da:e1:1d:a8:7d:6b:8e:fd:58:cf:ac:d6:
0f:c2:c6:1e:be:cc:bd:69:2e:9a:91:53:4e:27:fb:
3b:cd:b3:59:80:c2:18:e5:02:5b:ec:a0:78:0b:1c:
f7:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:BE:B3:A3:A9:18:51:BB:68:79:26:80:1D:73:B0:E5:84:29:BE:D9
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Zb6zo6kYUbtoeSaAHXOw5YQpvtk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.102.128.0/23
Signature Algorithm: sha256WithRSAEncryption
4f:36:91:44:9c:b0:55:64:c1:66:aa:cf:7d:30:df:75:5f:b8:
df:4a:14:96:7c:70:54:13:3e:fd:4c:44:0a:2b:e1:3f:5d:56:
2b:b8:7d:27:a8:30:b6:08:48:02:1b:0b:cf:bc:c0:3f:a8:8d:
b5:1d:d4:49:93:b8:ae:66:10:84:bd:dc:cb:34:a5:ee:9f:8e:
46:61:3d:0d:86:a1:d8:06:3e:8b:29:b1:1b:2e:3c:02:43:cd:
83:3f:00:a5:58:1e:89:15:44:75:59:0b:15:8c:20:db:b6:b0:
e5:8e:bb:99:f1:71:ed:30:05:99:64:85:9e:11:57:f3:b8:71:
8a:9c:19:51:17:54:46:e4:5b:19:42:6d:84:f3:c0:83:b5:b1:
33:89:70:b5:a7:9a:1b:0d:a6:58:ac:7f:83:18:d2:a1:99:ff:
14:a8:41:f6:d6:f0:66:c2:97:01:de:ae:2d:fd:b9:22:77:f1:
cb:da:d3:31:a1:77:96:e8:f9:53:d7:48:ae:68:2b:e0:0c:42:
66:19:8d:16:1e:68:91:15:b5:47:f0:36:81:fc:c5:74:f4:c3:
37:89:61:f9:18:02:9d:d5:7f:99:e8:08:05:e7:b6:d8:9c:c6:
30:1f:03:f6:07:a5:8f:71:91:36:45:dc:22:19:e4:da:c4:7a:
6f:e2:40:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:34 2024 by rpki-client on console-fra.rpki-client.org