Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/a_nxfGs1PtzTa92ZAvvPHysXUE0.roa
File: a_nxfGs1PtzTa92ZAvvPHysXUE0.roa (raw, json)
Hash identifier: wZ3OXiSLo7jH/fMLS5XfTQjtGl8yd8WrHUSBX8Fsy90=
Subject key identifier: 6B:F9:F1:7C:6B:35:3E:DC:D3:6B:DD:99:02:FB:CF:1F:2B:17:50:4D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 4F
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/a_nxfGs1PtzTa92ZAvvPHysXUE0.roa
Signing time: Mon 27 Mar 2023 16:04:25 +0000
ROA not before: Mon 27 Mar 2023 16:04:25 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.109.0.0/21 maxlen: 21
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:32:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 79 (0x4f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:25 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=6BF9F17C6B353EDCD36BDD9902FBCF1F2B17504D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:79:06:c3:5b:ea:c0:32:09:ea:fa:6d:a9:a7:
3e:15:7e:a9:b1:dd:7a:fb:d5:2c:ae:15:8c:70:29:
a6:70:05:cf:c5:01:f8:7a:cc:91:83:80:a3:05:cf:
94:91:31:89:ee:8d:98:d2:ac:fe:47:27:d5:95:d3:
e9:4c:49:2e:08:70:fa:b5:ef:03:8d:0f:d6:0e:ae:
e3:49:87:04:ac:95:28:f9:f1:a6:4b:72:d4:13:b8:
5e:d6:bc:12:05:c1:d5:d5:c0:29:f8:d2:84:fe:47:
59:d5:0a:3c:23:55:7a:03:d6:f0:31:52:fe:e7:58:
b1:46:8e:f2:f7:1c:f8:60:12:6c:c7:b8:b3:7c:d5:
7a:80:6d:59:2f:b8:04:21:4f:ba:07:91:53:fc:75:
45:6b:df:f1:d2:ae:b7:cd:30:0e:8f:c0:bd:0d:ce:
9c:d5:a9:95:16:15:77:79:52:0f:05:9f:7e:e2:c7:
af:74:5f:30:00:c9:0f:05:c7:41:1d:f0:48:ed:af:
ae:d6:2e:a4:fb:76:b0:dc:35:2d:b1:6d:6c:90:c5:
aa:23:db:60:3b:6d:ed:64:97:46:a9:8a:d2:4b:2a:
d8:7d:9f:e8:50:fc:b5:f2:d4:23:bf:53:b6:b7:a1:
d7:ec:eb:ac:4c:e5:34:8e:79:75:dd:4f:5a:ec:71:
71:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F9:F1:7C:6B:35:3E:DC:D3:6B:DD:99:02:FB:CF:1F:2B:17:50:4D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/a_nxfGs1PtzTa92ZAvvPHysXUE0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.109.0.0/21
Signature Algorithm: sha256WithRSAEncryption
c2:47:51:4e:5c:d4:d6:98:19:41:6e:29:dd:20:8b:38:ee:55:
38:a8:9a:76:76:78:7c:aa:0d:73:3e:bb:bc:8e:3c:20:d3:04:
24:34:45:e3:26:68:53:46:c1:95:dc:ae:f5:54:e6:b2:d0:5a:
9b:4b:f5:7f:a4:6d:ad:5d:32:09:e0:a0:c6:c7:59:1d:bb:79:
d0:06:13:5e:d4:0d:f2:d4:fb:e5:3d:e1:93:0a:88:85:83:ee:
29:4c:67:08:e5:f8:d9:72:5d:6b:3e:fe:2c:7b:19:34:fa:ca:
02:ae:09:9d:39:f2:93:04:d7:13:84:f9:31:5f:08:02:3c:31:
ed:de:22:21:f4:c7:d2:0b:45:ff:d0:e1:ce:ca:18:13:b5:80:
d9:fd:f0:18:74:91:60:45:90:fd:f2:ff:f4:31:56:17:ef:75:
36:96:e2:a5:44:9c:77:63:26:4f:57:3d:22:9e:5f:ba:3b:96:
a0:3c:4a:09:5a:a5:b4:6f:d8:32:e4:78:8d:3e:0c:d7:9f:b7:
40:33:b0:5a:48:c8:3f:8c:80:86:0f:28:02:4c:a6:62:b3:9e:
12:cd:8b:7f:cb:f9:e0:2f:36:ef:1f:c3:d8:6c:52:c4:02:8b:
00:8e:7b:84:a2:d1:7f:ae:09:7f:1f:5a:89:ed:a3:f6:82:30:
06:96:6b:80
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBTzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2OTY1
QjBCMjBEREUwN0E0Qzk3OEUyNDA3M0VBMEUxMTE3QjM3NDczMB4XDTIzMDMyNzE2
MDQyNVoXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoNkJGOUYxN0M2QjM1M0VE
Q0QzNkJERDk5MDJGQkNGMUYyQjE3NTA0RDCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBAN55BsNb6sAyCer6bamnPhV+qbHdevvVLK4VjHAppnAFz8UB+HrM
kYOAowXPlJExie6NmNKs/kcn1ZXT6UxJLghw+rXvA40P1g6u40mHBKyVKPnxpkty
1BO4Xta8EgXB1dXAKfjShP5HWdUKPCNVegPW8DFS/udYsUaO8vcc+GASbMe4s3zV
eoBtWS+4BCFPugeRU/x1RWvf8dKut80wDo/AvQ3OnNWplRYVd3lSDwWffuLHr3Rf
MADJDwXHQR3wSO2vrtYupPt2sNw1LbFtbJDFqiPbYDtt7WSXRqmK0ksq2H2f6FD8
tfLUI79Ttreh1+zrrEzlNI55dd1PWuxxceECAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBRr+fF8azU+3NNr3ZkC+88fKxdQTTAfBgNVHSMEGDAWgBRpZbCyDd4HpMl44kBz
6g4RF7N0czAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzA5L2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJlemRITS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJl
emRITS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8zMDkvYV9ueGZHczFQdHpUYTkyWkF2dlBIeXNYVUUwLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEAzFtADANBgkqhkiG9w0BAQsFAAOCAQEAwkdRTlzU1pgZQW4p3SCLOO5VOKia
dnZ4fKoNcz67vI48INMEJDRF4yZoU0bBldyu9VTmstBam0v1f6RtrV0yCeCgxsdZ
Hbt50AYTXtQN8tT75T3hkwqIhYPuKUxnCOX42XJdaz7+LHsZNPrKAq4JnTnykwTX
E4T5MV8IAjwx7d4iIfTH0gtF/9DhzsoYE7WA2f3wGHSRYEWQ/fL/9DFWF+91Npbi
pUScd2MmT1c9Ip5fujuWoDxKCVqltG/YMuR4jT4M15+3QDOwWkjIP4yAhg8oAkym
YrOeEs2Lf8v54C827x/D2GxSxAKLAI57hKLRf64Jfx9aie2j9oIwBpZrgA==
-----END CERTIFICATE-----
Generated at Thu Feb 29 01:58:11 2024 by rpki-client on console-fra.rpki-client.org