Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/bUGmd14MyevLh--W9fLBd9Rug00.roa
File: bUGmd14MyevLh--W9fLBd9Rug00.roa (raw, json)
Hash identifier: LoocGgcePC+Bp//jxZCIR0Din5tSRwdvp8NP/6O8CQo=
Subject key identifier: 6D:41:A6:77:5E:0C:C9:EB:CB:87:EF:96:F5:F2:C1:77:D4:6E:83:4D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 65
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bUGmd14MyevLh--W9fLBd9Rug00.roa
Signing time: Mon 27 Mar 2023 16:04:34 +0000
ROA not before: Mon 27 Mar 2023 16:04:34 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.248.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:35:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 101 (0x65)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:34 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=6D41A6775E0CC9EBCB87EF96F5F2C177D46E834D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2e:d8:d5:c7:8f:07:e1:f0:ef:50:ea:6f:4c:
f4:86:94:fe:4c:bf:2c:60:85:74:d0:6d:3d:1e:42:
e9:93:77:e9:1e:ad:b7:5b:ad:5a:8b:01:23:a4:cd:
d0:7b:b4:3e:e2:4a:49:ec:56:9f:cf:87:13:31:bb:
63:af:77:d7:d1:de:22:ff:1d:7c:c0:ea:a2:96:3c:
60:07:44:26:38:b7:d9:ee:db:c9:cc:f0:ff:54:42:
0f:10:08:13:9a:76:d2:f1:ee:7d:db:de:a0:ed:ec:
f2:1d:ca:18:2a:57:82:a3:77:d1:31:c9:0d:32:a8:
db:6b:78:f6:19:c5:10:68:f0:f2:db:d3:4d:d3:0b:
f8:a8:0d:60:48:35:87:f8:0d:5b:ec:31:5c:4e:0b:
d4:07:31:5a:b6:cc:0f:18:fc:6c:9d:ae:ac:a8:55:
10:ff:60:1e:2e:0a:d2:98:4a:cf:f4:0a:b3:5d:94:
41:5a:72:45:d0:f3:f4:fc:a1:e4:14:6d:1b:e7:a4:
73:fe:fa:e1:a2:73:0d:dd:37:a3:4b:03:f2:8d:30:
f5:2d:eb:6f:29:50:b5:06:3d:24:23:87:1a:54:a5:
f3:f3:a7:34:70:3b:f5:1a:43:b3:a8:14:6d:df:5c:
7a:62:db:77:17:d0:37:97:84:fb:bb:7d:b9:50:73:
ce:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:41:A6:77:5E:0C:C9:EB:CB:87:EF:96:F5:F2:C1:77:D4:6E:83:4D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/bUGmd14MyevLh--W9fLBd9Rug00.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.248.0/23
Signature Algorithm: sha256WithRSAEncryption
94:f0:59:96:31:db:b4:b8:1c:73:eb:9c:33:3f:d7:4e:5f:c1:
dc:d2:f4:cc:18:58:66:b0:bf:37:7b:23:6f:dc:48:e9:0d:4e:
ad:ef:68:d1:37:72:1c:ce:6e:3d:55:3d:af:2c:99:c6:42:18:
8e:54:c6:5d:1b:2b:2f:43:4d:b3:22:da:36:8f:27:9c:5f:62:
62:e0:c5:67:72:a8:be:15:91:70:44:8b:52:f6:70:2a:d4:19:
93:27:e5:41:fd:f2:c0:56:4f:52:9e:92:bc:a8:3b:c1:8d:e5:
19:7c:4d:ec:0d:cb:4d:ad:14:da:63:68:e9:58:ae:d4:7c:df:
0d:ed:16:98:4d:3e:ba:9f:a6:3c:21:25:b4:6f:2f:8f:58:33:
2b:03:a0:f4:e7:22:13:d6:56:97:86:59:cc:0d:f5:ab:47:2b:
dc:4f:17:01:bd:86:12:78:65:c2:1d:5c:eb:d1:ba:51:7f:20:
d6:86:a6:d7:32:c0:24:0f:c6:55:15:7d:44:f9:4f:d2:29:59:
b4:0e:a2:29:36:b8:58:19:dc:4a:c2:cc:d2:56:cb:df:e3:97:
ef:88:1e:e0:e7:89:c7:2c:ad:6d:95:69:f1:52:50:3e:58:6a:
8e:cd:5e:70:5c:b3:9b:83:11:3f:a1:1d:f1:3c:95:e4:87:28:
a6:6e:3a:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 03:00:58 2024 by rpki-client on console-fra.rpki-client.org