Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/g3VjVqTdlkj7eFi_wtU75fqaHHM.roa
File: g3VjVqTdlkj7eFi_wtU75fqaHHM.roa (raw, json)
Hash identifier: SKLZjQXHL1/8nZuyzNtXs82JMmF8nF8Gk23wo8KugPQ=
Subject key identifier: 83:75:63:56:A4:DD:96:48:FB:78:58:BF:C2:D5:3B:E5:FA:9A:1C:73
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 7F
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/g3VjVqTdlkj7eFi_wtU75fqaHHM.roa
Signing time: Mon 27 Mar 2023 16:12:03 +0000
ROA not before: Mon 27 Mar 2023 16:12:03 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.108.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:41:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127 (0x7f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:12:03 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=83756356A4DD9648FB7858BFC2D53BE5FA9A1C73
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:74:a5:90:8c:2a:4e:fd:cf:33:99:18:5a:15:
59:52:c0:37:1e:a0:a2:ef:d2:10:77:4f:90:0d:91:
11:c1:80:78:08:9b:62:d0:fe:e2:8b:53:4f:4b:d5:
8c:a3:50:83:c3:c2:21:d3:b5:1a:ac:e8:6e:34:c1:
42:e8:22:14:a2:df:be:2d:57:b3:ef:dd:f4:93:8b:
c7:b0:89:ba:7e:38:3f:c5:99:31:e6:27:36:36:77:
44:c3:1b:f5:59:6d:14:6c:7c:92:11:42:64:3b:f9:
d8:9b:7a:a1:a3:8f:b9:1d:8b:ef:65:7c:26:04:b9:
1b:36:96:2a:1f:86:9f:c3:d8:fc:6c:d3:04:0c:24:
16:f5:bc:8c:3c:84:9b:e1:86:88:7e:49:33:20:40:
26:cd:52:06:88:e2:20:7b:52:ce:ff:ac:ff:d1:53:
38:2d:78:1e:df:2f:e8:ef:9e:26:86:8c:2d:82:9e:
2e:6e:86:48:bf:87:cd:fc:87:e9:9a:7c:93:78:9a:
04:f8:cc:53:9c:5d:e5:f7:d0:f3:64:dd:e7:51:d3:
78:e7:2c:ae:e7:89:a2:14:0a:79:11:9f:0c:b3:d8:
32:72:4d:21:34:41:52:f0:db:9a:e8:4d:ad:14:b1:
e0:eb:34:43:81:e5:64:dd:c8:72:dd:4e:44:91:87:
64:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:75:63:56:A4:DD:96:48:FB:78:58:BF:C2:D5:3B:E5:FA:9A:1C:73
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/g3VjVqTdlkj7eFi_wtU75fqaHHM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.108.0/23
Signature Algorithm: sha256WithRSAEncryption
56:5b:d3:cb:a9:f0:96:a5:c1:28:d6:3e:e8:9f:8a:8f:e3:0a:
4b:3e:42:42:a5:72:aa:46:5e:71:e9:0d:a2:ef:7d:35:28:7c:
a4:92:68:aa:9a:d3:57:7d:13:f4:8d:9a:8b:71:c8:d7:1d:68:
54:7c:de:38:78:6c:d3:0c:db:3e:e5:2c:76:24:0c:cf:a1:55:
b2:d0:cf:4f:5d:f3:2a:10:3a:58:01:69:3a:ab:9d:fd:9e:fb:
cd:60:bc:84:76:0a:50:e0:51:62:f4:d1:9c:1e:a5:2e:35:35:
50:aa:01:ff:c6:5a:f8:d7:8f:d2:8e:e6:44:c0:e0:57:da:df:
bf:bb:5c:c3:e2:32:b0:56:df:fb:d4:9a:71:20:27:2c:52:52:
ea:d0:2c:30:64:a8:0f:29:8f:3b:b9:d7:00:b4:b7:eb:db:0f:
77:1b:1b:2e:19:b7:dc:df:13:43:a5:ef:a0:19:f7:5d:cb:f0:
ea:84:aa:ca:34:e6:e1:fb:ca:0c:0b:6e:7a:ad:0b:fe:6c:4d:
57:ff:9c:ce:e2:6f:38:21:65:c8:68:12:8e:36:47:5a:43:5d:
af:bb:4b:26:5b:e8:93:27:80:e4:fb:be:a8:85:0f:f2:ff:0a:
56:21:18:4c:b9:36:d0:1d:82:31:64:e2:cc:9a:c2:c0:03:83:
c5:c0:ff:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 03:00:58 2024 by rpki-client on console-fra.rpki-client.org