Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/gpYv9VttXsGeRthMBq98Kuta9-w.roa
File: gpYv9VttXsGeRthMBq98Kuta9-w.roa (raw, json)
Hash identifier: 0w3i34A0V2GuAkmIJ70z69NVeKKJumQ3Mto0qXGR4bI=
Subject key identifier: 82:96:2F:F5:5B:6D:5E:C1:9E:46:D8:4C:06:AF:7C:2A:EB:5A:F7:EC
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02E9
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gpYv9VttXsGeRthMBq98Kuta9-w.roa
Signing time: Thu 01 Jun 2023 16:04:34 +0000
ROA not before: Thu 01 Jun 2023 16:04:34 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.96.35.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 01:38:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 745 (0x2e9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:04:34 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=82962FF55B6D5EC19E46D84C06AF7C2AEB5AF7EC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:66:3d:f4:f9:7f:32:3a:a3:3a:f5:ce:ec:08:
e6:0e:2d:fc:e1:3b:4e:b9:75:b5:38:48:b6:3c:2a:
20:ad:5d:4a:7d:2a:0a:09:a8:26:48:c2:62:05:f0:
bd:8f:71:d4:63:ab:eb:1c:ac:89:d0:7c:69:28:ea:
8f:19:e2:55:1f:3a:1d:7f:6a:49:21:06:40:bb:17:
3a:8e:59:ca:ea:8a:22:1c:7c:f7:60:be:32:9c:90:
81:fc:60:8c:ce:21:6b:e9:08:c0:09:63:f1:2b:52:
36:97:be:34:dc:16:21:6e:76:98:f7:88:87:e6:39:
60:2f:14:4a:4d:3a:b9:01:6c:3c:a7:38:7f:d7:f4:
a4:2b:f3:89:c4:be:0a:f9:f6:ff:3c:4a:2c:0b:ef:
a6:15:21:77:f2:fe:eb:84:32:d8:e7:c7:e7:75:0e:
ac:14:f5:8d:73:4e:83:af:8d:26:21:77:5d:9e:49:
31:5e:6b:a4:f5:e3:40:3f:b8:ab:ed:65:29:9f:3c:
8b:dd:9c:f7:77:bc:9a:33:78:f3:8c:13:71:1a:53:
29:3b:81:85:a8:76:6e:b7:e8:74:1f:2e:b1:f0:5f:
c7:0b:40:23:f0:11:d7:ca:43:e6:98:d7:de:f2:be:
65:48:d1:d5:95:6c:4b:e2:ea:1a:22:0b:e5:3d:c7:
b8:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:96:2F:F5:5B:6D:5E:C1:9E:46:D8:4C:06:AF:7C:2A:EB:5A:F7:EC
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/gpYv9VttXsGeRthMBq98Kuta9-w.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.96.35.0/24
Signature Algorithm: sha256WithRSAEncryption
cb:77:dc:03:d9:69:a3:c4:47:62:11:50:82:18:2b:47:d4:16:
f0:e0:6c:86:97:d5:e1:f5:cd:98:0c:eb:c6:3e:8a:ff:2d:5e:
ae:9f:a0:51:06:2f:cf:a4:04:a1:ab:6f:d7:5b:c7:25:0f:0d:
50:e4:a0:4e:3f:d5:e2:3b:c9:8f:c9:b5:7e:6e:36:fa:84:aa:
85:0d:93:09:a6:8c:1f:7c:21:2e:2f:2b:27:4c:7c:a5:d7:c6:
6b:0e:4d:f8:34:fb:57:7a:f8:c6:11:b5:bb:d6:11:bf:c1:78:
f9:48:da:79:1c:37:b6:27:09:dc:1c:fe:28:a7:b6:55:40:9f:
b1:23:a3:45:e9:61:ac:1b:22:81:ca:02:80:d5:62:85:8f:65:
bc:5a:30:85:6a:45:4b:48:70:70:79:c1:8a:d4:af:d5:93:2e:
ca:d5:0e:b7:04:86:0e:69:5e:09:99:a4:03:0f:90:14:c1:4a:
a2:a6:3c:39:70:4a:68:6a:65:70:d8:8e:c4:51:80:a7:0b:2d:
98:36:3d:bb:07:8c:39:33:5e:3c:57:83:b6:3d:c2:42:2a:a1:
57:1a:e2:cd:bf:69:ed:7f:e1:0f:99:2d:07:3a:c0:75:6f:20:
65:19:9c:25:9d:e6:d4:05:5c:48:4e:06:a2:86:1a:15:a9:45:
45:6e:6d:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:35 2024 by rpki-client on console-fra.rpki-client.org