Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/hka5o5V-5nxyBi7hYtCLq0H3rZE.roa
File: hka5o5V-5nxyBi7hYtCLq0H3rZE.roa (raw, json)
Hash identifier: dUZmD5kRKUJUTCe3+G97WhlOj7EkA55oxaxXSOadNak=
Subject key identifier: 86:46:B9:A3:95:7E:E6:7C:72:06:2E:E1:62:D0:8B:AB:41:F7:AD:91
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 060D
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hka5o5V-5nxyBi7hYtCLq0H3rZE.roa
Signing time: Thu 29 Feb 2024 01:38:27 +0000
ROA not before: Thu 29 Feb 2024 01:38:27 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 9605
IP address blocks: 1.72.8.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:34:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1549 (0x60d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Feb 29 01:38:27 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=8646B9A3957EE67C72062EE162D08BAB41F7AD91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:63:ee:f2:b3:67:ef:9b:6c:2f:4b:5c:f4:6b:
95:7d:ed:c9:5e:dd:fc:a6:97:dd:86:54:b3:06:65:
a6:80:f8:04:46:46:f1:59:7d:c8:31:01:e7:81:48:
18:76:91:c1:9a:1f:84:30:f2:16:52:ce:69:d2:e0:
0a:87:ca:b0:7f:53:48:c5:68:42:62:f3:0b:12:93:
27:45:89:f6:84:7f:88:9b:21:9f:a4:5c:e4:1b:e9:
9a:5f:34:55:57:2f:39:49:99:d6:6c:f3:48:a0:83:
e0:08:53:66:c7:1b:28:de:8b:53:25:d2:2b:33:e2:
21:2f:87:53:57:3e:f2:f5:87:ff:6e:78:5c:a8:1d:
90:41:ee:b0:a5:cd:fd:ba:b9:07:9f:1e:52:8f:2b:
65:98:81:c6:6a:aa:ee:5a:01:eb:a0:94:25:53:db:
f4:43:c7:94:4e:63:eb:9d:77:2b:a3:a8:9b:9d:5d:
7d:bc:32:3d:40:b6:76:fd:62:47:b1:00:b3:b5:45:
d8:85:60:29:0d:93:99:a2:d1:2e:be:6a:8a:25:99:
e1:2f:e7:7a:ef:66:2f:4a:10:2b:34:3d:eb:91:e6:
ad:ba:9b:22:ec:d8:4e:cf:3a:94:82:96:4d:cf:ac:
d9:4a:c9:74:93:5e:a8:f5:92:da:cc:da:f3:e0:21:
8b:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:46:B9:A3:95:7E:E6:7C:72:06:2E:E1:62:D0:8B:AB:41:F7:AD:91
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/hka5o5V-5nxyBi7hYtCLq0H3rZE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.72.8.0/23
Signature Algorithm: sha256WithRSAEncryption
b6:44:03:df:e8:ea:55:21:7b:5c:f5:30:d9:50:54:2c:51:3b:
58:12:42:73:90:f4:17:1c:d5:4a:36:b3:57:c1:a3:c9:61:7d:
47:7a:6f:1a:8e:d6:fd:bf:dc:37:25:4a:19:5e:ef:99:2b:7b:
b3:6b:a3:bd:88:70:39:a5:1e:24:a3:65:e7:ed:4a:88:57:b1:
7f:5c:60:1a:46:8e:06:46:29:f4:8c:88:81:5e:9f:ba:59:de:
83:ce:56:8b:ed:a6:de:4a:ba:44:b2:b6:bf:69:10:cd:16:cf:
5a:1c:55:85:20:ab:88:02:36:16:0c:3e:6d:c3:e7:19:6b:52:
80:a2:3c:0e:44:d1:86:79:46:89:90:1e:e5:14:2a:f5:73:22:
50:94:a9:8e:ec:6c:30:f3:8b:38:4a:b6:09:c4:2d:73:c1:32:
30:8a:9a:39:93:2f:14:4c:16:6b:dd:41:c5:24:61:20:e6:e5:
7a:df:0a:4f:b3:1b:60:c1:14:01:9e:33:72:2c:a7:ac:1c:c0:
77:bb:b6:24:90:92:0a:35:53:20:41:f5:f8:1c:b5:3b:5b:59:
1c:0e:7c:bc:8e:96:c0:ef:bd:0f:34:c1:67:d1:42:34:f8:a0:
74:4e:f6:d4:86:fa:4b:bc:31:f1:b6:56:b5:f0:d1:0a:bc:0e:
ef:0f:cb:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:23 2025 by rpki-client