Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iQlLeIBNdC9i6VgUGI51f2qPzLE.roa
File: iQlLeIBNdC9i6VgUGI51f2qPzLE.roa (raw, json)
Hash identifier: zyX++tFJ8SdjWMnZyzsZayy3RlleDDEpOl0DKP7t0UE=
Subject key identifier: 89:09:4B:78:80:4D:74:2F:62:E9:58:14:18:8E:75:7F:6A:8F:CC:B1
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 4D
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iQlLeIBNdC9i6VgUGI51f2qPzLE.roa
Signing time: Mon 27 Mar 2023 16:04:24 +0000
ROA not before: Mon 27 Mar 2023 16:04:24 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.5.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:32:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 77 (0x4d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:24 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=89094B78804D742F62E95814188E757F6A8FCCB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:c9:83:0c:0f:de:24:7e:21:3b:fa:d6:9f:ef:
67:75:eb:92:42:a8:13:54:a4:bf:83:79:9c:0e:90:
ad:7b:9f:27:d3:67:47:c2:ba:4f:b2:8e:ee:3c:69:
91:9e:75:51:1e:b6:0d:f1:e7:62:71:4d:51:17:30:
bc:89:39:1b:01:52:e2:42:e5:03:41:60:84:c3:1a:
1f:60:02:c8:bc:e5:8b:76:4d:6b:5a:e7:f5:48:8d:
3e:94:3f:38:ad:79:01:d6:0a:05:e5:96:aa:0b:e5:
06:26:16:e7:10:09:51:83:bf:dc:c4:bf:5d:d7:cb:
2f:c3:14:d0:d5:b3:df:c5:7d:ca:b8:86:49:78:5a:
ca:ba:10:50:c7:f3:38:ba:06:8b:a6:d5:5b:69:cd:
9a:2d:36:3d:46:be:61:29:7b:9e:9f:ae:33:7c:67:
d4:1c:3d:6a:f4:25:43:a6:ba:5a:d5:ab:b3:f3:32:
f5:cb:60:f7:f6:d2:5e:31:90:df:ee:22:ad:52:c6:
0e:a1:6b:f0:16:ba:d4:23:c6:56:6f:53:36:12:db:
5a:c1:48:83:4e:86:b0:68:67:44:2f:58:d0:93:78:
a5:3e:91:76:40:cc:e0:99:5f:92:fe:5a:53:16:d4:
08:ca:3d:3a:bc:e5:40:df:8b:ba:dd:87:80:6b:c5:
99:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:09:4B:78:80:4D:74:2F:62:E9:58:14:18:8E:75:7F:6A:8F:CC:B1
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iQlLeIBNdC9i6VgUGI51f2qPzLE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.5.0/24
Signature Algorithm: sha256WithRSAEncryption
86:b0:cc:20:30:3d:e3:8a:7b:32:99:66:8c:87:3c:a4:6a:82:
e1:9f:74:60:d2:84:d9:35:67:c7:72:99:3b:31:2e:42:28:0c:
0d:81:21:bf:96:75:d3:f8:f4:ff:46:72:48:c4:39:a4:6c:30:
ee:66:be:d9:5c:f3:58:31:f9:b2:b5:89:ef:3b:f8:51:17:09:
e8:c5:53:a8:db:ff:7c:58:92:b3:79:d6:76:19:85:35:5a:7e:
9f:10:03:33:93:61:44:73:8c:46:b1:ad:69:9a:01:0b:87:2c:
02:19:6f:39:21:56:a4:fe:44:cc:54:39:31:d9:bd:d9:83:33:
f1:ec:5a:5b:63:3c:4c:5e:9d:d7:ce:d0:7e:24:a7:c5:54:33:
27:9b:23:c0:8b:03:4b:c9:e8:77:24:00:43:44:0d:9a:e7:8f:
78:06:ee:47:6d:58:ad:a1:e3:3b:21:56:3e:5b:bb:87:be:c3:
07:3b:13:8c:36:5f:e8:66:91:03:67:8b:ac:29:e5:f9:93:fb:
71:ad:66:5b:97:7a:2a:7b:0a:73:12:d7:50:29:9e:36:34:65:
0d:5e:c6:55:5c:81:8c:0e:bc:c4:ae:de:92:67:31:36:78:70:
41:12:00:e4:c7:54:d9:dd:69:f0:57:18:d5:67:02:09:39:b1:
0a:48:b7:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 02:02:26 2024 by rpki-client on console-ams.rpki-client.org