Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/iTclc7hTZ5f5U3RRk-TDtTV0ybc.roa
File: iTclc7hTZ5f5U3RRk-TDtTV0ybc.roa (raw, json)
Hash identifier: m270eIpgdVvObhpMSZb5cg3kleMmN6IS7S4DFv7JWa0=
Subject key identifier: 89:37:25:73:B8:53:67:97:F9:53:74:51:93:E4:C3:B5:35:74:C9:B7
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05E5
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iTclc7hTZ5f5U3RRk-TDtTV0ybc.roa
Signing time: Thu 29 Feb 2024 01:32:21 +0000
ROA not before: Thu 29 Feb 2024 01:32:21 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 9605
IP address blocks: 49.97.196.0/22 maxlen: 22
Validation: Failed, certificate revoked on Wed 18 Sep 2024 03:55:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1509 (0x5e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Feb 29 01:32:21 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=89372573B8536797F953745193E4C3B53574C9B7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:6f:1d:b3:c0:0a:1d:87:35:81:52:56:f8:63:
a6:f6:c7:84:68:e3:b1:e1:c2:7d:f7:51:86:9a:74:
69:c3:78:e5:e4:92:94:f6:64:8f:8b:ab:47:03:fc:
49:4b:73:5b:58:ac:89:ea:ad:65:e3:7b:1a:e0:10:
f0:2c:45:f0:52:6d:7b:7e:89:a7:20:44:9c:ac:a7:
74:46:26:ec:27:e4:8b:61:e0:08:36:22:f9:04:e4:
59:74:87:57:10:64:b7:df:10:ff:66:80:53:83:de:
1e:45:65:75:27:03:22:0f:ee:e8:3d:cb:e2:c6:b3:
c7:9d:83:e5:d9:dd:2d:7c:65:f2:ad:75:54:6a:9a:
80:bf:fd:f9:01:54:1e:45:d3:82:c9:0c:29:27:c0:
74:cc:76:5c:26:6d:be:5d:8a:b2:37:6c:79:52:99:
69:dc:38:0c:1a:5f:8a:a5:ca:67:71:b3:7d:2f:39:
82:97:23:56:69:0b:0a:80:dc:1f:5e:c2:14:9d:e1:
c1:06:a6:0c:5d:51:4b:a8:30:8d:13:d0:69:b4:b7:
78:d9:c2:94:67:f9:a4:53:46:a1:82:1e:4a:1e:53:
f6:58:29:2b:b9:8b:88:37:38:a1:cd:53:bb:66:fb:
a6:f1:cb:b6:a0:23:d0:d4:da:f2:cd:4e:69:55:f2:
e4:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:37:25:73:B8:53:67:97:F9:53:74:51:93:E4:C3:B5:35:74:C9:B7
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/iTclc7hTZ5f5U3RRk-TDtTV0ybc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.196.0/22
Signature Algorithm: sha256WithRSAEncryption
0b:e5:1b:92:f4:e2:b3:0f:dd:51:b3:c0:46:05:c1:c9:31:c3:
d0:22:fa:2d:6e:56:11:ed:44:d7:f2:63:9b:0e:31:38:6d:80:
92:9b:3f:7b:d6:9b:7b:d4:17:af:93:2e:d2:24:da:74:a4:e2:
07:c3:70:30:61:64:79:ca:eb:5b:fb:98:04:09:cd:96:08:c4:
44:9a:05:3f:81:55:25:a8:f7:57:d9:da:4a:ea:c7:2e:b6:e8:
d9:fc:cb:d5:3b:bc:3d:bf:3e:24:55:65:27:d7:0a:9a:95:78:
1c:01:1e:52:0c:7a:ec:a2:78:34:07:ad:c4:38:4a:dc:3a:cd:
4f:78:3c:6f:52:10:f0:ca:54:94:25:d9:3d:85:d8:9f:b7:ae:
c2:a5:8e:3f:43:14:09:fc:de:13:94:a6:b1:fa:af:cc:05:28:
fa:3f:e7:d5:03:1d:e7:0c:ca:17:15:1c:19:fe:b8:c8:12:6a:
59:08:c2:d0:23:48:d0:a4:8c:f3:d4:14:7b:6d:41:b0:e0:76:
9c:25:8c:ea:d8:67:aa:de:f4:0b:a6:92:69:5b:15:a6:76:44:
34:13:a1:4a:ea:5d:3f:3c:9b:aa:66:59:94:cc:22:f9:58:8f:
c7:b2:a4:52:1f:bb:b3:ec:e3:2a:c3:c5:fc:a8:65:24:c2:a2:
96:6e:44:ae
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICBeUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2
NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDAyMjkw
MTMyMjFaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKDg5MzcyNTczQjg1MzY3
OTdGOTUzNzQ1MTkzRTRDM0I1MzU3NEM5QjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDdbx2zwAodhzWBUlb4Y6b2x4Ro47Hhwn33UYaadGnDeOXkkpT2
ZI+Lq0cD/ElLc1tYrInqrWXjexrgEPAsRfBSbXt+iacgRJysp3RGJuwn5Ith4Ag2
IvkE5Fl0h1cQZLffEP9mgFOD3h5FZXUnAyIP7ug9y+LGs8edg+XZ3S18ZfKtdVRq
moC//fkBVB5F04LJDCknwHTMdlwmbb5dirI3bHlSmWncOAwaX4qlymdxs30vOYKX
I1ZpCwqA3B9ewhSd4cEGpgxdUUuoMI0T0Gm0t3jZwpRn+aRTRqGCHkoeU/ZYKSu5
i4g3OKHNU7tm+6bxy7agI9DU2vLNTmlV8uQXAgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUiTclc7hTZ5f5U3RRk+TDtTV0ybcwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA
c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS
ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMzA5L2lUY2xjN2hUWjVmNVUzUlJrLVREdFRWMHliYy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAIxYcQwDQYJKoZIhvcNAQELBQADggEBAAvlG5L04rMP3VGzwEYFwckxw9Ai
+i1uVhHtRNfyY5sOMThtgJKbP3vWm3vUF6+TLtIk2nSk4gfDcDBhZHnK61v7mAQJ
zZYIxESaBT+BVSWo91fZ2krqxy626Nn8y9U7vD2/PiRVZSfXCpqVeBwBHlIMeuyi
eDQHrcQ4Stw6zU94PG9SEPDKVJQl2T2F2J+3rsKljj9DFAn83hOUprH6r8wFKPo/
59UDHecMyhcVHBn+uMgSalkIwtAjSNCkjPPUFHttQbDgdpwljOrYZ6re9Aumkmlb
FaZ2RDQToUrqXT88m6pmWZTMIvlYj8eypFIfu7Ps4yrDxfyoZSTCopZuRK4=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:08:06 2025 by rpki-client