Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/mKPNvH4wqnXop905CVEiBryPmTY.roa
File: mKPNvH4wqnXop905CVEiBryPmTY.roa (raw, json)
Hash identifier: DmW1hly4ceEp8XdX9stnCfC6/CGIKB+EI1oDEoKAc5Q=
Subject key identifier: 98:A3:CD:BC:7E:30:AA:75:E8:A7:DD:39:09:51:22:06:BC:8F:99:36
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05FB
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mKPNvH4wqnXop905CVEiBryPmTY.roa
Signing time: Thu 29 Feb 2024 01:35:45 +0000
ROA not before: Thu 29 Feb 2024 01:35:45 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 9605
IP address blocks: 49.97.72.0/22 maxlen: 22
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:34:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1531 (0x5fb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Feb 29 01:35:45 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=98A3CDBC7E30AA75E8A7DD3909512206BC8F9936
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:af:05:c3:a7:e2:fe:82:2d:74:6d:32:6b:7a:
8e:23:64:86:b4:8e:d6:3e:70:32:a8:13:7b:c0:89:
a4:5e:df:1c:29:34:e4:8b:a6:43:af:8a:8d:68:cd:
ee:1d:e8:e6:ea:49:c8:64:59:17:93:f7:73:f6:75:
d8:d0:72:ad:e9:00:30:b8:ce:06:a8:d6:76:7c:52:
54:9d:0c:5a:15:96:9b:2b:f6:92:51:36:20:91:0b:
01:bd:cb:5e:6d:65:48:29:57:fe:69:ef:ed:c9:d0:
52:2a:32:61:82:d9:1a:66:b7:e5:c6:04:83:e9:89:
18:53:2e:de:fe:2a:92:a7:e6:3f:2d:c6:79:b5:13:
7f:43:1d:df:b0:f0:1d:22:3b:5a:4e:22:e1:d1:53:
6c:f1:5b:1b:5a:b0:6d:23:e6:21:63:5b:10:28:59:
6d:d2:fa:19:60:07:2c:6f:76:36:95:4f:d7:93:4e:
1c:e5:f4:eb:cd:f0:45:7b:e8:19:ec:f7:09:b3:33:
3b:18:42:ee:ef:a8:f4:aa:22:65:39:94:51:fd:98:
f3:15:47:ea:42:f8:08:a4:9a:5f:62:bc:4a:5e:76:
54:5d:b0:3d:5b:98:f8:dc:b8:d7:6e:e5:00:d6:2f:
cc:25:b4:ec:3f:b8:e2:3e:56:74:4d:1f:47:81:1d:
2a:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:A3:CD:BC:7E:30:AA:75:E8:A7:DD:39:09:51:22:06:BC:8F:99:36
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/mKPNvH4wqnXop905CVEiBryPmTY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.72.0/22
Signature Algorithm: sha256WithRSAEncryption
e0:9a:73:b3:99:45:63:0e:12:ab:19:b7:76:fd:ec:d3:21:1f:
68:30:8d:07:92:b1:45:a3:98:e8:12:fc:9a:49:9a:e7:97:d2:
e1:e3:f9:31:7e:7d:0a:ef:26:2c:6b:12:48:b1:9a:55:a4:6d:
8e:55:e5:f3:e8:c2:7b:a9:70:27:40:df:00:a5:30:9f:d3:a3:
ca:0e:9c:36:94:41:b1:b7:39:40:24:f6:4e:4d:af:26:82:79:
40:3d:e4:9c:02:3b:76:9a:08:e9:91:08:6b:c2:cf:1d:c1:00:
46:c6:4c:a2:4e:70:e2:38:3e:72:15:2d:af:a8:48:53:3f:73:
8a:94:cf:de:17:73:b3:04:56:9f:c4:56:b7:5d:92:c2:57:01:
bf:8e:e5:10:8f:d3:97:eb:9a:52:fb:1f:0c:35:e4:97:96:f8:
73:ba:21:e7:f9:4f:21:63:58:bf:0c:33:11:5e:44:73:20:b5:
e5:85:d8:4b:1d:d0:bd:e6:22:c5:28:14:da:cc:22:14:38:54:
06:2a:ad:31:3a:4b:af:18:48:22:bb:f4:99:47:be:9c:08:de:
9e:14:8b:3d:79:6b:04:37:76:dc:e2:4b:cc:8b:7b:8e:67:f3:
c1:03:b0:30:2d:5c:fd:cb:59:5e:53:ed:02:30:40:8c:c9:20:
a1:7e:ef:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:47 2025 by rpki-client