Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/nZlUS-Hc4u3QfpAyibefhGvZuCs.roa
File: nZlUS-Hc4u3QfpAyibefhGvZuCs.roa (raw, json)
Hash identifier: ixJhKdxob0rq4K2pTIydwVCrSAWqi0fv+nVveuIe6MQ=
Subject key identifier: 9D:99:54:4B:E1:DC:E2:ED:D0:7E:90:32:89:B7:9F:84:6B:D9:B8:2B
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 44
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nZlUS-Hc4u3QfpAyibefhGvZuCs.roa
Signing time: Mon 27 Mar 2023 16:04:21 +0000
ROA not before: Mon 27 Mar 2023 16:04:21 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.6.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:35:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 68 (0x44)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:21 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=9D99544BE1DCE2EDD07E903289B79F846BD9B82B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:aa:9e:7c:6a:c2:58:2d:ce:a1:35:8d:64:a2:
be:88:2f:50:b5:bd:69:fe:21:d1:5e:f8:27:37:1b:
d1:e2:7c:1e:03:01:c6:1b:8b:25:60:33:ec:6b:14:
cf:89:02:0d:6e:c7:3a:c2:6c:45:6b:5c:99:89:e3:
fd:ce:cc:f5:07:12:2d:b8:f2:2c:8e:61:51:67:83:
dd:9f:f0:fd:10:f3:f9:78:f8:8f:d4:23:a7:26:56:
89:09:0f:9b:8a:b4:b0:63:e8:74:05:f0:76:c8:1a:
31:3a:58:f0:b1:9c:e4:ea:0e:30:42:c4:10:5e:17:
a7:94:f4:c8:cd:08:9f:f7:53:df:8e:b3:54:5f:61:
7c:f3:72:34:81:3c:73:eb:5a:eb:68:d5:59:64:5e:
ec:f7:5d:2b:20:3d:e2:71:c2:64:85:bb:13:91:7b:
80:a4:e6:61:04:e2:22:11:21:7a:6e:78:cc:59:f2:
27:28:ae:be:64:a1:fb:1d:82:8a:98:cf:12:9b:32:
11:89:10:09:b0:54:51:9d:3c:a4:dc:a3:99:46:9f:
9f:81:a8:19:59:5c:29:44:3c:a4:31:bf:cf:fc:97:
5a:be:d5:41:6a:b4:ec:b8:e3:d9:00:c6:d4:4e:69:
25:9e:ba:d7:1c:16:78:7c:f9:d4:63:43:68:6b:df:
44:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:99:54:4B:E1:DC:E2:ED:D0:7E:90:32:89:B7:9F:84:6B:D9:B8:2B
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/nZlUS-Hc4u3QfpAyibefhGvZuCs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.6.0/23
Signature Algorithm: sha256WithRSAEncryption
41:9c:e8:3f:b4:f7:2e:8d:c5:b7:43:6c:e6:7a:06:81:5f:d6:
ab:99:dd:07:b9:3d:d7:3e:ab:21:9f:e3:56:57:d7:5a:46:27:
b5:99:64:ce:92:4f:93:52:34:45:fe:00:10:d5:21:33:d3:8b:
77:ed:82:70:39:c5:3a:37:48:2d:96:e3:94:65:5a:4a:ec:39:
97:68:e3:20:b5:8f:01:09:0b:de:d3:43:24:13:d7:d3:0a:08:
cf:fa:b2:95:cd:2a:5f:1e:89:f6:2a:bb:9d:c5:99:5d:bb:bc:
29:c4:41:61:48:26:58:5c:96:01:b8:5f:c2:f8:9b:4f:b3:aa:
d1:e6:8f:70:aa:14:ef:1a:a4:d6:a7:d4:4c:f6:ee:be:fc:14:
a7:3d:73:59:cb:aa:cf:d1:a3:79:b6:90:6f:a8:ed:b4:60:56:
2b:be:91:b5:d6:60:a5:46:74:20:c9:60:a9:3f:9f:98:95:6f:
cb:82:37:6f:bd:db:dc:85:14:31:b7:7c:b1:ee:cf:40:48:c9:
4d:52:8c:2b:2e:e6:f6:46:a9:53:8c:1e:c6:5d:bc:d4:f4:05:
5f:ce:f0:54:f0:25:58:77:6c:aa:ae:92:71:60:d7:16:a6:5a:
14:7c:03:f5:8c:1a:7f:c9:a4:99:68:53:e9:32:41:53:6d:4b:
6d:3a:b1:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 03:00:58 2024 by rpki-client on console-fra.rpki-client.org