Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/oxjKPWcHEzJFduISRdjhl2hPtvw.roa
File: oxjKPWcHEzJFduISRdjhl2hPtvw.roa (raw, json)
Hash identifier: QWygj79UK+Fns769lUyt5PbzgqOo0e2azVX+wuUAahQ=
Subject key identifier: A3:18:CA:3D:67:07:13:32:45:76:E2:12:45:D8:E1:97:68:4F:B6:FC
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0184
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oxjKPWcHEzJFduISRdjhl2hPtvw.roa
Signing time: Wed 24 May 2023 16:33:26 +0000
ROA not before: Wed 24 May 2023 16:33:26 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.79.20.0/24 maxlen: 24
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:16:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 388 (0x184)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:33:26 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=A318CA3D670713324576E21245D8E197684FB6FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:1c:8c:99:a3:9f:a4:8b:8a:ac:0f:e3:74:57:
d2:be:ea:d1:8c:c7:0c:40:ba:1f:a9:63:94:91:e8:
d8:6a:c3:06:5a:81:3b:f5:22:ed:95:0f:00:60:25:
4b:ff:4e:4a:52:ec:38:2b:28:bf:58:64:cf:4f:99:
72:87:7a:55:8b:ae:e9:d5:6f:f3:0c:eb:5c:95:d0:
22:14:71:dd:ab:44:cc:49:ac:e4:96:df:17:a0:ac:
36:51:89:d2:ce:5d:06:56:92:13:fe:17:ef:dd:69:
28:91:0b:81:b6:7a:cd:96:21:7d:29:7c:7e:66:66:
41:59:12:ac:90:aa:b0:2a:14:37:06:cb:05:77:ba:
71:80:21:27:0f:ce:84:4d:86:4d:84:ba:d4:e8:49:
9d:dc:c1:bd:b2:3e:2e:bb:08:b7:80:37:65:2b:dd:
39:35:6a:96:fa:7c:05:c5:7c:35:b6:8d:68:a9:dc:
d1:83:1d:6e:cd:a7:28:d2:93:75:ef:01:f8:55:d6:
bc:b0:ac:6e:4e:68:db:8e:0b:e3:02:b6:87:4f:0a:
45:fb:f2:c0:b8:1e:23:ff:ee:e6:53:9c:6b:a7:fe:
2b:27:85:64:38:b1:4e:b5:3f:29:7e:ed:63:6f:d3:
ca:d5:6f:06:ea:31:ca:72:35:55:56:a9:9b:d7:0f:
3d:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:18:CA:3D:67:07:13:32:45:76:E2:12:45:D8:E1:97:68:4F:B6:FC
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/oxjKPWcHEzJFduISRdjhl2hPtvw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.79.20.0/24
Signature Algorithm: sha256WithRSAEncryption
04:ef:5d:cf:c3:b6:55:58:f2:56:20:c5:c4:1d:34:d5:d6:ab:
bc:85:5a:6f:7a:c3:8f:c8:95:56:a5:1f:75:9c:dd:b5:92:48:
a9:ac:d5:0f:78:c4:99:fb:68:20:02:66:d0:75:e9:e9:26:ba:
a0:06:a4:90:66:cd:28:d5:b4:9b:93:ec:36:c3:9f:20:1d:fe:
87:c9:8a:d5:ad:fa:eb:48:11:96:0c:5d:ed:b8:26:70:4b:52:
58:49:e6:fc:a9:3d:68:28:d2:ca:91:54:38:22:59:75:e9:25:
00:a6:fb:51:2d:89:8a:f1:68:3b:fe:13:0a:14:a5:6d:d7:ee:
b4:69:94:42:1c:f7:20:d7:85:df:b3:88:c9:06:8e:09:8e:0f:
13:ad:79:1e:4b:fa:86:80:e4:56:09:0d:83:50:9c:72:bc:aa:
ed:ea:0b:03:91:36:3c:43:aa:3f:b0:51:76:5a:52:d6:c4:92:
9c:0a:a3:be:5b:dd:c0:45:80:7a:eb:af:b0:52:63:e1:8d:f8:
ad:c7:6f:eb:ea:4f:46:31:16:77:b2:36:a6:34:93:b4:9a:67:
c5:95:de:cb:2a:1c:23:ca:91:60:e2:f2:93:5e:8e:73:c1:ab:
94:33:a6:f8:26:d8:ea:83:9b:5a:cd:1b:4d:d9:bf:cd:1f:e2:
a7:73:ae:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:35 2024 by rpki-client on console-fra.rpki-client.org