Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/po-jBAFvZem2yINjSN_FGnGxNq0.roa
File: po-jBAFvZem2yINjSN_FGnGxNq0.roa (raw, json)
Hash identifier: Vs1K8MADhAfH8MEWR5uQcOFYQkHznrDdxjTa6xBwYpc=
Subject key identifier: A6:8F:A3:04:01:6F:65:E9:B6:C8:83:63:48:DF:C5:1A:71:B1:36:AD
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 47
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/po-jBAFvZem2yINjSN_FGnGxNq0.roa
Signing time: Mon 27 Mar 2023 16:04:22 +0000
ROA not before: Mon 27 Mar 2023 16:04:22 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.72.7.0/24 maxlen: 24
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:32:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 71 (0x47)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:04:22 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=A68FA304016F65E9B6C8836348DFC51A71B136AD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:05:3b:98:e3:9c:44:d0:f1:ad:d3:17:99:ed:
92:a3:b7:fb:53:5c:e5:48:b2:52:11:fc:df:d5:30:
37:2f:ad:de:01:8e:8d:c7:2f:76:6a:4a:59:ce:96:
24:98:c5:3c:d6:83:31:48:bd:1c:03:40:e9:49:fc:
a7:07:af:23:ab:6b:fb:71:20:60:56:03:f4:4a:f5:
f9:5f:96:87:ad:53:e1:c3:92:07:67:78:fa:6c:25:
93:ae:f3:25:72:d0:16:8b:2e:8c:86:1f:7e:50:b5:
a2:41:ea:c9:5c:73:10:e9:3b:3b:a9:a1:19:4f:75:
d2:49:7c:46:6a:07:0d:4a:25:f2:35:0e:3f:d4:ea:
56:dc:68:f0:d5:c3:84:48:32:94:6f:75:ba:dc:4c:
82:14:3d:d1:aa:c9:77:e8:13:ec:d2:8c:d2:ca:de:
b3:e0:d6:d5:5a:96:91:3d:c5:4c:26:88:89:e1:7e:
1c:ef:82:62:21:77:16:a6:d9:a4:52:60:81:8f:13:
1a:3d:74:db:db:a7:57:92:9f:94:be:06:e1:1d:4a:
b5:12:70:45:53:fd:51:ec:51:1b:89:b6:4a:80:27:
dc:c7:01:f7:30:8f:de:bd:3b:77:5e:57:4b:9c:76:
a5:43:a4:ce:17:d1:36:58:f5:31:53:52:b5:db:86:
51:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:8F:A3:04:01:6F:65:E9:B6:C8:83:63:48:DF:C5:1A:71:B1:36:AD
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/po-jBAFvZem2yINjSN_FGnGxNq0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.72.7.0/24
Signature Algorithm: sha256WithRSAEncryption
34:c6:88:0b:8f:6a:55:c9:4e:24:fa:e3:5c:a3:00:ae:01:c9:
31:61:f0:9d:46:a0:ee:6f:01:9e:d6:67:06:19:74:9f:97:c2:
3c:48:68:ba:e7:bb:8b:46:af:8d:97:82:10:dd:e0:05:fb:45:
8c:d1:ac:8d:a5:ff:40:b4:34:ac:f4:8c:af:84:59:e4:fa:18:
7c:a5:17:a6:ec:b5:2d:03:ea:a2:c0:cb:b1:66:ed:5b:84:d3:
38:d2:5b:d2:4f:2a:8f:3d:82:ba:0a:6f:76:ca:70:cb:11:84:
ab:90:ab:de:1c:62:80:f6:2b:ab:88:69:2c:c8:0b:12:98:71:
0b:e4:31:97:ed:d9:d3:da:a8:d6:bc:08:e4:48:b5:8a:90:ac:
f8:54:fe:43:52:82:db:34:7d:89:0b:a6:45:31:2c:a3:aa:32:
e5:04:66:18:17:fe:ad:4a:8c:50:2a:59:ed:5f:aa:9c:2d:a7:
82:39:59:09:9e:32:9a:55:d8:66:7b:f9:02:ac:af:5f:2d:41:
bd:2c:57:1b:4d:01:d0:1a:16:90:9f:2d:44:bf:6d:34:ef:50:
de:45:11:61:e7:eb:9d:85:20:9a:f3:2c:73:ff:ac:68:1e:8e:
cb:f7:88:e1:d7:97:80:94:cf:c5:8e:6b:ea:85:60:62:31:a0:
2c:b2:eb:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Feb 29 02:02:26 2024 by rpki-client on console-ams.rpki-client.org