Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/qRkCZP2ozlpFAEMoDlqS6lsl_P0.roa
File: qRkCZP2ozlpFAEMoDlqS6lsl_P0.roa (raw, json)
Hash identifier: zBQ3gv5ZPTJgFiIasmw+kqxg19GfKAjj8RYjpgVyrzI=
Subject key identifier: A9:19:02:64:FD:A8:CE:5A:45:00:43:28:0E:5A:92:EA:5B:25:FC:FD
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05CC
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qRkCZP2ozlpFAEMoDlqS6lsl_P0.roa
Signing time: Thu 29 Feb 2024 01:32:11 +0000
ROA not before: Thu 29 Feb 2024 01:32:11 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 9605
IP address blocks: 1.72.9.0/24 maxlen: 24
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:28:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1484 (0x5cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Feb 29 01:32:11 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=A9190264FDA8CE5A450043280E5A92EA5B25FCFD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1a:79:d1:d0:90:fb:64:a0:e1:a8:8c:51:a9:
16:e9:92:79:61:6d:40:ea:79:27:3e:63:d1:7b:d9:
3f:aa:72:bf:f9:44:35:b4:74:9d:61:85:d8:a9:d6:
f3:3c:a2:c8:73:06:ba:b9:37:4e:ff:c9:7c:2d:14:
e9:0c:f6:24:26:de:ec:0e:31:48:05:a1:28:4f:0e:
a0:ee:1b:64:a4:de:d5:7f:98:34:6a:dd:66:6f:1e:
bc:ee:2d:c5:77:d2:51:f1:e2:24:62:99:4e:66:48:
a9:cf:d2:d2:17:57:53:1f:41:6b:b8:a0:e5:53:7e:
9b:32:55:0f:6e:58:00:a0:7c:be:80:35:3f:4a:ea:
82:e0:ec:84:ce:58:64:d4:3a:78:85:3d:1f:c8:ab:
26:45:ff:8a:4b:ca:e3:73:da:bf:d8:17:69:00:14:
49:a4:7d:79:99:ed:ea:89:43:f4:15:27:77:4c:50:
08:eb:a1:b2:7d:f0:63:9a:1d:b6:d6:9d:45:40:6a:
57:c9:9a:a9:e8:73:70:1f:fd:45:3d:17:fe:17:73:
a7:ef:62:08:50:e1:e7:b4:3d:f5:f4:4e:74:ab:c7:
a1:31:a3:b6:92:da:65:a9:ae:ac:34:3b:3d:eb:91:
ce:cc:da:fa:b6:19:79:41:1f:7d:ff:c3:b3:e0:c3:
36:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:19:02:64:FD:A8:CE:5A:45:00:43:28:0E:5A:92:EA:5B:25:FC:FD
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/qRkCZP2ozlpFAEMoDlqS6lsl_P0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.72.9.0/24
Signature Algorithm: sha256WithRSAEncryption
49:91:c7:25:76:ef:56:70:81:b2:29:63:29:e5:6b:a9:07:ca:
69:64:60:a9:3e:65:0f:e0:fb:09:40:f0:f6:18:b2:ea:b4:94:
ea:b6:3f:5e:12:c2:c9:9a:6b:08:fa:81:74:30:82:7d:7a:a7:
26:f9:b1:04:0d:55:ba:b8:63:85:2e:75:d5:b0:89:60:e2:c3:
62:33:27:62:18:ca:c5:f5:e4:12:ec:a0:7e:00:b3:ab:8b:12:
e1:74:a4:ad:c8:bf:d9:80:59:cc:2e:a6:d2:48:f4:f8:c5:53:
39:9c:3e:d0:bc:93:cd:52:f0:4e:d9:ab:88:71:b4:dc:bf:48:
09:08:05:25:50:be:02:2f:4e:8f:02:c3:4f:1e:c8:01:3c:eb:
5a:64:a7:71:d8:17:38:73:f2:7a:ee:ef:ec:f9:81:28:99:50:
35:31:6a:82:57:9a:22:62:74:72:23:e8:67:b9:9b:6f:df:1d:
09:d0:f5:13:81:6f:4c:56:84:13:fd:5a:47:16:71:0a:22:70:
0c:ba:21:28:95:dd:0f:7a:fb:c3:92:c9:95:0d:24:78:95:a5:
30:6c:f3:1c:a4:73:00:8a:56:04:7e:34:98:ac:54:91:17:33:
1d:11:60:f7:d5:eb:ed:30:ab:96:ef:dc:a7:a2:dc:a9:61:ff:
0d:a7:f6:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:22:30 2025 by rpki-client