Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xM1aNqIFluVE3dLPxJab6fS6m3k.roa
File: xM1aNqIFluVE3dLPxJab6fS6m3k.roa (raw, json)
Hash identifier: c/nrqt2PqR/zX8Q9WPN7eahBusWRB/V30VRaqVyPjIQ=
Subject key identifier: C4:CD:5A:36:A2:05:96:E5:44:DD:D2:CF:C4:96:9B:E9:F4:BA:9B:79
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05A9
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xM1aNqIFluVE3dLPxJab6fS6m3k.roa
Signing time: Thu 27 Jul 2023 17:00:20 +0000
ROA not before: Thu 27 Jul 2023 17:00:20 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 1.66.70.0/23 maxlen: 23
Validation: Failed, certificate revoked on Sun 30 Jun 2024 01:54:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1449 (0x5a9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 17:00:20 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=C4CD5A36A20596E544DDD2CFC4969BE9F4BA9B79
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:0f:0f:ae:92:d7:7f:b9:77:53:92:65:8f:35:
52:28:c1:8b:82:ee:09:94:a1:04:f9:21:9f:a8:07:
77:38:8b:66:38:6d:6d:cc:9e:dd:6e:eb:71:99:16:
ab:12:d1:04:f4:14:c0:fc:51:78:14:83:ec:37:50:
13:eb:29:92:c0:4d:3b:8e:84:ff:9b:1c:b9:1f:85:
2f:f2:2e:a5:c4:1c:8b:3c:d2:53:5d:62:44:20:3f:
8a:e7:10:ca:e6:4c:51:1d:04:5f:83:67:f4:67:7a:
54:f3:e5:23:40:ae:64:18:3c:e6:d0:f8:26:b3:d8:
07:f5:7f:d5:e5:34:34:52:42:4d:71:76:97:30:a5:
4a:c6:7a:e2:64:de:de:10:f1:53:16:6d:10:95:aa:
dc:48:a4:18:56:2e:15:fa:ca:66:09:03:fc:8b:e3:
eb:d5:aa:5e:63:46:7c:33:7b:ee:9e:c4:7d:ff:b9:
16:05:58:36:05:ca:52:a7:3a:53:0d:63:ae:07:65:
42:50:7a:ee:4c:fd:a9:df:81:b1:81:a3:ef:a5:dc:
b5:0d:fd:09:d0:38:af:67:24:b8:91:1e:e5:37:e8:
fd:5f:b9:ac:67:91:c5:2e:80:cb:b9:40:75:05:d9:
4d:40:c6:25:08:e8:38:70:23:19:5c:c9:d5:4f:0b:
94:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:CD:5A:36:A2:05:96:E5:44:DD:D2:CF:C4:96:9B:E9:F4:BA:9B:79
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xM1aNqIFluVE3dLPxJab6fS6m3k.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.66.70.0/23
Signature Algorithm: sha256WithRSAEncryption
37:4a:29:1c:0d:93:4b:b2:d4:ab:a3:1b:92:65:ba:a3:63:ae:
b7:ed:63:29:bb:d5:dd:d3:a4:d6:6c:26:0c:b0:47:5e:7a:e9:
32:ef:dc:17:0b:7a:b1:4d:95:4f:54:29:7f:7d:ee:6b:e6:73:
6a:4e:52:98:f6:30:2f:78:1b:6b:38:fa:05:e6:90:a5:e3:5b:
67:4c:d2:0e:60:fe:55:aa:0b:db:ee:22:09:99:3f:75:24:e7:
fb:3b:fc:0a:1f:74:2e:47:5a:eb:55:bc:ea:e6:ee:9f:43:f1:
25:ad:39:b5:a7:67:25:26:22:1d:9c:95:fe:37:a2:15:9a:2c:
3c:c3:a4:3f:9d:99:25:d4:c5:68:f2:30:1f:89:d9:cb:1f:0b:
37:5a:aa:a5:ed:73:89:d5:c6:e2:62:54:6c:04:55:2e:45:91:
7e:56:18:e6:d9:d3:33:26:ef:2b:cb:8c:72:70:d4:05:9b:4f:
d9:03:84:bb:e8:9a:00:8b:34:02:60:6d:76:6e:21:92:98:b5:
10:d7:98:fd:0a:b5:99:fc:df:e2:08:cf:3e:aa:10:b5:af:0f:
f8:8e:a5:5f:88:8f:ed:08:ee:e9:7c:b9:27:0d:98:46:38:e6:
7c:8a:39:0a:ab:b8:ac:3c:57:df:77:79:74:01:6a:6d:eb:40:
30:35:2c:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 30 04:12:20 2024 by rpki-client on console-fra.rpki-client.org