Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xMTLdZ4PFK92LD8bMEBn4NsG4TQ.roa
File: xMTLdZ4PFK92LD8bMEBn4NsG4TQ.roa (raw, json)
Hash identifier: d9PB1YJUUhVO3BiRvEjSOVFlRMR0nH3fo+PI54p9YQQ=
Subject key identifier: C4:C4:CB:75:9E:0F:14:AF:76:2C:3F:1B:30:40:67:E0:DB:06:E1:34
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0164
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xMTLdZ4PFK92LD8bMEBn4NsG4TQ.roa
Signing time: Wed 24 May 2023 16:33:14 +0000
ROA not before: Wed 24 May 2023 16:33:14 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.79.70.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:06:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 356 (0x164)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 24 16:33:14 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=C4C4CB759E0F14AF762C3F1B304067E0DB06E134
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:f8:e3:a1:d5:49:8b:75:9d:21:01:c8:74:47:
db:db:64:47:51:83:61:dc:0e:ec:e9:35:3c:53:06:
70:1d:27:5b:f0:46:1c:fc:e2:7c:ac:2f:a9:83:dc:
6f:e1:0b:23:9f:47:7b:8b:b8:fb:a3:e7:73:a0:ba:
51:89:09:4f:e2:d5:28:31:06:52:15:27:f8:b2:8a:
b9:16:2b:70:09:81:5a:c0:6b:a8:ce:31:65:98:42:
29:7e:49:b5:7c:f3:b2:74:1a:45:15:62:42:73:98:
4a:aa:e6:5f:89:c2:b2:ac:3d:ac:73:3f:da:e9:af:
54:dd:4e:fd:ed:7d:b9:91:57:40:84:3f:47:0c:67:
ce:b4:44:7e:38:f6:c9:e4:9d:ac:48:7d:64:41:82:
d0:8e:57:5a:d8:57:c0:99:c2:02:c4:8c:a9:9c:29:
d1:f2:72:f2:dd:8d:c3:44:f0:82:37:dc:1e:66:ba:
7e:2f:0a:58:75:72:3b:45:90:22:2c:3d:78:1d:30:
5b:e2:cb:da:74:fe:e0:48:a5:c2:4c:a1:61:9e:c3:
83:27:b4:61:80:28:cd:b8:f4:4e:c5:d1:ab:65:31:
fa:ad:1b:ec:7e:80:87:2e:77:62:9d:89:fc:ea:96:
fa:97:95:69:14:0c:12:ba:45:c6:5f:f3:66:f9:66:
43:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C4:CB:75:9E:0F:14:AF:76:2C:3F:1B:30:40:67:E0:DB:06:E1:34
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xMTLdZ4PFK92LD8bMEBn4NsG4TQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.79.70.0/23
Signature Algorithm: sha256WithRSAEncryption
0d:9c:67:25:b2:86:55:44:37:b4:f1:f3:c5:7f:14:f1:59:e3:
5b:2c:fc:1f:24:55:c3:0e:d2:3f:c0:50:07:f2:ca:05:91:75:
94:32:d1:49:14:43:11:92:64:4d:e6:88:2e:88:cd:26:3a:7a:
9b:d9:5f:95:8c:32:f0:13:72:8f:12:25:09:d7:e9:08:82:b7:
3b:4d:e8:60:1e:d6:45:fc:fa:96:fc:02:27:2c:47:84:ef:44:
62:05:5b:5f:99:b4:d9:69:37:8d:8a:46:ef:ed:7a:dc:fc:e1:
3e:d3:bd:72:fb:a9:25:3b:be:4e:f7:79:31:09:53:64:a8:96:
c7:e2:fc:f8:b8:b7:f6:dd:a2:ca:cc:99:e5:bb:0f:72:ee:e4:
f9:8d:d0:d3:11:bb:56:d5:1d:b8:6a:a5:7f:83:43:51:cd:4a:
ed:9d:39:b0:da:0f:e2:1b:c9:23:23:3e:c3:fc:89:cf:85:f3:
6a:fd:b2:f1:00:08:74:87:fb:29:50:a3:8e:2b:d9:d4:37:64:
7a:4b:1c:bc:b9:fc:63:32:24:c9:02:44:01:13:b5:d1:1a:c7:
08:2e:8d:b8:e5:1c:74:ca:22:20:00:24:dc:3e:83:cc:05:30:
fc:dc:e8:ba:f3:2a:d8:57:b4:70:bf:30:96:69:40:8b:15:69:
e3:34:a7:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:36 2024 by rpki-client on console-fra.rpki-client.org