Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/xMWnP17Gc-JrG_7iFHjaMhhEPLM.roa
File: xMWnP17Gc-JrG_7iFHjaMhhEPLM.roa (raw, json)
Hash identifier: A4+HpASLSfQGxL2pVIRzL4Po/6J3q1UvXAioqU/2OcI=
Subject key identifier: C4:C5:A7:3F:5E:C6:73:E2:6B:1B:FE:E2:14:78:DA:32:18:44:3C:B3
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05DD
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xMWnP17Gc-JrG_7iFHjaMhhEPLM.roa
Signing time: Thu 29 Feb 2024 01:32:18 +0000
ROA not before: Thu 29 Feb 2024 01:32:18 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 9605
IP address blocks: 1.73.224.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:28:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1501 (0x5dd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Feb 29 01:32:18 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=C4C5A73F5EC673E26B1BFEE21478DA3218443CB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:bf:50:04:27:c5:02:9b:31:ff:73:ac:28:1f:
08:7a:f7:97:28:c6:eb:c4:3d:89:21:c4:f2:e8:ad:
8f:e9:05:41:df:54:93:cf:fd:02:41:52:34:12:98:
8e:03:9c:7d:19:11:ed:87:4f:1f:23:54:6d:18:c9:
2f:89:8e:6b:91:81:19:6e:c5:26:1e:e3:9b:d5:ab:
1d:2c:ad:ee:11:84:f8:ef:66:84:cd:2d:f4:90:51:
fe:c0:bd:92:be:ca:0b:05:83:cd:ec:4b:15:47:b9:
2d:25:44:d4:02:e8:89:cf:66:db:8d:40:90:e6:75:
3a:f1:b6:96:16:7a:24:30:12:7d:c6:83:07:a3:05:
f7:bd:fc:e4:d3:e1:f6:ef:9d:00:8b:dd:fe:d8:12:
c5:1c:04:11:c2:cc:0f:f1:ac:13:a0:05:89:db:77:
5b:c1:12:b5:5f:2a:90:6b:d7:7a:f9:9d:0f:c4:07:
5c:9e:cd:77:15:6e:f6:31:70:90:e9:4f:d2:f0:15:
23:74:7c:7b:3a:51:69:1a:da:ba:7d:f9:e3:12:54:
fb:5a:93:71:47:66:cd:92:11:a7:25:86:7f:0e:2d:
76:2d:8f:59:7c:35:d5:e8:d1:75:1c:9c:f0:95:17:
f0:9a:2f:cd:d0:61:e7:d1:39:ae:6b:2a:ef:46:6f:
ab:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:C5:A7:3F:5E:C6:73:E2:6B:1B:FE:E2:14:78:DA:32:18:44:3C:B3
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/xMWnP17Gc-JrG_7iFHjaMhhEPLM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.73.224.0/23
Signature Algorithm: sha256WithRSAEncryption
de:e8:45:63:b2:74:7f:e1:27:70:08:1a:1d:a0:83:ee:67:b5:
a0:89:eb:16:f4:c2:a3:3d:d7:fa:74:b1:55:46:f5:6a:ec:0d:
08:be:46:0e:13:9c:ec:99:1c:bb:55:c1:18:47:ab:77:7c:6e:
0b:8c:7b:58:85:b6:21:2a:9f:43:39:23:b0:b1:4a:46:e7:4e:
fb:fd:f3:d8:0a:a7:06:e1:44:e3:d6:fd:12:5c:c5:36:88:eb:
f3:91:bb:c7:83:4a:32:14:67:f6:e5:8e:29:d0:f3:e6:d6:21:
11:da:58:6c:34:e7:52:fc:22:b0:63:4c:29:ea:f5:6e:55:84:
db:02:30:da:4c:91:44:8a:67:70:3b:bd:9d:b3:b6:73:ee:f5:
7d:c7:97:e9:d1:87:ba:f1:1b:6f:33:bd:9a:86:ac:51:f1:17:
14:32:33:14:94:99:9a:fc:d1:24:18:a8:b3:de:9f:56:c3:ba:
57:50:2a:a1:97:39:7e:0f:53:b9:2c:21:98:2a:b6:1d:9d:1b:
7c:fa:44:06:4c:06:d2:4b:6f:49:d1:20:ae:b2:c8:ba:3c:be:
f8:25:32:70:83:42:cb:6b:ca:43:e8:04:bb:7a:73:73:8d:90:
bb:2c:d3:64:b9:24:a4:72:29:13:a0:c2:19:20:57:61:02:40:
32:cf:13:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:07:02 2025 by rpki-client