Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/ykP0NPPrPQhX7KOSIrP-DLVEio0.roa
File: ykP0NPPrPQhX7KOSIrP-DLVEio0.roa (raw, json)
Hash identifier: ImHaDYT+LjtitKkHJO3h2pk3odgyCRGJ9orL83kyuck=
Subject key identifier: CA:43:F4:34:F3:EB:3D:08:57:EC:A3:92:22:B3:FE:0C:B5:44:8A:8D
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05D8
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ykP0NPPrPQhX7KOSIrP-DLVEio0.roa
Signing time: Thu 29 Feb 2024 01:32:17 +0000
ROA not before: Thu 29 Feb 2024 01:32:17 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 9605
IP address blocks: 1.75.0.0/23 maxlen: 23
Validation: Failed, certificate revoked on Fri 31 Jan 2025 01:28:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1496 (0x5d8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Feb 29 01:32:17 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=CA43F434F3EB3D0857ECA39222B3FE0CB5448A8D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:48:d8:76:d5:86:b4:6d:4b:ee:e3:6f:20:a6:
0e:46:24:08:ab:48:0d:08:d3:00:39:67:86:c4:c4:
c9:86:48:e0:9b:f1:f5:85:fd:9b:e8:84:fa:29:61:
ea:8d:7c:7d:73:32:ec:67:b1:89:f2:c6:47:61:bd:
43:86:95:ab:3e:d6:87:5d:94:20:a8:0d:f9:ee:38:
50:1c:e2:37:1c:7f:2c:2f:3f:78:bb:99:19:0c:6e:
92:29:ab:a1:3f:45:03:6e:f1:2e:0a:d8:7a:64:05:
05:ff:d2:aa:dd:83:77:61:d6:99:59:f3:ac:d9:a9:
ff:9a:b6:e3:19:a1:79:11:58:48:aa:f2:12:cc:de:
33:29:1b:bb:cd:a8:74:c3:3d:30:b3:69:fd:29:c9:
6d:2c:57:fe:e0:2e:89:1e:37:77:bf:75:a8:d6:6a:
a8:6d:9d:24:15:da:9e:51:0b:9d:6e:c9:8d:d8:88:
65:8f:35:98:e7:10:67:ba:be:7e:fe:cf:a5:43:a6:
23:5c:5f:0c:70:cd:79:2f:9c:af:ee:e0:a4:3e:96:
44:ba:f4:66:8f:c5:43:92:01:eb:b9:b0:58:1c:61:
9a:c6:39:10:bd:5b:b0:c6:60:e2:39:04:34:7a:0d:
be:8d:2f:e4:7d:c1:34:59:75:bc:4b:ad:99:14:d1:
77:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:43:F4:34:F3:EB:3D:08:57:EC:A3:92:22:B3:FE:0C:B5:44:8A:8D
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/ykP0NPPrPQhX7KOSIrP-DLVEio0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.75.0.0/23
Signature Algorithm: sha256WithRSAEncryption
05:3d:17:e3:43:a1:53:86:85:05:60:2f:80:e1:7f:30:b0:7c:
61:3e:56:7e:8d:94:e6:c9:12:fe:e0:a7:75:45:9c:cc:53:a2:
63:4d:c1:04:72:d7:d2:38:12:30:fb:94:76:39:2f:33:97:bb:
67:88:48:9e:3d:44:12:e0:b1:b0:c4:97:5b:30:ed:4c:32:20:
75:aa:e7:cb:e1:ae:5e:e9:88:ca:00:72:00:8d:36:b4:1d:8a:
2c:55:3c:ec:b1:5b:50:4c:97:8f:93:d4:ac:4a:0d:6b:2c:51:
c2:35:f9:16:06:c8:40:a2:d0:f0:8d:b7:c5:35:9d:a4:6f:29:
c7:0e:ff:b4:b2:66:1b:6a:96:1d:b7:16:a7:d7:e6:70:b0:54:
c7:76:dd:32:02:81:95:a4:ab:65:2c:5d:d7:55:6c:59:a1:e7:
01:46:d5:47:eb:98:8c:54:9c:b0:c2:08:2d:01:02:23:b2:69:
ec:47:6a:fc:35:24:82:cf:d0:6b:c7:b0:63:63:3e:17:3f:cc:
1d:c3:2e:ad:40:69:b4:56:37:7f:60:f9:4b:61:b9:53:62:9a:
2d:7d:63:e9:f8:19:26:e8:75:cc:17:e1:37:82:7c:ba:e7:3b:
93:93:59:13:d7:2d:67:40:1a:97:80:d8:50:aa:be:e1:34:ef:
a0:ad:a3:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:10:42 2025 by rpki-client