Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/z7bHAjSL5V57Bw-aXi5YI0EaM3s.roa
File: z7bHAjSL5V57Bw-aXi5YI0EaM3s.roa (raw, json)
Hash identifier: McPsxZT6ddfvkP683GaibJxU5GrleEysWWyDNbJ56NM=
Subject key identifier: CF:B6:C7:02:34:8B:E5:5E:7B:07:0F:9A:5E:2E:58:23:41:1A:33:7B
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 79
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/z7bHAjSL5V57Bw-aXi5YI0EaM3s.roa
Signing time: Mon 27 Mar 2023 16:12:00 +0000
ROA not before: Mon 27 Mar 2023 16:12:00 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.97.104.0/23 maxlen: 23
Validation: Failed, certificate revoked on Thu 29 Feb 2024 01:38:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121 (0x79)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Mar 27 16:12:00 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=CFB6C702348BE55E7B070F9A5E2E5823411A337B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:7c:da:8c:30:1c:ee:91:a5:7f:a0:6b:6d:c3:
2d:8f:8a:24:81:bb:e3:1b:f2:4a:1b:90:b2:14:65:
d4:00:ea:60:44:69:24:1a:57:1f:1d:1f:db:70:61:
15:84:b5:6e:9c:bd:f7:e6:f6:b6:8d:6c:a1:98:53:
f2:c5:8a:71:93:af:25:e6:e1:7e:72:e3:c7:e6:11:
81:de:6e:f8:9f:12:e3:7a:93:eb:93:e1:93:07:71:
8f:3c:88:34:8d:c6:70:91:9b:9a:9d:78:1c:7a:36:
f3:56:83:de:f4:2f:32:d7:48:14:22:cd:18:32:52:
df:05:c4:06:34:1e:e8:ca:4a:a0:ca:26:f2:5f:80:
fc:37:ef:71:6b:e4:fd:17:6d:d7:82:8b:91:14:2c:
bf:9d:63:ab:02:82:97:3f:b1:7c:2e:dc:bb:55:8e:
c2:00:f6:18:bc:67:d8:8b:a4:ac:d7:36:4b:b7:c4:
d0:c8:19:1c:8f:fd:96:01:c8:84:58:63:0d:ca:e4:
d6:90:ec:50:57:ec:dc:71:f4:ea:5a:d4:0d:9a:7b:
34:09:2c:c0:08:0d:0e:62:71:90:cd:6e:3a:d3:80:
54:16:3b:83:34:76:35:a3:99:de:e3:0c:2d:86:e9:
6a:c6:05:46:20:3c:33:3d:e7:1c:2a:d2:f2:cf:c0:
c5:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:B6:C7:02:34:8B:E5:5E:7B:07:0F:9A:5E:2E:58:23:41:1A:33:7B
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/z7bHAjSL5V57Bw-aXi5YI0EaM3s.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.97.104.0/23
Signature Algorithm: sha256WithRSAEncryption
e3:6d:8a:53:12:30:de:e4:e5:1b:d6:fe:24:38:d3:18:9c:e8:
dc:20:2f:30:6d:92:0a:a6:d8:1e:45:44:e3:68:a2:85:a6:53:
92:c9:c5:8b:32:20:c9:f0:b4:bf:11:08:b6:ec:2a:1e:cd:a3:
c8:02:f3:08:d5:95:51:55:a5:12:b9:05:be:29:6c:41:02:e5:
d3:7e:81:c8:9f:87:d3:69:8f:67:fe:48:82:6f:cc:68:c6:a8:
0c:93:dc:60:10:ff:82:3f:eb:99:f9:cd:79:55:02:5b:dd:83:
7e:0b:c3:c8:59:61:92:23:05:b3:1f:86:5e:cf:2a:3f:ac:7f:
dc:e8:b3:e4:07:5d:dd:0f:f9:37:3a:25:60:ce:3a:57:a3:b3:
ef:9d:d6:ab:2b:3a:84:94:d7:29:9b:10:6a:7a:56:e6:58:e1:
e9:c4:15:af:5e:bc:71:09:a5:b4:95:8f:22:af:b3:97:21:c5:
e8:95:f6:e2:76:ed:f1:f4:72:89:a8:c0:56:39:9f:16:10:41:
bf:a8:0f:fa:dd:ef:a2:a9:63:4b:4b:f0:85:07:48:c9:54:23:
bc:cd:d8:55:d6:6d:46:56:ba:81:a3:51:7f:1a:c8:a3:44:36:
51:4f:55:8a:66:95:8b:8f:e5:59:28:f9:ed:f3:19:b3:bb:4d:
08:2b:2a:2e
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgIBeTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2OTY1
QjBCMjBEREUwN0E0Qzk3OEUyNDA3M0VBMEUxMTE3QjM3NDczMB4XDTIzMDMyNzE2
MTIwMFoXDTI0MDMxNDAxMzAwMlowMzExMC8GA1UEAxMoQ0ZCNkM3MDIzNDhCRTU1
RTdCMDcwRjlBNUUyRTU4MjM0MTFBMzM3QjCCASIwDQYJKoZIhvcNAQEBBQADggEP
ADCCAQoCggEBANt82owwHO6RpX+ga23DLY+KJIG74xvyShuQshRl1ADqYERpJBpX
Hx0f23BhFYS1bpy99+b2to1soZhT8sWKcZOvJebhfnLjx+YRgd5u+J8S43qT65Ph
kwdxjzyINI3GcJGbmp14HHo281aD3vQvMtdIFCLNGDJS3wXEBjQe6MpKoMom8l+A
/DfvcWvk/Rdt14KLkRQsv51jqwKClz+xfC7cu1WOwgD2GLxn2IukrNc2S7fE0MgZ
HI/9lgHIhFhjDcrk1pDsUFfs3HH06lrUDZp7NAkswAgNDmJxkM1uOtOAVBY7gzR2
NaOZ3uMMLYbpasYFRiA8Mz3nHCrS8s/AxUsCAwEAAaOCAiQwggIgMB0GA1UdDgQW
BBTPtscCNIvlXnsHD5peLlgjQRozezAfBgNVHSMEGDAWgBRpZbCyDd4HpMl44kBz
6g4RF7N0czAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGYGA1UdHwRfMF0wW6BZ
oFeGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9BOTFBNzM4
MTAwMDAvMzA5L2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJlemRITS5jcmwwbQYIKwYB
BQUHAQEEYTBfMF0GCCsGAQUFBzAChlFyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5u
aWMuYWQuanAvYXAvQTkxQTczODEwMDAwL2FXV3dzZzNlQjZUSmVPSkFjLW9PRVJl
emRITS5jZXIwDgYDVR0PAQH/BAQDAgeAMIG7BggrBgEFBQcBCwSBrjCBqzBhBggr
BgEFBQcwC4ZVcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL2FwL0E5
MUE3MzgxMDAwMC8zMDkvejdiSEFqU0w1VjU3QnctYVhpNVlJMEVhTTNzLnJvYTBG
BggrBgEFBQcwDYY6aHR0cHM6Ly9ycGtpLXJlcG9zaXRvcnkubmljLmFkLmpwL3Jy
ZHAvYXAvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw
BgMEATFhaDANBgkqhkiG9w0BAQsFAAOCAQEA422KUxIw3uTlG9b+JDjTGJzo3CAv
MG2SCqbYHkVE42iihaZTksnFizIgyfC0vxEItuwqHs2jyALzCNWVUVWlErkFvils
QQLl036ByJ+H02mPZ/5Igm/MaMaoDJPcYBD/gj/rmfnNeVUCW92DfgvDyFlhkiMF
sx+GXs8qP6x/3Oiz5Add3Q/5NzolYM46V6Oz753Wqys6hJTXKZsQanpW5ljh6cQV
r168cQmltJWPIq+zlyHF6JX24nbt8fRyiajAVjmfFhBBv6gP+t3voqljS0vwhQdI
yVQjvM3YVdZtRla6gaNRfxrIo0Q2UU9VimaVi4/lWSj57fMZs7tNCCsqLg==
-----END CERTIFICATE-----
Generated at Thu Feb 29 03:05:49 2024 by rpki-client on console-ams.rpki-client.org