Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/zIMdfVHh197fq4G1DESGHPIwnkw.roa
File: zIMdfVHh197fq4G1DESGHPIwnkw.roa (raw, json)
Hash identifier: f7acU9CKt2ic4y/SH0tJFFF1Sp1VvzFnHVRqiyyXisI=
Subject key identifier: CC:83:1D:7D:51:E1:D7:DE:DF:AB:81:B5:0C:44:86:1C:F2:30:9E:4C
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 033A
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zIMdfVHh197fq4G1DESGHPIwnkw.roa
Signing time: Thu 01 Jun 2023 16:07:35 +0000
ROA not before: Thu 01 Jun 2023 16:07:35 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 49.98.86.0/23 maxlen: 23
Validation: Failed, certificate revoked on Tue 30 Apr 2024 02:28:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 826 (0x33a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 1 16:07:35 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=CC831D7D51E1D7DEDFAB81B50C44861CF2309E4C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:df:b7:e7:03:24:83:9f:dc:5d:81:06:df:b2:
e2:01:4a:42:29:f5:75:b9:c5:61:d6:28:7e:97:9d:
95:b7:37:10:ab:c8:1f:41:1c:1f:3c:b2:8b:4e:a2:
c0:0b:9b:fb:56:21:67:82:02:e5:03:b4:8e:56:5c:
fa:34:52:ba:4f:45:52:2f:1e:48:55:3a:8f:05:2f:
11:00:2c:95:63:7a:59:9a:6c:f4:db:8f:9e:13:7a:
28:99:fc:d3:2a:dc:d7:f1:67:32:21:7b:3c:b1:4f:
cf:fc:78:79:31:56:63:1d:49:52:39:f0:fd:da:97:
9c:09:d9:a2:a5:1a:fe:45:25:83:95:1b:7f:ba:19:
c1:2a:1c:cc:71:84:19:ce:41:cf:04:58:32:bf:d3:
49:d3:cc:f0:69:98:73:8f:12:f2:05:5e:a6:4e:5b:
ac:01:68:01:64:07:f6:6a:b0:b6:29:ca:28:36:25:
5f:8c:a9:fd:33:c0:21:d1:5c:d2:01:67:c2:b2:12:
8d:8a:37:53:2e:14:90:ac:9c:c7:31:90:da:5f:8e:
16:7c:e0:63:1b:d0:18:79:28:cc:47:25:06:f6:56:
18:d6:5a:ca:2a:e7:a0:29:10:5d:74:3a:a9:99:04:
76:31:14:a1:7e:cd:68:6d:1a:83:37:78:30:6d:d8:
66:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:83:1D:7D:51:E1:D7:DE:DF:AB:81:B5:0C:44:86:1C:F2:30:9E:4C
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/zIMdfVHh197fq4G1DESGHPIwnkw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.98.86.0/23
Signature Algorithm: sha256WithRSAEncryption
22:e0:52:11:c4:99:84:3b:e6:9f:c1:50:a4:3a:e9:68:ae:e7:
15:d9:b6:ba:fe:25:f8:6e:4c:d1:6a:c2:4a:82:16:e1:46:3b:
da:8f:70:5a:62:0d:74:6e:40:13:da:88:e1:4a:4f:ae:81:bd:
04:42:bf:38:7a:85:ba:53:d1:f6:89:98:bb:25:72:d4:01:29:
9b:79:34:f3:2a:71:8d:0d:48:10:26:59:8c:a0:2b:58:86:cb:
a6:3b:e9:96:dc:0d:db:17:b8:21:24:ba:ec:8c:e8:a3:ac:fd:
58:5d:ab:d1:2f:ef:72:fa:30:4c:90:c1:02:1c:a6:78:71:09:
01:a5:2a:85:97:1e:87:8a:b5:04:58:93:3f:d0:98:4a:8a:57:
44:2b:d5:8c:14:07:6c:0f:35:18:e8:f3:b9:e0:d3:0f:97:69:
12:6a:5c:9f:40:08:e8:5d:89:70:35:c0:cc:7f:33:50:b6:a7:
44:1f:dc:d7:5a:7d:69:41:53:ea:58:4c:76:2b:9e:51:8d:9d:
43:ba:eb:04:e2:e4:c4:21:72:a4:70:12:dc:86:1a:34:7e:19:
52:f2:99:28:3f:c5:6c:82:bf:03:b5:4a:c3:fd:64:1a:cc:43:
4d:cf:d2:8c:60:12:1c:a3:94:f9:50:2c:cd:6c:1b:b9:8d:55:
d1:6e:58:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 30 03:42:36 2024 by rpki-client on console-fra.rpki-client.org