Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/KB_tdNhTljCzqYeVx8JYT-gvL0g.roa
File: KB_tdNhTljCzqYeVx8JYT-gvL0g.roa (raw, json)
Hash identifier: BdWvr/+Ixf0RrmpbEc2OV4FVUJPoqSv+4ZvoEBRBrQI=
Subject key identifier: 28:1F:ED:74:D8:53:96:30:B3:A9:87:95:C7:C2:58:4F:E8:2F:2F:48
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 03D5
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/KB_tdNhTljCzqYeVx8JYT-gvL0g.roa
Signing time: Wed 18 Dec 2024 02:16:26 +0000
ROA not before: Wed 18 Dec 2024 02:16:26 +0000
ROA not after: Mon 15 Dec 2025 01:30:03 +0000
asID: 2516
IP address blocks: 14.8.96.0/19 maxlen: 19
Validation: Failed, certificate revoked on Wed 26 Feb 2025 09:51:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 981 (0x3d5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: Dec 18 02:16:26 2024 GMT
Not After : Dec 15 01:30:03 2025 GMT
Subject: CN=281FED74D8539630B3A98795C7C2584FE82F2F48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8b:a2:a8:48:78:d9:14:0a:53:5d:51:90:ae:
5f:be:6e:05:c0:55:a8:df:95:54:9f:00:74:04:be:
61:0d:68:59:79:d2:cc:90:09:f4:7a:5e:59:11:82:
54:75:29:93:5e:69:14:66:9b:2c:24:8e:d2:73:90:
f7:b4:0e:f8:65:58:20:1e:d2:6e:22:24:b6:57:b3:
ff:11:11:3f:1d:0f:a1:25:16:ab:ce:91:b6:5b:e5:
05:c5:c9:06:f8:1d:ca:f0:c6:fa:5b:bf:65:91:44:
76:ce:ce:eb:dd:2c:19:dd:a9:16:21:e3:04:b1:a3:
e6:6f:01:f2:83:0e:48:e9:de:fb:2c:1a:78:d1:49:
ef:c6:28:f1:da:f5:ac:45:83:4d:07:4e:c8:1a:3c:
de:cb:cb:d1:e0:9a:d4:fd:0b:a6:02:2b:8e:20:eb:
4b:9d:70:e4:8e:2a:0f:8c:d8:c6:15:25:5e:99:ab:
3a:67:8f:4b:81:a3:49:ab:44:2b:5d:21:21:83:92:
75:84:04:b6:06:da:9e:4c:4b:81:7c:77:b4:a5:63:
7f:30:99:d5:3d:ee:90:f9:50:25:f8:da:59:a1:76:
b9:24:cb:09:7f:41:e4:38:97:b4:ac:39:e9:31:62:
b7:75:9a:ae:03:84:90:c5:6b:21:d8:db:79:4c:2d:
f3:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:1F:ED:74:D8:53:96:30:B3:A9:87:95:C7:C2:58:4F:E8:2F:2F:48
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/KB_tdNhTljCzqYeVx8JYT-gvL0g.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
14.8.96.0/19
Signature Algorithm: sha256WithRSAEncryption
30:e5:ae:4c:98:6a:ce:06:fe:84:2e:2b:16:1c:a6:ec:a5:59:
07:1b:e1:b5:43:73:bf:9a:bd:08:81:07:0a:4c:2f:94:3f:d9:
40:32:11:74:6a:b3:53:28:01:86:82:47:a1:4b:31:96:19:89:
19:b1:50:14:b6:82:6a:ba:d4:0a:37:49:52:47:06:d6:35:45:
84:f9:fb:82:07:c5:a4:d4:67:7d:93:1d:8a:3d:3a:cc:67:ad:
29:64:63:1d:1f:4c:7a:b2:77:8c:e8:d8:9d:e5:ec:9b:34:66:
a6:1c:9e:bc:7c:3d:bc:72:6b:34:e8:e5:c9:c9:f9:aa:33:e4:
29:4c:28:21:39:69:aa:43:b6:db:e0:a5:92:61:a2:17:17:f4:
e4:b4:33:04:17:bf:cd:35:79:9d:c5:a3:ad:e0:0f:c1:fb:92:
c1:ac:3a:4f:b9:65:e5:9c:c4:9c:21:e2:b6:c0:ab:27:34:18:
4d:38:43:1d:ac:5c:be:23:e4:5d:dd:46:d8:0e:28:5d:57:67:
cb:32:14:02:b3:21:3c:04:fc:32:be:68:a6:22:9d:85:37:29:
da:fc:0e:f1:f8:52:7f:97:d0:c6:ef:9f:b1:8a:64:10:28:f2:
07:58:6f:58:60:00:5a:7d:9c:47:17:20:a0:df:23:79:74:b4:
72:4e:a7:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:33:47 2025 by rpki-client