Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/Yswxvarcgz7rl-5nEs6fgCF7Kqs.roa
File: Yswxvarcgz7rl-5nEs6fgCF7Kqs.roa (raw, json)
Hash identifier: 52CZWmsfRZQwVytnHEIwAV/4SPsYiZefEpeAVFd9Iw8=
Subject key identifier: 62:CC:31:BD:AA:DC:83:3E:EB:97:EE:67:12:CE:9F:80:21:7B:2A:AB
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 0384
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Yswxvarcgz7rl-5nEs6fgCF7Kqs.roa
Signing time: Sat 31 Aug 2024 01:29:48 +0000
ROA not before: Sat 31 Aug 2024 01:29:48 +0000
ROA not after: Fri 15 Aug 2025 01:30:02 +0000
asID: 2516
IP address blocks: 27.89.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 18 Dec 2024 01:48:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 900 (0x384)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: Aug 31 01:29:48 2024 GMT
Not After : Aug 15 01:30:02 2025 GMT
Subject: CN=62CC31BDAADC833EEB97EE6712CE9F80217B2AAB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:65:89:af:12:4a:26:fe:2a:ca:8a:77:55:7a:
03:18:3a:3c:04:a7:9b:fd:5b:15:9f:27:15:a8:08:
4b:83:87:ec:39:6d:8c:97:64:18:65:60:2d:2f:91:
2b:2a:ba:67:b5:b1:67:40:40:b9:26:02:8f:1a:37:
67:99:02:2c:ff:5b:cd:01:68:53:44:09:62:be:6d:
ec:67:f9:b2:f4:d2:5b:46:08:b1:dc:26:ae:b6:1a:
99:b7:c2:d4:db:46:11:44:cc:1d:0c:27:91:a6:bd:
62:f1:4c:e0:43:4c:84:c7:f8:fc:11:06:4d:09:31:
85:cb:2d:d7:ba:a2:d5:1b:45:b7:37:22:34:55:09:
65:1c:1a:13:e6:0a:cf:a1:bd:da:ab:a7:11:b2:d5:
76:01:fe:65:03:a1:5d:91:1e:36:dc:4d:80:e5:e9:
ea:e8:cd:4d:bf:65:95:7e:61:e5:2f:7e:dc:d3:29:
a6:17:dd:b8:cf:94:d1:19:71:b1:ba:31:53:68:a9:
e8:80:ad:06:00:f0:5e:f9:96:6d:92:ad:96:ca:16:
dd:88:38:a1:d4:e1:a9:16:b7:d2:06:b9:21:86:1e:
0d:18:d6:70:3c:fb:34:c5:e7:f2:df:39:77:7b:5c:
61:e6:b2:78:94:49:9e:2e:66:13:a7:46:b9:53:c4:
e8:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:CC:31:BD:AA:DC:83:3E:EB:97:EE:67:12:CE:9F:80:21:7B:2A:AB
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Yswxvarcgz7rl-5nEs6fgCF7Kqs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.89.0.0/16
Signature Algorithm: sha256WithRSAEncryption
9e:79:08:f4:06:ac:00:83:c7:d9:3f:f8:bf:d4:80:ef:4b:be:
d6:4d:85:d3:a7:e2:d5:20:21:56:61:f6:9a:4b:fe:a7:6b:f2:
67:49:20:6d:ba:d0:fa:df:5a:55:db:34:39:cd:6c:6b:9d:e3:
61:8f:a0:f3:62:c0:ff:76:11:4a:a2:6d:75:5c:e2:0b:a6:fd:
e2:97:39:f4:20:90:35:aa:78:9e:ce:88:79:2a:bb:b6:5f:5b:
89:2c:5d:57:23:0a:03:37:58:62:06:4f:fb:b0:3b:00:79:10:
85:1e:45:b7:26:a0:16:a3:91:05:70:ac:16:a6:d3:24:20:b5:
e0:94:63:2e:7a:7c:ed:8b:9c:12:6a:36:d9:fc:3c:6f:65:ad:
69:95:ef:ba:13:e0:b0:1a:bd:c9:e7:13:b9:ae:0d:55:bf:88:
bb:9e:16:0d:86:f8:0e:21:a8:c7:d2:db:79:d0:c3:89:30:eb:
e1:af:88:86:be:79:b9:df:c6:78:24:60:ad:93:84:c8:86:12:
2e:7f:e5:e3:e2:18:0b:8f:47:9c:ed:8d:23:aa:90:7a:20:43:
b7:4a:37:73:b8:1d:d1:d2:1e:af:61:0a:73:89:a5:10:5e:b0:
68:64:42:bb:f5:45:1e:a5:46:c1:d5:ba:6e:89:3f:2a:ae:8d:
31:89:c7:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:42:17 2025 by rpki-client