Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/3W7eH6rq8aEF0I3Xx2stA_m-YnM.roa
File: 3W7eH6rq8aEF0I3Xx2stA_m-YnM.roa (raw, json)
Hash identifier: T4njfMabxeiKmH2sa1luZMxp2e6MbfGiYdbHQZDO5IU=
Subject key identifier: DD:6E:DE:1F:AA:EA:F1:A1:05:D0:8D:D7:C7:6B:2D:03:F9:BE:62:73
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 0213
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/3W7eH6rq8aEF0I3Xx2stA_m-YnM.roa
Signing time: Mon 01 May 2023 01:37:47 +0000
ROA not before: Mon 01 May 2023 01:37:47 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 2516
IP address blocks: 203.140.128.0/19 maxlen: 19
Validation: Failed, certificate revoked on Sun 31 Mar 2024 01:42:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 531 (0x213)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: May 1 01:37:47 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=DD6EDE1FAAEAF1A105D08DD7C76B2D03F9BE6273
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:01:0c:bc:67:79:60:90:4d:f6:40:65:1c:57:
b7:27:30:77:29:96:68:85:fb:a7:7b:8b:d6:ae:63:
0a:b2:f4:9a:04:81:73:8e:38:d9:4d:4e:fd:65:80:
0d:29:b9:f8:36:f7:0b:9f:ed:bb:98:d7:83:8b:90:
1e:3d:3f:08:f0:dc:9d:92:3b:50:8f:2c:24:34:83:
f5:cf:fb:12:91:2d:ad:19:78:51:a6:f6:87:89:21:
3a:55:11:35:c2:a2:35:00:1b:cb:ec:cd:bd:69:64:
9d:9b:b3:99:e0:41:99:52:f7:0b:36:d2:22:b6:bb:
58:dd:1a:9e:7c:84:b9:4f:d4:80:13:b2:a5:84:ae:
d1:ff:87:48:c8:fb:f4:76:30:4f:f9:66:bb:ec:d0:
ea:fb:ff:b7:51:ff:48:f7:15:5d:6c:22:a4:70:6b:
b9:66:7a:04:da:c6:de:bc:7e:e8:d0:1a:97:6e:20:
60:8a:7b:d8:ff:be:27:04:93:0b:a5:57:a1:fa:ff:
bb:40:c0:97:dc:19:c0:31:df:19:5f:8b:f2:c8:99:
57:b1:58:b8:0d:d9:a2:98:15:9f:f0:86:42:3b:77:
4f:0d:9a:87:68:94:20:d5:85:75:45:ba:df:11:83:
30:78:0e:96:d3:11:d4:23:ed:60:75:8e:04:1a:0a:
07:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:6E:DE:1F:AA:EA:F1:A1:05:D0:8D:D7:C7:6B:2D:03:F9:BE:62:73
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/3W7eH6rq8aEF0I3Xx2stA_m-YnM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.140.128.0/19
Signature Algorithm: sha256WithRSAEncryption
7a:c8:11:00:d2:ec:4a:6f:de:b4:01:c7:77:9e:2e:a9:20:dd:
2a:23:01:8c:f1:6a:e8:64:3c:1a:d5:a3:f9:24:bc:7d:55:1d:
cc:ce:28:0e:2e:e1:7a:b6:96:7b:e4:a1:c2:fa:99:1b:d4:31:
21:c2:a8:f7:ad:89:b9:6a:c2:8f:20:b2:54:fd:f5:b6:e2:86:
b7:e6:23:75:e3:47:d5:a8:60:69:ce:7d:42:ed:db:18:3f:8b:
4a:99:a7:2a:0c:90:c5:11:bb:dd:cd:c4:89:48:ff:4e:8e:8b:
66:be:31:59:ee:96:a7:72:cd:79:44:12:8a:cd:26:4f:70:87:
ee:95:4e:a6:9f:73:4e:84:87:78:0e:69:d7:7d:d8:9a:0f:e0:
ab:f9:6b:df:7d:cc:fa:a2:47:38:f2:d6:54:15:52:da:6e:11:
86:6a:e8:e3:43:34:dd:c9:2d:85:0b:69:b9:db:65:c8:29:64:
57:e5:a1:9a:dd:39:b8:c9:72:f8:1b:63:7d:a1:a5:f1:aa:1c:
3b:61:8c:a8:ae:8c:9d:78:9f:3c:2e:95:63:00:32:8e:72:0b:
bf:6d:71:ff:9e:c6:81:c7:d9:38:4d:45:79:3f:51:0e:0a:70:
c3:cc:81:e7:d0:9d:39:59:45:31:58:26:b4:96:fc:4f:a8:26:
78:43:73:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 31 03:12:33 2024 by rpki-client on console-fra.rpki-client.org