Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/3mkrmhJ_bvK-l5mWs8UiK_D1WrQ.roa
File: 3mkrmhJ_bvK-l5mWs8UiK_D1WrQ.roa (raw, json)
Hash identifier: XXlp4a+wwS6XfJ/XwkeX/b4NJZcwF9hzCfP8zCPe+yU=
Subject key identifier: DE:69:2B:9A:12:7F:6E:F2:BE:97:99:96:B3:C5:22:2B:F0:F5:5A:B4
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 01E7
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/3mkrmhJ_bvK-l5mWs8UiK_D1WrQ.roa
Signing time: Mon 01 May 2023 01:33:45 +0000
ROA not before: Mon 01 May 2023 01:33:45 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 2516
IP address blocks: 222.4.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Sun 31 Mar 2024 01:38:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 487 (0x1e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: May 1 01:33:45 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=DE692B9A127F6EF2BE979996B3C5222BF0F55AB4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bf:b0:b0:22:13:82:be:6d:53:30:cb:da:4d:
b9:f6:4a:c8:ee:df:7d:08:29:86:ac:e1:15:76:90:
87:8b:f3:15:87:bb:f9:36:ef:cc:46:ab:37:c2:70:
ae:17:87:c0:f8:38:b2:0f:fa:bd:d8:06:b5:7c:77:
b3:90:21:14:ce:ad:17:02:7d:0b:56:72:d3:ed:0c:
72:40:6d:95:07:09:49:5e:d4:2f:d4:6a:58:fc:46:
1b:db:b7:67:ef:e3:a2:2e:dd:fb:8c:9a:ff:2b:12:
ae:e1:42:ca:12:65:d6:4b:c3:c6:ad:2a:67:73:c6:
52:94:98:d5:62:84:73:1a:37:22:19:53:94:63:43:
03:05:3f:b8:61:1b:44:f7:23:99:2a:ea:28:98:42:
7d:c5:78:47:60:57:eb:cd:96:22:91:30:4d:9c:ca:
63:bc:80:f3:79:3e:f5:28:00:31:b4:a8:a7:a3:15:
8e:59:b7:b5:14:48:c6:c2:5b:ff:65:6a:5e:9f:d9:
cd:5d:ed:21:28:a4:b2:7b:aa:00:01:01:cb:83:a1:
e4:c7:1f:2f:5f:34:8d:18:58:8e:c0:1e:52:56:bd:
f0:b6:b0:fb:9e:1c:a9:2e:e4:ca:18:73:05:ff:d2:
b4:68:6b:d0:d6:b4:49:fd:d7:eb:ec:8e:17:52:a2:
20:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:69:2B:9A:12:7F:6E:F2:BE:97:99:96:B3:C5:22:2B:F0:F5:5A:B4
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/3mkrmhJ_bvK-l5mWs8UiK_D1WrQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
222.4.0.0/16
Signature Algorithm: sha256WithRSAEncryption
2b:ba:b6:46:5d:1f:36:28:29:b0:14:30:d6:24:e3:91:96:07:
bd:1b:a4:74:a5:06:75:13:d2:31:7b:b6:68:9e:32:9c:f4:0a:
e9:91:d8:5e:c6:e6:18:95:1b:f6:49:47:cb:cb:52:e3:0d:df:
e9:92:5b:03:17:3d:1b:4c:f5:da:03:89:81:b2:8b:f4:42:76:
2c:bf:94:fd:f8:da:37:85:9f:db:9c:1a:bf:ea:86:fe:f8:9f:
99:9e:64:18:73:6d:af:ef:08:05:14:cd:eb:79:01:6b:28:91:
16:f2:d7:f4:2e:b0:2a:76:f0:dc:57:c5:7e:87:f9:6f:37:2d:
0f:20:a5:d1:e0:86:f3:f5:ab:6a:71:84:39:1e:d0:88:2f:30:
b4:8c:e5:a5:8c:e2:43:0e:ff:11:8b:e8:b3:65:e6:09:23:f3:
61:3d:76:ec:3e:94:59:62:8c:11:a7:c4:16:cf:06:9e:be:11:
25:fa:df:7e:50:d3:4a:c3:5e:d2:92:1e:90:c6:ab:78:50:46:
b2:0f:9f:8f:7e:24:aa:c4:99:5e:9e:5b:ae:0b:d4:92:d2:cd:
97:44:42:49:43:5c:11:e2:a5:87:2e:8a:47:1e:88:bd:5d:64:
e1:5f:f5:84:30:6d:cb:68:3b:b9:04:93:95:7d:1b:7c:ac:94:
96:d3:b5:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 31 02:49:21 2024 by rpki-client on console-ams.rpki-client.org