Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/KDlOoB_6mXUkPVvZRGVcSUaJRls.roa
File: KDlOoB_6mXUkPVvZRGVcSUaJRls.roa (raw, json)
Hash identifier: nva2XTNM6uBexlmuLcgzRW0Ls3dEXicwr1+iij9A7rY=
Subject key identifier: 28:39:4E:A0:1F:FA:99:75:24:3D:5B:D9:44:65:5C:49:46:89:46:5B
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 0379
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/KDlOoB_6mXUkPVvZRGVcSUaJRls.roa
Signing time: Sat 31 Aug 2024 01:29:44 +0000
ROA not before: Sat 31 Aug 2024 01:29:44 +0000
ROA not after: Fri 15 Aug 2025 01:30:02 +0000
asID: 2516
IP address blocks: 210.239.128.0/17 maxlen: 17
Validation: Failed, certificate revoked on Wed 18 Dec 2024 01:48:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 889 (0x379)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: Aug 31 01:29:44 2024 GMT
Not After : Aug 15 01:30:02 2025 GMT
Subject: CN=28394EA01FFA9975243D5BD944655C494689465B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:b4:b8:65:85:33:2f:94:bc:f6:d0:7c:d3:4f:
18:87:10:c1:e7:bd:83:2d:6b:31:8c:1f:f9:42:78:
18:17:a2:4b:fe:ea:82:53:bd:30:9f:7c:06:e9:80:
b2:80:aa:50:5a:8a:02:12:7f:76:92:dc:41:0c:02:
04:1b:3d:2b:f1:65:a3:93:91:d2:43:70:89:e0:ae:
16:65:4d:5f:a2:ab:8d:23:a6:4c:1f:d2:7c:b2:20:
30:c3:37:58:35:09:d6:47:e9:7d:0e:a9:4d:82:cb:
7d:44:cf:b6:1e:41:9f:2c:da:2b:4b:8b:d7:58:bd:
24:49:0e:f7:81:90:42:39:8c:78:b0:51:17:6c:2f:
76:6a:28:11:18:36:76:87:87:5f:e9:a1:76:cd:c4:
5e:5b:1d:a5:b7:1b:14:53:0a:a2:2c:eb:53:35:80:
b2:cc:87:03:72:11:15:f9:72:28:9c:ba:e6:57:a1:
c0:21:df:c8:8d:df:10:9a:3d:2c:dc:e1:d3:49:27:
e0:2d:9d:fa:34:19:f4:54:db:af:d6:77:7f:47:a3:
e5:89:62:1d:57:5e:a6:bc:83:41:c4:0e:ad:b5:e6:
09:b3:7a:f7:72:b0:3b:7b:c4:a4:ac:de:5b:f2:91:
7a:20:ef:42:3b:67:54:22:a4:e0:dc:35:76:31:3d:
52:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:39:4E:A0:1F:FA:99:75:24:3D:5B:D9:44:65:5C:49:46:89:46:5B
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/KDlOoB_6mXUkPVvZRGVcSUaJRls.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.239.128.0/17
Signature Algorithm: sha256WithRSAEncryption
78:12:37:eb:8c:30:0b:df:46:6b:0e:d0:79:c2:66:b5:92:55:
69:63:2e:42:bd:f6:1c:a3:e5:f4:7e:09:40:77:fe:5c:e9:f4:
b3:82:c6:c2:6b:1d:be:39:48:be:d2:ea:aa:7f:e8:da:ae:3e:
f9:58:40:fc:94:b8:23:07:20:67:7d:20:02:6e:d1:71:4c:4e:
a5:78:e3:6d:65:33:f2:f6:95:e6:2d:05:da:7c:0c:58:ff:40:
9c:81:ee:3b:57:15:6d:39:fb:d4:1e:98:9e:29:dc:c2:ff:51:
b8:ef:62:54:1d:18:e9:7b:10:85:f7:7b:c1:d0:a6:38:81:0f:
c9:b9:97:3c:5d:aa:b8:e2:36:bd:a5:1f:af:5d:db:d1:9b:08:
80:32:68:99:e4:78:77:10:1a:a7:46:63:ce:8c:53:fa:f4:04:
82:ed:34:65:4e:a8:84:d2:16:2f:f9:2d:00:8c:77:1f:d8:e6:
6e:99:dc:c8:5b:6c:64:36:12:cd:a3:63:01:48:8f:8e:1f:7b:
bd:89:e1:e5:b5:68:ed:77:69:be:3d:c7:4a:5a:92:83:85:17:
79:36:a8:4b:45:45:b0:b0:a6:52:d3:ee:20:15:f1:ed:9d:c9:
33:8a:07:a5:b8:ac:43:f2:29:de:f3:92:03:cd:9e:6a:ae:02:
9b:23:37:a2
-----BEGIN CERTIFICATE-----
MIIFCDCCA/CgAwIBAgICA3kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC
RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDA4MzEw
MTI5NDRaFw0yNTA4MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDI4Mzk0RUEwMUZGQTk5
NzUyNDNENUJEOTQ0NjU1QzQ5NDY4OTQ2NUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQCetLhlhTMvlLz20HzTTxiHEMHnvYMtazGMH/lCeBgXokv+6oJT
vTCffAbpgLKAqlBaigISf3aS3EEMAgQbPSvxZaOTkdJDcIngrhZlTV+iq40jpkwf
0nyyIDDDN1g1CdZH6X0OqU2Cy31Ez7YeQZ8s2itLi9dYvSRJDveBkEI5jHiwURds
L3ZqKBEYNnaHh1/poXbNxF5bHaW3GxRTCqIs61M1gLLMhwNyERX5ciicuuZXocAh
38iN3xCaPSzc4dNJJ+Atnfo0GfRU26/Wd39Ho+WJYh1XXqa8g0HEDq215gmzevdy
sDt7xKSs3lvykXog70I7Z1QipODcNXYxPVK3AgMBAAGjggIkMIICIDAdBgNVHQ4E
FgQUKDlOoB/6mXUkPVvZRGVcSUaJRlswHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf
2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG
cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMTYxL0tEbE9vQl82bVhVa1BWdlpSR1ZjU1VhSlJscy5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB
MAYDBAfS74AwDQYJKoZIhvcNAQELBQADggEBAHgSN+uMMAvfRmsO0HnCZrWSVWlj
LkK99hyj5fR+CUB3/lzp9LOCxsJrHb45SL7S6qp/6NquPvlYQPyUuCMHIGd9IAJu
0XFMTqV4421lM/L2leYtBdp8DFj/QJyB7jtXFW05+9QemJ4p3ML/UbjvYlQdGOl7
EIX3e8HQpjiBD8m5lzxdqrjiNr2lH69d29GbCIAyaJnkeHcQGqdGY86MU/r0BILt
NGVOqITSFi/5LQCMdx/Y5m6Z3MhbbGQ2Es2jYwFIj44fe72J4eW1aO13ab49x0pa
koOFF3k2qEtFRbCwplLT7iAV8e2dyTOKB6W4rEPyKd7zkgPNnmquApsjN6I=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:25:23 2025 by rpki-client