Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/O_p4NENaD7rLkODz98bFdHJomSU.roa
File: O_p4NENaD7rLkODz98bFdHJomSU.roa (raw, json)
Hash identifier: rl93KAIaW/MFW0dNCcbw5jDyOgwochci+E3iasxCZ+k=
Subject key identifier: 3B:FA:78:34:43:5A:0F:BA:CB:90:E0:F3:F7:C6:C5:74:72:68:99:25
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 01A6
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/O_p4NENaD7rLkODz98bFdHJomSU.roa
Signing time: Mon 01 May 2023 01:30:40 +0000
ROA not before: Mon 01 May 2023 01:30:40 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 2516
IP address blocks: 121.111.128.0/18 maxlen: 18
Validation: Failed, certificate revoked on Sun 31 Mar 2024 01:33:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 422 (0x1a6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: May 1 01:30:40 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=3BFA7834435A0FBACB90E0F3F7C6C57472689925
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:24:cd:a2:fa:c3:d1:28:69:dd:aa:d0:29:8e:
f5:55:56:77:01:79:7d:9b:51:39:4d:5a:48:8e:1e:
ef:26:ec:2d:09:c5:a6:1d:73:5d:9f:29:cf:a4:2a:
3a:c3:85:ae:91:f9:5a:f0:d1:3c:72:7d:d4:08:32:
f9:f3:98:f5:90:dd:26:24:e1:fe:34:da:a1:3a:23:
97:a9:d5:6b:d5:e2:2d:4b:dd:29:3f:51:8b:3f:2b:
04:d5:aa:b4:1f:eb:ab:62:cd:66:2f:58:36:35:a0:
4e:a8:5f:56:49:29:5d:e8:ae:f6:da:cd:df:ac:4e:
ec:01:f6:e4:d1:fe:39:81:55:29:18:81:87:e8:88:
ae:67:2a:dc:89:96:46:55:6c:e6:c3:c5:8e:d0:45:
05:5a:ab:85:b8:3a:08:2e:0d:14:97:2f:52:da:c3:
c7:17:bc:70:47:38:ba:3c:94:45:ba:51:cd:eb:28:
50:61:1d:19:8e:fb:d9:ab:7e:ae:f4:f1:2b:c0:3b:
9c:86:bd:b2:e2:af:c7:80:a8:88:69:2a:76:45:e7:
71:c3:3b:64:ab:24:dc:7d:38:6c:03:df:31:e9:ee:
21:0e:cd:cd:d6:85:b8:9e:67:84:d7:48:e3:0c:41:
9c:73:5c:7e:f8:dd:49:cb:9f:63:f0:ba:13:9f:32:
af:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:FA:78:34:43:5A:0F:BA:CB:90:E0:F3:F7:C6:C5:74:72:68:99:25
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/O_p4NENaD7rLkODz98bFdHJomSU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
121.111.128.0/18
Signature Algorithm: sha256WithRSAEncryption
25:df:cc:e1:6b:40:81:5f:bd:b8:73:58:15:34:55:05:83:fe:
b9:7b:7b:7c:34:17:01:79:09:cf:e2:65:ec:56:f7:16:a7:01:
1b:ed:a9:f7:41:9a:b1:1b:7a:63:b4:df:1d:92:15:38:a7:05:
87:7e:0b:19:ba:e5:5f:9a:ab:91:35:b4:82:b1:c8:70:35:02:
35:c0:a6:1c:a9:f1:46:d9:72:78:db:2d:b7:97:eb:ac:19:e7:
78:2a:79:ee:49:88:fc:20:90:2d:f4:eb:31:ab:11:e7:54:9e:
7b:a6:17:dd:18:43:a8:16:65:46:a2:e6:92:37:91:b7:22:3d:
2b:5a:90:6e:d9:ac:4e:dc:7b:40:47:92:3d:80:50:47:43:00:
ed:2c:cd:dd:18:00:b6:e3:9a:3d:3a:56:07:02:05:0b:97:a3:
94:13:34:db:e4:c0:85:d4:f0:48:ef:2b:0a:79:6e:07:ae:97:
b0:5a:00:df:a2:75:ce:57:8d:41:21:09:42:a7:02:ed:8b:60:
40:aa:fc:3d:0b:d4:ee:5d:d5:52:af:17:72:21:70:d7:6b:da:
9a:a3:fe:01:22:13:ad:34:a2:75:df:be:d7:31:68:52:18:fa:
54:79:39:e7:49:ed:9c:2d:08:f5:3d:05:34:6b:61:99:12:1d:
3e:7f:5b:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 31 03:12:34 2024 by rpki-client on console-fra.rpki-client.org