Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/iWYt9z8j9H_2KdHZOXYllXn1pm0.roa
File: iWYt9z8j9H_2KdHZOXYllXn1pm0.roa (raw, json)
Hash identifier: S9MFXHGMflXYap1o88BC7/XCD6JvKyjqIjwpQWRZWYg=
Subject key identifier: 89:66:2D:F7:3F:23:F4:7F:F6:29:D1:D9:39:76:25:95:79:F5:A6:6D
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 035F
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/iWYt9z8j9H_2KdHZOXYllXn1pm0.roa
Signing time: Sun 31 Mar 2024 01:42:50 +0000
ROA not before: Sun 31 Mar 2024 01:42:50 +0000
ROA not after: Sat 15 Mar 2025 01:30:02 +0000
asID: 2516
IP address blocks: 106.185.0.0/17 maxlen: 17
Validation: Failed, certificate revoked on Wed 18 Dec 2024 01:48:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 863 (0x35f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: Mar 31 01:42:50 2024 GMT
Not After : Mar 15 01:30:02 2025 GMT
Subject: CN=89662DF73F23F47FF629D1D93976259579F5A66D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:44:99:83:ac:f4:89:b8:97:e3:71:e4:86:e6:
61:24:f2:44:41:50:94:ab:78:2c:40:5d:d0:da:94:
94:e2:1d:33:cc:e5:66:11:c5:a0:7f:94:f8:3e:95:
15:b9:8a:b9:bb:a2:ab:7f:d3:66:45:4c:e8:f2:a9:
3c:8a:c9:82:84:db:20:ba:6c:6c:6c:ae:4f:81:fd:
62:c4:46:22:9a:f1:d8:e1:29:3a:43:1a:73:3f:f1:
76:65:14:84:9a:25:c5:fb:b7:ec:82:90:b2:f8:3b:
3e:be:6e:f6:94:fe:5d:ea:1e:17:22:91:13:d2:1f:
e4:11:42:85:da:0d:45:02:23:35:49:ec:f5:e7:c2:
e0:ab:71:1e:de:02:48:d6:6d:7e:f6:98:5c:8a:52:
be:08:85:a1:2f:e1:eb:8e:ce:99:07:e9:a9:56:da:
5f:32:ab:e9:7f:7f:4c:b8:1b:35:f3:83:04:f1:e6:
4e:aa:a2:6b:69:bb:44:ea:8f:95:e5:41:9a:32:84:
7e:6e:c1:80:a7:97:9b:f1:9a:7e:11:cf:3b:bc:44:
e3:80:e8:dd:c6:21:88:be:90:6b:2d:f7:fb:84:56:
be:c2:81:6a:ed:41:82:ab:e1:e1:9c:c8:36:82:dd:
88:91:ad:70:3d:29:b0:a9:7f:68:de:00:e8:43:04:
01:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:66:2D:F7:3F:23:F4:7F:F6:29:D1:D9:39:76:25:95:79:F5:A6:6D
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/iWYt9z8j9H_2KdHZOXYllXn1pm0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
106.185.0.0/17
Signature Algorithm: sha256WithRSAEncryption
47:6a:94:2f:3e:49:b0:ba:aa:62:15:18:5f:5a:b1:c8:76:34:
3f:9f:c3:ce:4c:46:90:6b:5b:20:4e:aa:5e:0e:c7:35:81:c1:
73:58:9d:48:d5:be:fa:bf:73:d5:66:74:ee:75:69:f8:96:d2:
f1:51:83:3a:fd:5e:a2:93:e9:ea:e0:3b:7d:2f:03:a4:45:b1:
9e:54:11:5c:43:b9:df:74:89:b6:24:df:50:dd:33:6c:5b:24:
c1:32:48:5c:4e:ed:34:b4:5c:16:94:8f:bd:e1:42:e7:cc:3d:
d7:4f:fb:0a:51:c2:39:63:69:17:5a:21:2b:d5:8b:c3:db:3d:
ee:09:02:8c:cd:a3:c3:c3:03:a2:9e:a0:d0:90:4c:1b:69:36:
e7:ce:ee:2c:5e:10:a1:d1:bb:a2:97:69:18:62:d8:08:ab:1e:
4c:09:52:d6:b1:25:18:d1:af:a0:bf:7e:f6:f0:23:11:ac:a9:
7d:2c:7d:78:d2:f2:03:c6:5a:da:49:2e:1e:7a:4d:84:64:d4:
a4:e8:31:a6:ad:99:fb:35:d0:3e:55:a2:24:3c:e0:ee:30:27:
ad:25:31:ae:b7:32:d4:67:a3:03:de:81:50:53:4e:7e:87:b1:
a3:ae:3c:ed:00:b4:82:88:07:0f:66:1e:13:13:63:c7:04:c8:
78:c1:ab:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:10:12 2025 by rpki-client