Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/oKsjUXwvh4XnJ4V_PYLUMfMT2NQ.roa
File: oKsjUXwvh4XnJ4V_PYLUMfMT2NQ.roa (raw, json)
Hash identifier: 5PieidzKX5rZCRNKk93axaZ33B7vqz+02UTX7B4sNzs=
Subject key identifier: A0:AB:23:51:7C:2F:87:85:E7:27:85:7F:3D:82:D4:31:F3:13:D8:D4
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 02C1
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/oKsjUXwvh4XnJ4V_PYLUMfMT2NQ.roa
Signing time: Sun 31 Mar 2024 01:33:19 +0000
ROA not before: Sun 31 Mar 2024 01:33:19 +0000
ROA not after: Sat 15 Mar 2025 01:30:02 +0000
asID: 2516
IP address blocks: 59.143.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 18 Dec 2024 01:48:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 705 (0x2c1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: Mar 31 01:33:19 2024 GMT
Not After : Mar 15 01:30:02 2025 GMT
Subject: CN=A0AB23517C2F8785E727857F3D82D431F313D8D4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:19:a0:22:c4:6a:2e:b9:16:93:dd:a0:73:1b:
90:4a:b5:b3:65:d3:81:8c:68:d0:86:04:3c:df:6b:
e2:d6:5a:a1:29:ab:a8:b2:dd:8e:bf:45:5f:dc:c7:
4d:d2:00:a7:e2:f7:cd:02:92:7e:5e:23:98:8c:58:
98:8f:f9:61:e1:09:90:d6:7f:ce:a4:43:8c:5f:96:
b7:86:61:f2:d2:b5:39:7a:5f:87:97:1d:40:79:fc:
f0:97:e8:9c:e2:ab:88:11:34:00:8f:b4:0d:fd:81:
3c:9a:5b:5a:cd:9e:6d:f1:72:4d:05:0e:9d:3b:c5:
1c:ae:97:48:fc:1d:24:b7:c8:cd:7b:12:2d:ba:1e:
da:73:92:3f:6e:57:3b:a4:ba:12:78:71:af:d9:46:
66:7f:73:ef:0d:d8:ca:83:9e:39:f9:93:f9:c6:da:
ef:c6:05:2f:65:fd:d1:09:e3:44:d6:2a:e8:9e:24:
3b:9e:e5:e6:35:2a:e7:1d:c5:58:33:4f:19:3c:e9:
2e:a5:b9:2b:0b:40:ff:ab:ae:0d:54:80:b5:ec:0d:
ac:00:8c:e2:95:34:57:70:96:2b:f6:98:4a:83:4d:
f6:fe:b4:0e:9e:c7:b5:d7:c7:6c:42:7a:15:25:47:
97:6f:4f:6e:a3:37:80:19:be:ea:e6:1a:32:04:3a:
fe:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:AB:23:51:7C:2F:87:85:E7:27:85:7F:3D:82:D4:31:F3:13:D8:D4
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/oKsjUXwvh4XnJ4V_PYLUMfMT2NQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
59.143.0.0/16
Signature Algorithm: sha256WithRSAEncryption
b1:f6:a4:90:ff:01:96:40:2e:03:56:7c:24:2f:34:54:d1:10:
5c:ec:3e:09:b5:a9:99:7f:39:92:3a:ef:e9:05:b0:20:e9:53:
d0:05:dd:29:d5:5d:d0:95:da:f0:2e:fc:79:f3:af:ed:19:58:
a0:44:00:37:fd:b4:52:83:69:45:bb:26:50:9d:cc:ba:1a:34:
04:5f:26:65:1a:5f:99:80:cc:7d:5f:5a:f3:7e:b9:2c:e2:87:
75:26:f2:54:66:3f:20:56:07:f4:0b:0f:04:34:96:be:b2:fa:
d9:b7:75:05:8b:cc:77:cd:10:6c:97:8b:a9:89:3d:11:0f:7e:
e3:30:6c:9c:62:ec:12:93:d1:fe:e0:0c:91:a8:de:2f:cd:10:
28:47:88:6f:c2:41:ff:95:2a:90:1c:a9:1e:dc:76:ca:9f:7b:
4a:da:d8:55:bf:a3:d9:fc:43:d5:67:28:72:1c:00:6f:96:1d:
6d:03:11:39:05:6d:a5:b6:33:0e:ec:ca:90:f1:8a:31:2f:f4:
9b:a0:ce:fb:30:37:ee:d1:18:48:f4:25:c8:49:12:c2:bb:83:
b1:7c:db:cb:aa:2c:51:1d:aa:6c:14:3f:ae:5c:fe:c7:9f:fc:
82:e6:9f:97:0d:5a:88:c0:81:03:c8:98:d2:e1:c4:d5:25:e8:
c9:12:9a:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:32:53 2025 by rpki-client