Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/qT3_iqy56X3Z48-2xmrATAtGar0.roa
File: qT3_iqy56X3Z48-2xmrATAtGar0.roa (raw, json)
Hash identifier: OuhgTLG+EZ654S8UVzDkeWBAVcu19EOeg0RqpZFMVjc=
Subject key identifier: A9:3D:FF:8A:AC:B9:E9:7D:D9:E3:CF:B6:C6:6A:C0:4C:0B:46:6A:BD
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 02EA
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/qT3_iqy56X3Z48-2xmrATAtGar0.roa
Signing time: Sun 31 Mar 2024 01:35:48 +0000
ROA not before: Sun 31 Mar 2024 01:35:48 +0000
ROA not after: Sat 15 Mar 2025 01:30:02 +0000
asID: 2516
IP address blocks: 124.215.128.0/18 maxlen: 18
Validation: Failed, certificate revoked on Wed 18 Dec 2024 01:48:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 746 (0x2ea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: Mar 31 01:35:48 2024 GMT
Not After : Mar 15 01:30:02 2025 GMT
Subject: CN=A93DFF8AACB9E97DD9E3CFB6C66AC04C0B466ABD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:c0:e2:a9:c2:28:6f:4c:3e:f4:e0:e8:4b:41:
38:48:3e:b4:23:3a:84:f7:28:9e:e8:a8:1d:f7:7f:
5a:c7:48:6e:df:dc:ce:b1:8a:e3:14:2c:0b:3a:8b:
16:f1:c9:ce:82:e4:b2:4a:bd:47:3e:a8:98:10:71:
e0:50:12:ce:13:19:99:d4:de:8b:6a:15:48:cb:74:
dd:25:26:85:67:a2:0c:eb:4e:4e:62:d4:57:97:ba:
29:2b:86:a0:71:cc:da:f7:75:d3:e6:39:73:ca:6a:
0a:f8:c4:af:99:91:89:7c:2b:7a:68:e2:8f:ec:a5:
da:a2:aa:e1:c3:ba:e0:40:01:e5:57:8f:c2:b9:31:
c1:7c:f3:02:c4:1a:73:5e:64:06:87:c8:34:69:4f:
7a:34:49:fb:4b:2f:47:2a:c2:df:b3:1b:e8:2d:7b:
d8:c9:5d:46:95:32:db:ef:fd:f9:28:8e:31:e4:24:
24:1d:9e:5c:b6:35:d3:44:16:04:b5:0b:cd:49:68:
74:7f:c1:99:4f:9b:f3:bd:db:4a:b8:61:04:0a:c5:
7b:a8:f7:87:5d:e8:5e:ed:e9:63:e9:3f:52:9a:ed:
3d:76:80:46:e1:ea:87:ce:e5:64:36:3e:0b:10:ae:
82:c3:55:ab:dc:52:c9:ff:0e:7d:a7:e0:3e:4c:87:
e7:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:3D:FF:8A:AC:B9:E9:7D:D9:E3:CF:B6:C6:6A:C0:4C:0B:46:6A:BD
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/qT3_iqy56X3Z48-2xmrATAtGar0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
124.215.128.0/18
Signature Algorithm: sha256WithRSAEncryption
39:02:a4:a9:5d:96:d8:28:42:99:5b:8c:f9:58:40:73:8d:1c:
85:7e:2c:13:d4:c0:2d:9f:55:19:5e:76:75:e8:79:e6:e8:c8:
46:ba:7d:ed:06:90:4f:43:cc:ff:3b:91:90:d2:37:8e:f5:91:
16:0c:e9:7c:26:13:f8:6f:6d:f5:c2:dd:56:15:ce:60:73:86:
f3:92:49:77:e4:56:14:cf:4c:6f:55:89:bb:f8:6a:50:31:1b:
0c:5f:ae:57:12:38:d6:52:60:d5:6e:7e:e1:55:ee:e5:a9:3c:
7c:88:4f:8f:65:32:cf:9d:b1:b6:f2:87:5e:df:83:6e:18:bd:
44:19:d0:f6:08:70:7b:a7:ef:75:04:5b:a4:29:f0:de:f7:c1:
7f:10:3f:63:d5:21:48:c6:ad:d7:5c:e1:38:a9:b2:f1:33:fd:
29:3c:29:f4:2d:11:39:96:eb:87:4f:3a:f2:23:6a:84:af:19:
c7:19:68:7e:5e:e1:4b:3a:7d:d3:38:9f:fc:8e:92:f1:d7:dd:
c0:d5:df:04:52:11:37:df:8b:3a:28:9b:3e:4b:ee:35:85:cc:
d8:82:ca:7a:d8:79:cf:4a:08:0e:03:e2:6e:c1:48:a5:a4:60:
c7:fc:bd:9d:61:18:e2:f5:0b:b9:a1:32:a9:d6:1a:89:f1:38:
30:1b:2f:ee
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:22:48 2025 by rpki-client