Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/161/yURznLF5vIv8iN6fyxj7rkefN9A.roa
File: yURznLF5vIv8iN6fyxj7rkefN9A.roa (raw, json)
Hash identifier: mdWipxIl34QN4qrukABvU2enKQSyJEcnXgGLJzsNpIE=
Subject key identifier: C9:44:73:9C:B1:79:BC:8B:FC:88:DE:9F:CB:18:FB:AE:47:9F:37:D0
Certificate issuer: /CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Certificate serial: 0294
Authority key identifier: 15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/yURznLF5vIv8iN6fyxj7rkefN9A.roa
Signing time: Thu 29 Feb 2024 01:31:34 +0000
ROA not before: Thu 29 Feb 2024 01:31:34 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 2516
IP address blocks: 125.49.0.0/16 maxlen: 16
Validation: Failed, certificate revoked on Wed 18 Dec 2024 01:48:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 660 (0x294)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=15BFA3E53E59149239A168DFD92C75745AB66CB6
Validity
Not Before: Feb 29 01:31:34 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=C944739CB179BC8BFC88DE9FCB18FBAE479F37D0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:de:2d:1a:5a:74:5c:67:d3:20:18:d6:db:79:
56:20:c1:21:d7:02:f8:3d:12:d0:6b:f1:2c:0c:9d:
68:8e:33:d1:21:ee:7a:42:8d:68:64:5f:2d:a6:ee:
32:f4:ff:18:0b:37:2c:ff:aa:1a:8f:4a:29:21:fe:
0b:c6:d0:3d:bc:7e:f6:9c:1b:ba:91:e8:a5:05:0c:
85:b3:74:e5:14:d4:9d:2c:f1:67:0b:33:ec:b1:e8:
fa:25:96:1f:65:e3:d1:64:b8:0f:73:a3:19:d9:ad:
b4:ca:bb:95:16:c8:e5:0c:7c:7f:dd:97:c3:c5:01:
fa:b7:e0:c8:f1:d4:c3:69:cf:cd:82:d2:25:f8:31:
46:dc:89:f3:2a:e4:76:d2:6d:de:47:c3:e9:7e:4c:
ac:f9:04:9d:0b:74:34:9d:0e:2c:d1:59:4c:ec:9f:
e0:13:c3:14:dd:e1:fa:e5:01:38:c8:b1:ca:88:64:
40:27:27:72:1a:1d:8c:a9:05:84:c1:2c:50:3c:6b:
60:c4:0d:b2:ec:e8:1e:2a:a0:c7:d8:13:72:bc:b5:
77:ee:6c:d9:70:9d:3a:c9:69:ff:44:1e:7c:8d:50:
be:78:f1:df:db:2e:a5:48:9c:e4:0e:ef:3b:92:07:
2e:30:7d:52:f2:f3:79:ac:b6:b0:cf:6d:0a:e5:d4:
dc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:44:73:9C:B1:79:BC:8B:FC:88:DE:9F:CB:18:FB:AE:47:9F:37:D0
X509v3 Authority Key Identifier:
keyid:15:BF:A3:E5:3E:59:14:92:39:A1:68:DF:D9:2C:75:74:5A:B6:6C:B6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fb-j5T5ZFJI5oWjf2Sx1dFq2bLY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/161/yURznLF5vIv8iN6fyxj7rkefN9A.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
125.49.0.0/16
Signature Algorithm: sha256WithRSAEncryption
87:7b:cc:ae:d2:fe:d6:4a:21:15:e6:a1:cf:55:4e:a2:d1:fe:
59:ac:c1:31:8d:25:1c:0e:21:f8:6e:c6:2b:ce:5a:7a:9a:bc:
28:b8:43:66:e1:25:b4:cc:1a:b0:82:14:41:d4:eb:1b:e5:22:
12:ee:88:e3:f6:ca:2a:90:c1:8b:08:41:bb:58:b2:d6:a0:4f:
8d:52:ab:d7:d6:11:6f:e2:3f:2e:78:19:a5:58:ed:ba:80:a3:
d7:bf:3e:d9:9d:71:2f:01:56:25:02:84:08:20:9b:60:b8:4a:
79:2f:67:75:3a:af:3a:29:55:c5:93:65:6b:2b:b6:f1:36:42:
76:14:9e:d4:db:f2:fc:e7:4e:a0:34:b3:eb:da:6d:12:c6:b4:
4d:98:e6:15:09:42:e9:c9:ff:52:f2:3f:8c:3c:bb:a6:23:43:
18:6e:ae:0d:c0:d9:a1:e5:bd:51:d7:fe:cb:89:9f:c6:4c:ca:
16:2e:bc:3e:19:31:74:1c:99:c0:52:cd:68:72:be:1c:e3:8f:
47:64:a2:ad:d6:3e:56:82:9d:30:60:1c:85:a5:32:e7:59:40:
7b:0c:9e:6a:bf:e0:38:75:d8:0a:58:b5:16:f5:29:97:5c:10:
7f:4b:aa:cf:b0:07:31:c1:aa:21:74:da:ad:a2:62:0e:e2:28:
5d:d6:dc:a1
-----BEGIN CERTIFICATE-----
MIIFBzCCA++gAwIBAgICApQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTVC
RkEzRTUzRTU5MTQ5MjM5QTE2OERGRDkyQzc1NzQ1QUI2NkNCNjAeFw0yNDAyMjkw
MTMxMzRaFw0yNTAyMTQwMTMwMDNaMDMxMTAvBgNVBAMTKEM5NDQ3MzlDQjE3OUJD
OEJGQzg4REU5RkNCMThGQkFFNDc5RjM3RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDC3i0aWnRcZ9MgGNbbeVYgwSHXAvg9EtBr8SwMnWiOM9Eh7npC
jWhkXy2m7jL0/xgLNyz/qhqPSikh/gvG0D28fvacG7qR6KUFDIWzdOUU1J0s8WcL
M+yx6Pollh9l49FkuA9zoxnZrbTKu5UWyOUMfH/dl8PFAfq34Mjx1MNpz82C0iX4
MUbcifMq5HbSbd5Hw+l+TKz5BJ0LdDSdDizRWUzsn+ATwxTd4frlATjIscqIZEAn
J3IaHYypBYTBLFA8a2DEDbLs6B4qoMfYE3K8tXfubNlwnTrJaf9EHnyNUL548d/b
LqVInOQO7zuSBy4wfVLy83mstrDPbQrl1NxdAgMBAAGjggIjMIICHzAdBgNVHQ4E
FgQUyURznLF5vIv8iN6fyxj7rkefN9AwHwYDVR0jBBgwFoAUFb+j5T5ZFJI5oWjf
2Sx1dFq2bLYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug
WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz
ODEwMDAwLzE2MS9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRGcTJiTFkuY3JsMG0GCCsG
AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku
bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9GYi1qNVQ1WkZKSTVvV2pmMlN4MWRG
cTJiTFkuY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI
KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B
OTFBNzM4MTAwMDAvMTYxL3lVUnpuTEY1dkl2OGlONmZ5eGo3cmtlZk45QS5yb2Ew
RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y
cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB
MAUDAwB9MTANBgkqhkiG9w0BAQsFAAOCAQEAh3vMrtL+1kohFeahz1VOotH+WazB
MY0lHA4h+G7GK85aepq8KLhDZuEltMwasIIUQdTrG+UiEu6I4/bKKpDBiwhBu1iy
1qBPjVKr19YRb+I/LngZpVjtuoCj178+2Z1xLwFWJQKECCCbYLhKeS9ndTqvOilV
xZNlayu28TZCdhSe1Nvy/OdOoDSz69ptEsa0TZjmFQlC6cn/UvI/jDy7piNDGG6u
DcDZoeW9Udf+y4mfxkzKFi68PhkxdByZwFLNaHK+HOOPR2SirdY+VoKdMGAchaUy
51lAewyear/gOHXYCli1FvUpl1wQf0uqz7AHMcGqIXTaraJiDuIoXdbcoQ==
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:08:53 2025 by rpki-client