Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/3BfFC3OEFbF6W3-7QFzLDsXMrzY.roa
File: 3BfFC3OEFbF6W3-7QFzLDsXMrzY.roa (raw, json)
Hash identifier: rJGvlysHNuy9YRuD7fH5HsCmGzBG40ysy4wvZpBNoeQ=
Subject key identifier: DC:17:C5:0B:73:84:15:B1:7A:5B:7F:BB:40:5C:CB:0E:C5:CC:AF:36
Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Certificate serial: 01BE
Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/3BfFC3OEFbF6W3-7QFzLDsXMrzY.roa
Signing time: Wed 01 Nov 2023 01:29:21 +0000
ROA not before: Wed 01 Nov 2023 01:29:21 +0000
ROA not after: Mon 14 Oct 2024 01:30:03 +0000
asID: 7684
IP address blocks: 49.212.65.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 446 (0x1be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Validity
Not Before: Nov 1 01:29:21 2023 GMT
Not After : Oct 14 01:30:03 2024 GMT
Subject: CN=DC17C50B738415B17A5B7FBB405CCB0EC5CCAF36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c4:96:94:b4:e5:f1:bb:f5:4c:13:02:f4:d5:
6e:4a:e9:7d:e1:24:b3:a0:f8:c8:e9:9c:e5:d6:15:
8b:ce:46:06:ad:6a:f4:97:1d:46:4b:3f:7f:98:57:
9a:b6:30:7d:e7:a8:c6:2d:4e:bc:da:69:a8:2f:46:
5b:c7:89:c7:02:86:8b:bd:ce:d1:cb:16:2b:65:1b:
a1:7f:d0:61:ce:fe:0d:43:ae:6e:62:1e:f7:cf:06:
9c:0f:47:32:46:2e:4c:1b:59:88:3e:b9:b9:6e:7c:
4a:97:b9:3c:9d:86:82:ad:bd:8a:5f:40:55:5f:00:
1d:47:d1:db:83:c3:24:89:9f:3a:55:4b:2f:af:21:
21:70:57:90:80:fe:94:1c:ce:0e:43:fd:23:8b:3a:
6f:73:1c:4e:86:d1:e4:23:60:c8:66:79:eb:cc:e2:
c3:b2:4d:d2:01:10:b4:ec:3a:08:94:a2:94:a7:28:
4b:fd:c6:e5:7b:e5:cd:34:dd:1c:1f:64:c9:f5:18:
aa:76:b3:3a:76:d2:6f:ad:21:1a:bd:dc:96:9f:67:
a7:d7:8f:00:05:e1:0f:ff:c9:a4:c8:eb:3c:fb:7d:
1e:2f:e1:d8:48:2b:1e:ac:b5:98:d6:e5:e7:33:e2:
f4:9e:d5:44:b5:3c:ab:c7:dc:c5:37:8b:7d:27:a5:
c7:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:17:C5:0B:73:84:15:B1:7A:5B:7F:BB:40:5C:CB:0E:C5:CC:AF:36
X509v3 Authority Key Identifier:
keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/3BfFC3OEFbF6W3-7QFzLDsXMrzY.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.212.65.0/24
Signature Algorithm: sha256WithRSAEncryption
00:42:d4:d5:96:b4:56:73:22:96:9c:87:fe:b7:80:5b:43:f3:
e2:27:30:ed:1d:6b:a1:2f:c3:f5:df:62:a1:6e:1e:38:15:c4:
e1:24:20:d4:6f:fc:95:21:9d:21:3d:01:25:2f:51:eb:d9:cd:
b5:93:96:f6:a4:03:2b:aa:8a:d0:1c:46:c1:a4:bf:b2:24:c5:
a1:fa:f3:cd:02:3e:f9:a3:97:12:a7:6b:87:a6:b9:ff:e4:2f:
1d:2c:e6:71:07:74:32:8d:7a:f6:ee:92:3a:df:25:05:f8:b4:
14:37:c3:7f:cc:7b:e6:ef:a5:bc:62:2d:0e:5f:c6:44:8e:4e:
9b:31:19:c0:3e:89:64:f4:9b:94:8a:a1:9d:83:f6:cc:1a:1b:
04:3b:57:1c:f0:40:00:a5:88:e2:d1:4a:8c:7a:e4:c3:b2:88:
18:5b:06:99:b0:a6:bc:44:05:c2:dd:a9:78:33:3c:ca:46:93:
04:0b:da:70:42:e8:99:ec:fe:84:a3:e4:2e:ea:d7:d4:7b:6c:
a0:02:bf:b7:f6:73:4f:c5:46:b7:1c:e8:9b:5a:47:49:52:6c:
30:af:df:90:27:c4:63:dc:ed:3a:bb:59:dc:0e:07:38:03:04:
3d:08:ae:b0:20:9e:4f:b3:f6:2f:0d:54:71:2d:2e:f4:73:33:
86:54:88:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:42:07 2025 by rpki-client