Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/Qf03ddiXL3CaR7eQ_Tos3C7ybSU.roa
File: Qf03ddiXL3CaR7eQ_Tos3C7ybSU.roa (raw, json)
Hash identifier: tCh6d+FfZCAG0+yWDvA3v1Dp2yzdk6dANcw1wElOcOs=
Subject key identifier: 41:FD:37:75:D8:97:2F:70:9A:47:B7:90:FD:3A:2C:DC:2E:F2:6D:25
Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Certificate serial: 017F
Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/Qf03ddiXL3CaR7eQ_Tos3C7ybSU.roa
Signing time: Thu 01 Dec 2022 01:28:35 +0000
ROA not before: Thu 01 Dec 2022 01:28:35 +0000
ROA not after: Wed 15 Nov 2023 01:30:02 +0000
asID: 10013
IP address blocks: 112.78.220.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 383 (0x17f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Validity
Not Before: Dec 1 01:28:35 2022 GMT
Not After : Nov 15 01:30:02 2023 GMT
Subject: CN=41FD3775D8972F709A47B790FD3A2CDC2EF26D25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:5d:5e:ad:27:06:fc:a3:98:61:9b:32:f1:54:
83:c9:77:d9:7f:97:de:05:4b:27:c6:2f:67:88:b4:
8a:16:ea:e7:b0:73:9e:59:7d:39:b3:09:95:99:1a:
a2:7f:69:61:79:59:f0:2b:36:37:74:56:12:46:c7:
b0:5f:dc:39:e3:c1:7a:68:46:6c:61:9a:14:31:12:
ad:45:23:7e:27:87:04:97:18:25:7f:04:3e:52:b8:
e1:98:cc:38:fd:56:12:a3:17:9d:d0:bd:37:17:8f:
8c:f3:b4:dc:20:a1:dd:01:54:7b:8b:60:07:bc:cc:
5a:43:d2:43:c6:53:c9:47:5c:d3:fc:4f:cb:44:0e:
5b:f8:c7:ad:37:52:95:4d:da:2e:38:29:ae:02:00:
0d:77:86:72:4e:49:32:89:36:65:3c:89:50:c5:ac:
f7:95:5f:5b:6c:82:23:ef:c8:52:92:d8:2e:7f:25:
34:b1:8f:08:79:7f:48:f4:c0:67:95:9a:2c:b5:19:
d2:ce:cb:91:07:2b:96:32:3a:22:de:42:65:2e:07:
6c:d6:af:3c:aa:fc:9e:55:c6:d9:5a:04:ec:d1:79:
c5:a5:88:1e:96:56:95:77:8d:37:16:89:b6:c9:10:
e6:0b:6a:e5:8e:12:51:af:69:43:c6:b4:2e:b2:73:
66:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:FD:37:75:D8:97:2F:70:9A:47:B7:90:FD:3A:2C:DC:2E:F2:6D:25
X509v3 Authority Key Identifier:
keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/Qf03ddiXL3CaR7eQ_Tos3C7ybSU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
112.78.220.0/24
Signature Algorithm: sha256WithRSAEncryption
4a:eb:f5:df:c6:12:62:75:4c:98:93:40:1b:d9:e8:0c:57:61:
2d:05:cf:0c:4b:98:e0:78:e7:ad:b0:e2:5e:4d:fd:34:61:8c:
73:51:69:03:b2:14:87:eb:5e:bf:81:7a:d3:c5:12:78:bc:55:
a2:9d:6a:5a:91:af:c7:85:98:27:8a:0a:bc:dd:87:60:88:35:
64:4e:17:47:b2:3e:cf:c3:c0:6a:a9:a1:07:f4:5f:30:27:2e:
d5:5e:1a:f0:16:6f:49:0a:ed:f9:2c:cc:60:b3:65:11:2b:ca:
ea:91:4a:17:51:ac:87:7f:e6:3f:00:f2:eb:cd:28:7b:0f:ec:
13:a4:a6:a6:1b:fb:1e:f1:d1:3a:2d:f9:7b:7b:43:d3:17:36:
c5:41:ca:e8:83:26:a0:f8:b9:44:5c:25:05:c8:ce:25:f3:96:
6f:aa:8b:45:15:be:6c:9c:9c:bb:0d:dd:75:7d:4a:40:93:49:
03:1a:66:9f:bd:52:bc:9e:9d:53:70:18:94:8d:8f:de:b3:f6:
21:39:a8:b1:e5:ac:d2:d4:d9:d9:de:90:e2:9c:7b:d8:cd:16:
c8:62:5c:c9:1e:d5:a4:9a:56:f9:0b:54:96:58:b7:40:d9:c4:
94:eb:54:f1:de:7b:90:0b:8a:58:77:6e:b2:08:9b:53:65:75:
d3:e1:51:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 14 09:10:20 2025 by rpki-client