Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/Z2yy8ieMuI6YtM3djRPJM51sIZ0.roa
File: Z2yy8ieMuI6YtM3djRPJM51sIZ0.roa (raw, json)
Hash identifier: apm6wkvQ2tYih2g+N3pLTI3nZVHaJewTDzDz+p3bo6Q=
Subject key identifier: 67:6C:B2:F2:27:8C:B8:8E:98:B4:CD:DD:8D:13:C9:33:9D:6C:21:9D
Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Certificate serial: 0170
Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/Z2yy8ieMuI6YtM3djRPJM51sIZ0.roa
Signing time: Thu 01 Dec 2022 01:28:30 +0000
ROA not before: Thu 01 Dec 2022 01:28:30 +0000
ROA not after: Wed 15 Nov 2023 01:30:02 +0000
asID: 9371
IP address blocks: 210.224.176.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 368 (0x170)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Validity
Not Before: Dec 1 01:28:30 2022 GMT
Not After : Nov 15 01:30:02 2023 GMT
Subject: CN=676CB2F2278CB88E98B4CDDD8D13C9339D6C219D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:34:94:5a:0b:74:42:3d:32:cb:7d:50:02:37:
ae:d4:37:4d:d4:ba:be:64:45:52:7b:89:b2:5b:9f:
21:67:04:8e:48:2f:41:c6:e0:bd:9f:2a:8b:ca:73:
d4:c1:6b:8c:40:47:8e:b9:12:3e:62:65:3c:f3:a2:
68:f6:6c:35:14:cc:8c:01:7d:a0:31:c7:f8:1b:c0:
1f:84:3e:5b:c5:b9:02:3b:01:59:f1:f3:4c:da:95:
6a:a0:20:1a:8c:62:cd:67:2c:30:56:93:e6:5f:5f:
a5:3a:b0:ab:4a:25:32:ea:d3:83:f3:8c:4b:e5:7f:
f7:33:45:c0:4c:40:9a:b5:1a:e7:c6:a5:51:aa:1e:
61:b7:68:a0:ba:ec:30:27:11:f5:e3:5a:da:3c:be:
8f:26:88:e5:31:f3:d8:71:0d:4e:c3:09:e5:37:1b:
f6:c1:95:f7:d8:ff:30:05:ca:dc:69:7a:49:ee:e7:
b6:38:18:48:eb:de:9e:03:c6:88:39:f9:79:24:f4:
c2:1a:f7:3a:a6:ce:7f:e7:1f:c6:45:ff:b0:f5:f6:
9e:25:51:9b:e6:6b:60:32:74:e8:20:7f:6c:30:62:
c3:21:3a:18:cd:f6:94:c0:4b:ce:9a:aa:bf:ed:cc:
b9:83:dc:02:f8:c8:52:cc:59:b3:38:8f:b0:1c:f4:
57:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6C:B2:F2:27:8C:B8:8E:98:B4:CD:DD:8D:13:C9:33:9D:6C:21:9D
X509v3 Authority Key Identifier:
keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/Z2yy8ieMuI6YtM3djRPJM51sIZ0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
210.224.176.0/22
Signature Algorithm: sha256WithRSAEncryption
08:9a:64:cb:98:25:de:1b:eb:7a:4d:bf:91:7c:bf:43:c5:18:
3c:1d:f0:fc:bb:e0:69:5a:d5:91:07:4a:2e:37:ac:e6:2e:3e:
80:85:d4:6d:34:83:f0:06:d9:f9:e4:4f:aa:68:09:ef:08:4e:
14:c4:d1:8f:1b:97:45:f0:0d:01:bc:28:b4:8b:1c:b0:73:44:
2b:af:04:7a:81:72:f5:a6:e8:d3:bc:81:fd:6c:d1:cf:b5:76:
5e:26:1e:89:67:9e:aa:2e:03:47:16:8a:02:01:46:de:46:bf:
21:49:4b:48:2d:0c:dc:47:a9:09:06:0f:e3:c0:33:c2:e9:02:
41:54:8a:e7:b2:59:cf:cb:d3:10:90:60:57:f1:5e:8e:cf:10:
4d:58:f2:6e:49:e9:a8:f4:e8:38:bd:e0:9e:0b:8b:16:26:3b:
e8:0f:c2:cd:18:15:13:4f:e9:87:b4:60:b0:d0:a1:57:78:63:
76:f2:6f:7e:f2:75:a0:16:2f:ce:4a:d0:e8:2b:ed:bb:e6:dc:
15:6d:29:3a:6c:3f:9d:d3:92:6b:0d:1d:92:37:98:2f:c9:42:
57:60:66:43:8b:c7:ca:7b:64:cd:e3:b1:8b:fe:8b:31:7b:5a:
ea:ed:94:a1:97:b4:b8:5c:a0:3f:1b:21:23:70:72:b5:5b:5a:
dd:5e:59:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 20:00:58 2025 by rpki-client