Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/11207/3Z_24nU2KCjZB2BrqPZ-1-RSess.roa
File: 3Z_24nU2KCjZB2BrqPZ-1-RSess.roa (raw, json)
Hash identifier: 2hWSVFU3glTwysTxWZXPw7VDY/8JZRtwhx6tq8xrz2g=
Subject key identifier: DD:9F:F6:E2:75:36:28:28:D9:07:60:6B:A8:F6:7E:D7:E4:52:7A:CB
Certificate issuer: /CN=E056D0501D430CE0FCF0DB0675BAFC90B05D9BF5
Certificate serial: 4A
Authority key identifier: E0:56:D0:50:1D:43:0C:E0:FC:F0:DB:06:75:BA:FC:90:B0:5D:9B:F5
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/4FbQUB1DDOD88NsGdbr8kLBdm_U.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11207/3Z_24nU2KCjZB2BrqPZ-1-RSess.roa
Signing time: Thu 13 Apr 2023 09:52:37 +0000
ROA not before: Thu 13 Apr 2023 09:52:37 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 55391
IP address blocks: 217.178.128.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 74 (0x4a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E056D0501D430CE0FCF0DB0675BAFC90B05D9BF5
Validity
Not Before: Apr 13 09:52:37 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=DD9FF6E275362828D907606BA8F67ED7E4527ACB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:10:5d:67:95:ca:15:28:ad:6f:18:c1:63:5d:
4a:5d:bb:72:36:41:81:73:ea:ff:b5:82:a7:cd:d7:
25:ec:1a:a7:f1:0b:79:58:00:54:32:fe:d8:cf:2e:
b2:0e:89:95:2d:60:a4:c9:5d:c1:41:34:6b:58:43:
7b:11:65:97:ec:ad:ad:12:c4:a2:55:8b:5e:38:c4:
75:c9:0e:7f:d9:a1:94:00:3f:0d:f7:12:7f:36:9f:
d3:74:08:f8:8a:ce:b4:81:0f:3a:f0:29:1f:7d:a4:
26:bf:5a:99:95:3c:c0:23:fb:cc:89:4d:f2:4c:23:
07:45:4e:5b:c2:15:f7:e3:7f:11:30:ee:7a:fb:9e:
6e:28:bd:93:1b:5a:f1:59:83:05:81:a2:c7:e4:25:
94:2e:86:af:a9:66:a6:a7:70:2d:96:90:61:aa:f2:
b8:06:f5:e4:0b:12:59:11:b2:8f:90:1d:a5:40:80:
fb:15:25:b8:79:42:db:99:1c:34:82:0f:de:e2:a2:
29:e1:f8:22:40:da:b3:74:d5:62:7b:50:d3:ea:4a:
49:82:0e:18:4f:19:48:fa:59:5f:32:59:92:4f:58:
45:a8:49:cb:70:8c:16:c2:61:cd:ff:2f:6e:bf:f6:
ed:e1:1f:20:f1:57:12:23:ac:fe:85:b9:35:f1:67:
a1:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:9F:F6:E2:75:36:28:28:D9:07:60:6B:A8:F6:7E:D7:E4:52:7A:CB
X509v3 Authority Key Identifier:
keyid:E0:56:D0:50:1D:43:0C:E0:FC:F0:DB:06:75:BA:FC:90:B0:5D:9B:F5
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11207/4FbQUB1DDOD88NsGdbr8kLBdm_U.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/4FbQUB1DDOD88NsGdbr8kLBdm_U.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/11207/3Z_24nU2KCjZB2BrqPZ-1-RSess.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
217.178.128.0/17
Signature Algorithm: sha256WithRSAEncryption
63:99:3f:92:b5:fb:da:62:77:9f:61:5e:d9:5a:96:0f:2e:3e:
91:62:c3:3c:d9:c4:64:20:fe:f5:1e:86:33:f5:44:92:c8:f5:
65:ab:20:40:b2:e3:5b:c5:ce:17:93:ec:c0:76:62:0f:5f:ff:
cc:e7:56:13:92:05:1b:5c:62:da:14:d9:ea:34:38:93:9a:78:
cf:72:38:b8:b6:1a:33:0e:ef:b6:4f:0d:0a:dd:40:b9:ea:70:
47:80:8c:23:23:50:a7:a3:35:f6:b1:dc:39:5c:b9:5e:ba:df:
3b:ae:ca:61:d8:04:9f:6b:4e:1c:98:24:62:c3:76:78:47:d2:
b7:97:18:6b:81:89:0f:fa:bb:2e:ca:e3:39:06:78:6e:70:58:
e5:04:f2:af:5f:d4:fb:31:a7:ce:7b:72:b7:ea:ae:ff:63:4c:
ea:7a:38:20:af:d7:d3:a0:58:e5:25:b7:15:90:53:cf:94:76:
f1:3f:ec:ff:35:23:4d:9d:52:64:24:0e:bb:ff:53:73:90:12:
8d:1f:5b:d4:c9:25:7c:ce:86:fb:b0:f8:a6:98:6a:b0:73:6c:
e9:f5:b5:3a:63:9e:1c:a6:71:2d:f0:f9:ab:66:74:79:fc:f2:
cd:6f:aa:9a:39:2c:78:db:dd:b3:9a:4e:b1:a0:03:1e:10:58:
94:3e:64:7a
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 20:01:13 2025 by rpki-client