Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/KkMr5IRCFNXjTDEVcvM1t6u4A20.roa
File: KkMr5IRCFNXjTDEVcvM1t6u4A20.roa (raw, json)
Hash identifier: xsFmHiXY/qTZ+tOILzsl5kKVMkOdGkqKZ4w6nrMjRtk=
Subject key identifier: 2A:43:2B:E4:84:42:14:D5:E3:4C:31:15:72:F3:35:B7:AB:B8:03:6D
Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Certificate serial: E5
Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/KkMr5IRCFNXjTDEVcvM1t6u4A20.roa
Signing time: Sun 01 May 2022 01:31:00 +0000
ROA not before: Sun 01 May 2022 01:31:00 +0000
ROA not after: Thu 27 Apr 2023 09:52:34 +0000
asID: 4713
IP address blocks: 125.200.0.0/13 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 229 (0xe5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Validity
Not Before: May 1 01:31:00 2022 GMT
Not After : Apr 27 09:52:34 2023 GMT
Subject: CN=2A432BE4844214D5E34C311572F335B7ABB8036D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b8:96:e7:ba:20:12:0a:be:50:72:f0:ed:99:
b3:6c:82:c5:66:53:8c:e4:49:5d:0a:7a:f8:ad:d1:
5f:a4:53:49:a1:4b:74:4b:0f:b4:0b:66:9d:6a:20:
fc:63:94:ff:15:65:3d:e9:64:75:68:27:34:94:08:
f5:71:c6:d5:1a:ea:d4:a0:0c:65:ac:c1:c1:a2:56:
51:a3:8f:74:75:84:c7:00:b2:b9:9c:d5:d3:93:21:
e4:c3:d9:ec:73:8b:dd:b6:75:85:27:3b:53:a2:a0:
6e:ef:98:94:40:58:a2:7c:3b:1f:59:67:4d:47:5d:
b5:73:dd:49:b8:66:93:56:32:f1:8a:7f:b6:cf:b7:
40:fd:dc:60:ba:0e:21:6a:54:55:d9:a0:a3:cc:39:
95:1f:ef:72:45:66:67:5a:72:81:50:23:02:2e:9a:
32:7f:96:34:84:46:36:33:a7:ae:4c:62:97:de:72:
a1:7a:8f:84:e6:cf:57:8c:05:4c:6c:52:f4:da:32:
d7:ba:88:f2:9d:8e:f2:94:1c:a4:59:b3:a0:b2:16:
a3:cc:70:80:7d:7d:70:d3:cd:c6:59:f8:56:ca:3d:
a9:97:ac:64:d9:13:99:5f:81:f3:c3:01:d9:ee:14:
66:1e:b5:86:25:a4:2d:0b:33:a5:bc:e3:f2:7e:a0:
8b:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:43:2B:E4:84:42:14:D5:E3:4C:31:15:72:F3:35:B7:AB:B8:03:6D
X509v3 Authority Key Identifier:
keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/KkMr5IRCFNXjTDEVcvM1t6u4A20.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
125.200.0.0/13
Signature Algorithm: sha256WithRSAEncryption
36:de:1e:e4:48:b3:1b:32:3f:2c:f7:7e:b7:73:fc:e1:55:f9:
7f:40:66:38:07:f8:1d:05:e4:fc:3a:f8:ac:56:da:fd:6c:64:
72:c8:5b:82:51:d5:08:aa:91:36:a5:f8:d5:05:6a:23:ce:e6:
7c:b2:26:de:2f:6c:28:a5:62:40:28:2a:fc:fc:89:a4:c1:87:
3f:65:58:2e:16:a9:79:09:40:3f:c9:25:42:9e:5c:4b:e8:e0:
fd:2c:75:a8:03:31:7b:74:b0:25:57:fa:5d:45:9e:a6:de:13:
4b:96:fd:99:ea:b0:59:f4:55:c1:2c:92:5d:8c:85:b8:ed:ef:
af:ab:b8:d8:66:80:8f:7e:f1:a6:a9:76:99:06:ee:0b:e1:26:
89:6e:8f:67:7d:b5:10:1e:4d:5d:78:88:54:3c:70:f1:c7:1f:
29:70:6a:78:1a:a0:5a:1e:f3:58:fe:9f:2f:43:4d:c9:48:e9:
19:06:4f:e7:2e:ad:ee:6e:b4:d0:48:de:72:27:2a:1f:06:5d:
74:dd:58:e6:06:d9:88:a9:9c:8c:d7:7e:18:5e:4f:cb:26:d9:
54:10:c9:e6:2a:c1:29:16:e0:81:a1:71:cf:7a:23:0c:a8:4a:
06:2d:9c:16:cf:f4:87:74:74:85:eb:f4:61:bc:14:3a:f7:82:
69:53:e0:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:06:47 2025 by rpki-client