Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/z2pAdvEeBjdTVoJVckNBIZhydY0.roa
File: z2pAdvEeBjdTVoJVckNBIZhydY0.roa (raw, json)
Hash identifier: Q/F0vPRVx0KmZTSVUsLm2YEWVKBLdjD9gsq7sv0RF8A=
Subject key identifier: CF:6A:40:76:F1:1E:06:37:53:56:82:55:72:43:41:21:98:72:75:8D
Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Certificate serial: 0191
Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/z2pAdvEeBjdTVoJVckNBIZhydY0.roa
Signing time: Sat 01 Jul 2023 01:30:53 +0000
ROA not before: Sat 01 Jul 2023 01:30:53 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 4713
IP address blocks: 220.220.0.0/15 maxlen: 15
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 401 (0x191)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Validity
Not Before: Jul 1 01:30:53 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=CF6A4076F11E063753568255724341219872758D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ae:f4:34:d6:7c:1e:1e:68:30:b5:2c:a8:9e:
bf:57:06:85:6d:66:30:ce:a8:f6:44:88:8d:76:b8:
f4:33:b7:09:86:29:8c:39:1e:38:3a:57:ba:28:36:
96:01:2c:66:b5:99:d7:da:99:b0:6e:b9:7c:3a:7f:
b1:2a:19:9e:40:66:eb:23:91:52:03:f8:ff:24:8c:
d9:13:f7:10:d4:a6:38:80:0b:ff:4b:85:8e:73:59:
8c:6c:96:b0:af:b7:c7:be:f3:13:ab:37:7b:e8:07:
d2:9a:61:34:93:5a:dd:d1:9b:f8:49:74:67:45:d6:
fa:1c:13:67:3d:6a:7c:9d:1f:f0:dc:d3:40:33:18:
ee:5c:b6:6f:9f:5b:97:e6:74:f4:0a:dd:fe:1d:db:
14:a2:2a:5b:4f:79:3c:3f:39:b9:9e:fa:78:e0:d1:
f2:27:9d:ad:cb:65:8b:fb:e8:8e:2a:d2:e4:1b:34:
76:4d:41:67:ca:ca:0e:1b:1c:d0:a2:64:16:bd:dc:
d3:d5:5b:ce:d4:b0:a9:58:c0:4f:b4:9d:31:25:63:
62:11:ac:64:d6:3c:bc:c0:e5:4e:0d:06:54:75:b0:
62:77:74:cb:ee:be:08:e8:58:1b:b5:c6:5f:23:ff:
a4:a8:5a:89:ce:67:e6:2e:78:ec:10:2b:40:b0:6e:
15:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:6A:40:76:F1:1E:06:37:53:56:82:55:72:43:41:21:98:72:75:8D
X509v3 Authority Key Identifier:
keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/z2pAdvEeBjdTVoJVckNBIZhydY0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.220.0.0/15
Signature Algorithm: sha256WithRSAEncryption
aa:b4:63:38:53:f9:41:bb:09:20:64:29:95:00:49:53:0d:8b:
e5:de:96:6f:2a:b5:e3:a8:bd:ad:44:8d:51:ea:fd:13:39:07:
32:9b:9e:ef:91:48:b5:ea:e8:de:98:ce:c5:62:20:32:a8:b8:
9e:33:14:ae:81:40:51:cc:30:6e:ab:3f:bb:4b:a0:7e:10:c1:
28:19:0b:fc:62:ca:ce:6f:2d:f7:e0:8f:5f:70:24:5c:b6:f2:
93:2a:a8:8a:ab:42:04:6e:2c:42:59:2f:1c:6e:6a:3b:7f:21:
1d:5e:d9:e6:6c:42:0e:c7:35:79:32:c5:cb:db:28:23:5c:a1:
9c:26:c7:ea:54:bd:66:25:ff:da:f7:31:f4:c8:aa:b1:99:a7:
52:31:e7:05:18:3f:ef:ad:e7:9a:e5:e9:e5:ff:ad:35:c2:8e:
25:09:39:97:90:b5:3f:af:b6:7e:b4:d7:cd:9c:65:29:d7:b4:
e2:7b:32:f1:e3:59:24:86:0e:e3:cf:4b:aa:36:ec:d8:55:10:
54:ed:e4:c2:d3:b2:5a:8c:a7:a3:20:dc:18:39:f7:de:47:d8:
3d:10:e8:35:46:7d:79:2b:02:02:27:dd:93:4e:95:17:ad:36:
22:d1:ef:c4:33:5b:60:cf:7f:d7:ee:db:51:fc:6f:b2:f8:d3:
54:8b:73:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:32:56 2025 by rpki-client