Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20063/2behOMatpjIMzric62mc5qiUfjw.roa
File: 2behOMatpjIMzric62mc5qiUfjw.roa (raw, json)
Hash identifier: jip8wqbqeHFL4tror2l1src1VvuZNweShih7YzztaUc=
Subject key identifier: D9:B7:A1:38:C6:AD:A6:32:0C:CE:B8:9C:EB:69:9C:E6:A8:94:7E:3C
Certificate issuer: /CN=9DB0764C6DFC1E3DF6BD580EA6994A1E7098F52A
Certificate serial: 3D
Authority key identifier: 9D:B0:76:4C:6D:FC:1E:3D:F6:BD:58:0E:A6:99:4A:1E:70:98:F5:2A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/2behOMatpjIMzric62mc5qiUfjw.roa
Signing time: Thu 22 Jun 2023 00:34:05 +0000
ROA not before: Thu 22 Jun 2023 00:34:05 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 24277
IP address blocks: 203.160.16.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 61 (0x3d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9DB0764C6DFC1E3DF6BD580EA6994A1E7098F52A
Validity
Not Before: Jun 22 00:34:05 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=D9B7A138C6ADA6320CCEB89CEB699CE6A8947E3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a2:8e:cc:bb:fd:9a:c4:a9:c0:3d:58:e7:10:
1e:67:dd:f8:b5:6c:1a:a0:4a:66:66:dd:63:f2:41:
85:8d:aa:3e:48:64:c7:b8:7f:2f:0f:a4:06:69:a4:
c5:16:a8:d2:b5:b0:c0:06:ef:20:81:95:34:c7:4a:
2b:b2:20:0d:a7:40:40:3d:11:8c:6e:a6:39:b1:d7:
a2:a1:06:66:74:94:2a:c0:59:88:44:8c:60:72:b1:
6d:f6:a9:9d:48:4b:ea:f1:ba:8d:ac:44:86:22:b2:
b8:30:1a:8b:50:0c:2c:21:69:4a:89:a5:eb:09:9a:
c1:94:75:a8:48:92:a1:ec:17:b9:e2:04:31:5d:cf:
47:b1:08:38:ff:50:a6:f9:00:4f:40:df:20:2e:27:
1a:c2:1d:e2:10:ed:e1:70:ca:e2:67:e6:31:d1:90:
76:b8:ba:17:16:a8:ff:9e:51:18:07:fa:70:1f:20:
b7:9b:64:fc:06:b5:19:ee:b3:f3:71:cd:a0:45:92:
c5:c0:cd:0e:7f:5b:23:ad:ed:5f:ff:92:31:cc:68:
cb:c7:36:dc:03:c0:52:09:fe:19:d5:62:31:40:0c:
9f:07:23:84:e1:21:75:51:f7:e5:26:a2:65:1c:8d:
f4:6e:e9:da:60:81:37:32:0a:02:7e:4f:95:24:55:
4d:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:B7:A1:38:C6:AD:A6:32:0C:CE:B8:9C:EB:69:9C:E6:A8:94:7E:3C
X509v3 Authority Key Identifier:
keyid:9D:B0:76:4C:6D:FC:1E:3D:F6:BD:58:0E:A6:99:4A:1E:70:98:F5:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/nbB2TG38Hj32vVgOpplKHnCY9So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/2behOMatpjIMzric62mc5qiUfjw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.16.0/24
Signature Algorithm: sha256WithRSAEncryption
82:de:8d:58:bf:62:26:ad:7f:5f:c7:c6:da:21:76:74:5e:2e:
aa:38:df:74:de:12:53:ec:74:b8:64:6e:75:e3:0a:7e:40:b5:
67:5e:85:2f:75:eb:96:a7:74:12:88:19:1d:b5:3f:c3:b0:bf:
48:27:14:87:f6:f9:7b:b9:37:22:9a:ce:ed:04:28:d3:ad:26:
7d:9f:ff:1d:96:2c:f8:68:23:ef:3c:fc:fa:27:e0:4a:20:fa:
30:8f:ab:cb:92:0c:b2:5c:be:3c:55:6e:d6:00:28:11:4d:09:
a0:0d:23:52:f4:4d:bf:3b:8a:8f:1f:c0:07:5a:36:2b:9d:ae:
0c:9a:19:01:6f:3d:8b:5f:a5:af:a0:b4:c8:fb:5a:1a:35:01:
e0:42:46:42:c3:7a:d6:13:3d:01:a4:09:d5:6b:a0:ff:c1:67:
e5:11:37:7f:d9:98:be:d0:b6:8b:1c:55:4a:d5:95:f9:dd:85:
86:39:9c:d4:29:5e:96:aa:4e:d8:db:3f:1c:c0:ab:e1:54:9d:
b1:45:da:b6:a3:60:ae:ce:ea:7a:85:91:20:46:5b:3b:b0:89:
58:73:4b:10:da:29:15:41:71:9b:2e:ef:e8:47:1c:12:83:1c:
63:01:bd:ae:09:8b:e0:c6:01:9c:fe:1a:3c:14:8a:78:84:a6:
86:c2:88:ec
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:25:31 2025 by rpki-client