Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20063/OBZ1MiwGlk8I_gVrk-GLCIpbZsw.roa
File: OBZ1MiwGlk8I_gVrk-GLCIpbZsw.roa (raw, json)
Hash identifier: iK+XvvivMfedcvNH2CTu6WFwprfqJcpvEvzw/u+9lyo=
Subject key identifier: 38:16:75:32:2C:06:96:4F:08:FE:05:6B:93:E1:8B:08:8A:5B:66:CC
Certificate issuer: /CN=9DB0764C6DFC1E3DF6BD580EA6994A1E7098F52A
Certificate serial: 72
Authority key identifier: 9D:B0:76:4C:6D:FC:1E:3D:F6:BD:58:0E:A6:99:4A:1E:70:98:F5:2A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/OBZ1MiwGlk8I_gVrk-GLCIpbZsw.roa
Signing time: Thu 22 Jun 2023 00:36:59 +0000
ROA not before: Thu 22 Jun 2023 00:36:59 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 24277
IP address blocks: 203.160.25.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114 (0x72)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9DB0764C6DFC1E3DF6BD580EA6994A1E7098F52A
Validity
Not Before: Jun 22 00:36:59 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=381675322C06964F08FE056B93E18B088A5B66CC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:ae:0d:5f:82:b0:19:bd:bb:a3:b9:4a:61:64:
3c:5b:b6:47:2c:93:12:11:a5:7b:5f:76:43:f6:d3:
15:86:dd:59:49:e6:92:b1:0b:c8:68:70:86:3e:f6:
bd:c4:43:f8:c2:65:43:11:7c:ae:9d:d0:89:e9:82:
22:16:c0:d6:3e:f6:1f:1b:3c:df:35:df:75:08:93:
89:8b:02:46:47:15:d2:4b:df:80:3b:65:64:f3:e4:
4f:2f:50:d6:13:96:e9:6c:c0:95:95:69:51:9c:66:
85:33:1f:e6:b9:15:24:b2:1f:ec:17:66:65:48:be:
ae:47:5d:11:6a:9c:da:3a:77:03:01:61:37:11:d6:
08:0d:38:29:5a:89:1f:2e:b9:25:a4:fb:47:ab:62:
29:0d:62:0f:45:c2:53:e8:83:38:05:54:81:71:36:
96:f8:42:04:ff:13:a7:cb:b5:0f:73:9b:99:4c:c3:
f8:89:ff:bd:ba:78:ce:97:f4:b6:ce:1d:f0:11:81:
fa:80:94:1a:c9:e8:30:47:0a:63:07:6c:bb:b4:75:
b5:f4:84:28:b7:8f:3a:c0:f2:ba:cc:fb:d7:1f:9e:
df:8b:93:54:72:a4:26:71:78:bb:e6:b8:ee:7e:7a:
96:b2:50:75:16:bd:38:51:19:05:67:7e:80:3c:25:
c6:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:16:75:32:2C:06:96:4F:08:FE:05:6B:93:E1:8B:08:8A:5B:66:CC
X509v3 Authority Key Identifier:
keyid:9D:B0:76:4C:6D:FC:1E:3D:F6:BD:58:0E:A6:99:4A:1E:70:98:F5:2A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/nbB2TG38Hj32vVgOpplKHnCY9So.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/nbB2TG38Hj32vVgOpplKHnCY9So.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20063/OBZ1MiwGlk8I_gVrk-GLCIpbZsw.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.160.25.0/24
Signature Algorithm: sha256WithRSAEncryption
72:5e:b0:49:87:53:06:6b:22:24:73:99:82:9d:73:3f:f4:2d:
03:23:01:2d:24:2f:0c:24:9c:4e:aa:5a:c8:2e:bd:69:20:5c:
3b:52:b4:2c:25:25:a9:86:0e:25:2c:04:5c:4b:5d:57:37:6b:
f9:a6:86:f3:c5:7b:79:32:e7:f5:73:a6:1c:88:9c:bb:10:3c:
4e:f4:19:23:ca:34:a3:3c:a9:66:7b:70:c7:31:9c:b1:16:6c:
e3:36:64:9b:ee:59:b2:8f:6a:ec:0b:89:bb:49:81:0f:09:d0:
b5:b5:ed:e3:b2:6c:a4:96:b1:b2:7d:fe:e3:14:e6:8c:b4:28:
7e:bc:bc:e2:ab:b5:de:e4:74:aa:b1:27:04:12:d1:b4:cb:a0:
42:ac:5a:80:bd:cc:e2:70:f0:35:ba:25:79:fa:7f:55:0d:01:
76:d8:ac:78:f1:99:0f:67:ff:93:84:8c:d9:c0:63:eb:aa:06:
c0:32:a2:32:a3:d1:71:2c:ac:4f:5b:e7:a3:1e:0e:f4:e4:3f:
8a:bf:f3:4e:2a:81:e5:48:aa:e6:bf:d1:20:3e:de:8f:30:4f:
27:4e:b0:a9:6a:6a:33:eb:10:b5:ab:bc:f1:23:74:07:c7:34:
cd:5d:06:c7:fa:0a:fd:60:60:fe:e9:63:e7:f4:8f:1f:ec:07:
3a:59:c2:28
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 17:42:35 2025 by rpki-client