Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/21042/2DAI7SLcjlRAKchYSrunV02WamM.roa
File: 2DAI7SLcjlRAKchYSrunV02WamM.roa (raw, json)
Hash identifier: OqosBlBUzHWOtSM2QNY0D0Iut3uLMWFTakpGfqxGAzQ=
Subject key identifier: D8:30:08:ED:22:DC:8E:54:40:29:C8:58:4A:BB:A7:57:4D:96:6A:63
Certificate issuer: /CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837
Certificate serial: 27
Authority key identifier: 4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/2DAI7SLcjlRAKchYSrunV02WamM.roa
Signing time: Tue 26 Sep 2023 06:25:00 +0000
ROA not before: Tue 26 Sep 2023 06:25:00 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 23637
IP address blocks: 180.211.72.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 39 (0x27)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4F3E6396C9D76CBDF4ED2D5DE7A2A760214C9837
Validity
Not Before: Sep 26 06:25:00 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=D83008ED22DC8E544029C8584ABBA7574D966A63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b2:e1:f7:a0:9c:54:be:ef:01:13:66:68:b1:
6b:da:3e:7a:d7:a6:f7:90:38:6a:df:f6:bb:10:75:
8a:13:2a:cf:b1:8b:4b:bc:de:d6:02:c5:ef:54:fa:
27:81:fd:db:79:a1:7a:dc:16:58:d0:0c:40:be:0a:
98:84:5a:48:ea:60:59:4e:03:f1:de:bf:b2:b1:30:
01:03:11:c2:76:7b:41:71:30:9d:2c:a9:dc:6c:f9:
2d:07:4b:fa:e0:96:8d:01:b4:57:22:f0:a0:97:1e:
d6:20:e5:53:0c:84:89:ba:f9:e0:9d:11:e4:71:db:
fa:26:ae:09:99:d7:ca:8c:85:01:1a:4d:17:12:97:
7c:02:d3:da:18:5a:b6:a0:99:73:bd:e4:1d:e6:a6:
15:32:4a:3c:f6:b5:c4:dc:65:d3:41:4c:42:d8:62:
97:13:47:15:36:b5:75:95:01:7f:a7:f0:57:9b:e7:
b8:52:cf:ad:37:18:09:c5:fd:eb:6d:cb:8f:45:a3:
83:00:66:e2:0a:bb:59:b7:9f:47:ba:77:70:2a:49:
a1:92:2b:3c:ed:bf:16:49:48:bd:5c:98:79:a3:49:
c9:5c:26:4f:5c:ad:a3:cc:cc:d3:b2:bb:c8:a6:1c:
97:e2:8f:4f:28:b0:57:b7:39:f3:b7:d3:d0:82:64:
a2:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:30:08:ED:22:DC:8E:54:40:29:C8:58:4A:BB:A7:57:4D:96:6A:63
X509v3 Authority Key Identifier:
keyid:4F:3E:63:96:C9:D7:6C:BD:F4:ED:2D:5D:E7:A2:A7:60:21:4C:98:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/Tz5jlsnXbL307S1d56KnYCFMmDc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Tz5jlsnXbL307S1d56KnYCFMmDc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/21042/2DAI7SLcjlRAKchYSrunV02WamM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.211.72.0/21
Signature Algorithm: sha256WithRSAEncryption
80:f8:73:5a:42:e1:0c:3d:a6:3f:a9:fd:bb:d5:cf:8a:77:0f:
9e:ec:3b:3d:b0:6d:98:eb:62:37:d6:c0:9c:e5:bc:66:e0:4c:
50:95:1b:72:b8:30:bf:3d:d0:91:5b:7a:7d:79:c8:ee:85:6f:
9e:37:c7:8b:16:e5:56:bd:46:74:70:75:38:a0:b6:e0:36:92:
34:30:70:ea:59:ef:11:d9:6f:03:bc:53:32:8f:e6:08:07:1d:
95:0b:07:96:05:64:6d:3e:18:67:d7:b4:84:d6:b4:fa:fe:a5:
74:f1:ed:eb:08:3f:4c:8a:36:18:28:e0:f0:30:99:0a:49:bc:
13:d6:bd:6e:69:fd:14:28:65:9a:43:f9:8c:32:1f:e1:76:b9:
bc:8e:d5:be:81:b0:6d:63:59:26:72:90:6a:4a:d6:af:24:e3:
66:27:cd:6b:98:ff:64:ff:3c:3b:45:78:87:35:88:53:8e:40:
e0:bf:75:92:76:e0:4e:af:d7:12:7f:f4:ef:1a:62:a7:c7:f3:
96:c8:11:85:25:36:40:e9:f8:96:c0:03:94:4b:94:3c:cd:23:
1d:53:fe:fc:da:31:0f:1f:e4:6b:f1:f5:9f:c6:93:69:0d:29:
e1:f3:48:98:83:49:68:3a:42:24:5d:66:c7:31:99:cc:a0:21:
59:6a:86:39
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 5 23:07:17 2025 by rpki-client