Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/234/zoN8HKGBKiHgoFPxuyOETqwzYds.roa
File: zoN8HKGBKiHgoFPxuyOETqwzYds.roa (raw, json)
Hash identifier: F5VAvfLtHqgsjnADqhbSLcn3ndstkwFbbiJUWF9qmEQ=
Subject key identifier: CE:83:7C:1C:A1:81:2A:21:E0:A0:53:F1:BB:23:84:4E:AC:33:61:DB
Certificate issuer: /CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Certificate serial: 74
Authority key identifier: 50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/zoN8HKGBKiHgoFPxuyOETqwzYds.roa
Signing time: Mon 01 Jan 2024 01:28:18 +0000
ROA not before: Mon 01 Jan 2024 01:28:18 +0000
ROA not after: Sat 14 Dec 2024 01:30:03 +0000
asID: 9351
IP address blocks: 218.228.0.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116 (0x74)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=500EF358BCBE14A358CA4EEE41B4E90DC923E9D2
Validity
Not Before: Jan 1 01:28:18 2024 GMT
Not After : Dec 14 01:30:03 2024 GMT
Subject: CN=CE837C1CA1812A21E0A053F1BB23844EAC3361DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:5a:d4:58:46:94:f9:bc:2f:20:e0:04:b3:f1:
34:7b:d8:7e:b4:8c:13:d5:b4:bd:6e:db:f4:34:37:
7b:ba:ef:39:de:3e:16:df:6f:3f:5b:2c:11:57:99:
a6:a4:a5:6f:39:68:c8:7b:2c:32:3c:8a:f5:19:51:
6b:33:ed:f0:37:6a:96:fb:a4:e2:c1:63:52:8b:fe:
f6:08:35:28:b1:76:14:42:90:36:b5:c1:2a:a4:5f:
66:c3:cb:a0:e9:45:67:8e:bf:3e:c1:66:97:cd:f9:
9a:54:ba:7a:f5:9c:9a:ff:7e:46:58:e4:bb:7a:de:
55:5e:df:65:6c:df:07:f2:ae:4b:ee:de:ec:cc:80:
d3:02:eb:06:52:48:e5:31:e9:b4:46:b2:f8:1d:c1:
13:90:41:d4:6b:99:a6:5c:13:4e:ae:c4:b9:12:24:
4b:a8:eb:41:7b:79:2f:7a:db:0a:52:50:4a:6c:ed:
f4:07:e9:0b:b3:8a:0d:54:0f:cc:b0:50:87:10:52:
09:1f:1a:c2:b2:ca:c0:dd:dd:ae:1d:c1:40:04:d4:
c7:c6:9b:03:88:cd:8d:c3:20:dd:ce:aa:f9:1f:61:
4c:c6:2d:06:de:1a:23:eb:6b:eb:53:63:20:0f:64:
1c:b1:5a:92:43:4f:21:21:03:9c:85:b0:9f:8e:43:
b0:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:83:7C:1C:A1:81:2A:21:E0:A0:53:F1:BB:23:84:4E:AC:33:61:DB
X509v3 Authority Key Identifier:
keyid:50:0E:F3:58:BC:BE:14:A3:58:CA:4E:EE:41:B4:E9:0D:C9:23:E9:D2
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/UA7zWLy-FKNYyk7uQbTpDckj6dI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/UA7zWLy-FKNYyk7uQbTpDckj6dI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/234/zoN8HKGBKiHgoFPxuyOETqwzYds.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
218.228.0.0/20
Signature Algorithm: sha256WithRSAEncryption
55:37:94:1e:f5:9d:dd:42:69:2a:48:ca:5c:a7:5c:98:ee:b8:
8e:b7:81:23:b1:f2:e2:25:10:f9:8b:25:e6:80:ce:9b:1c:49:
b2:3b:48:2b:a0:0f:a8:ce:12:ba:cb:3c:b1:db:c2:e6:83:00:
fc:0f:a0:06:14:11:96:b4:7a:fa:23:49:75:d6:98:62:f1:46:
79:6e:46:75:f5:98:ec:00:fe:23:a2:58:1b:92:87:54:9c:6f:
fb:eb:7a:4d:1b:85:c7:0b:c9:4f:8e:33:51:10:f7:c7:00:ac:
ea:3c:5e:3e:41:8f:b9:1d:1a:a7:07:df:d3:97:b9:19:a5:77:
49:b7:49:a2:c4:50:88:62:48:5e:1c:00:62:41:63:36:95:04:
93:e6:6b:a2:60:84:a6:15:90:ac:77:52:9d:ee:15:70:4b:f4:
f7:b2:98:3e:ae:11:4f:85:91:51:16:9f:30:2d:ec:1c:92:6c:
43:0c:75:af:98:65:66:4e:16:e7:a2:09:98:8c:d7:c9:f4:03:
48:a5:0c:eb:43:8a:7b:a6:52:38:29:3b:4e:79:37:ec:13:cd:
fa:b5:1c:aa:65:91:7c:c5:01:b9:f4:31:ec:2c:d1:cc:16:90:
37:a9:75:9d:24:fd:f9:83:c8:79:c8:02:72:20:c8:f9:38:60:
0d:d6:15:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:25:43 2025 by rpki-client