Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/GiHNrlnsiDRqCKl_mLKGEzbf5Cs.roa
File: GiHNrlnsiDRqCKl_mLKGEzbf5Cs.roa (raw, json)
Hash identifier: 8ij0YL1lcSSMrOnvwBLIPMHW9zHXdp15SVy3X46JJh0=
Subject key identifier: 1A:21:CD:AE:59:EC:88:34:6A:08:A9:7F:98:B2:86:13:36:DF:E4:2B
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0A60
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GiHNrlnsiDRqCKl_mLKGEzbf5Cs.roa
Signing time: Sun 30 Jun 2024 01:50:22 +0000
ROA not before: Sun 30 Jun 2024 01:50:22 +0000
ROA not after: Tue 24 Jun 2025 10:46:45 +0000
asID: 9605
IP address blocks: 220.210.62.0/23 maxlen: 23
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2656 (0xa60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 30 01:50:22 2024 GMT
Not After : Jun 24 10:46:45 2025 GMT
Subject: CN=1A21CDAE59EC88346A08A97F98B2861336DFE42B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fa:aa:d4:bb:32:83:b8:69:3d:1f:d5:ae:2c:
c7:90:7b:67:8e:15:28:c5:db:91:b1:ac:4d:c0:11:
14:61:99:94:9b:28:9a:c7:b2:91:e0:85:5c:28:3f:
5a:45:32:a8:f4:5f:5d:48:f2:fe:f5:1f:4a:c3:a5:
d9:57:81:69:0f:5a:15:4a:02:6a:77:ec:0b:9c:c8:
d7:63:40:f5:7e:0d:cb:c6:19:9f:cd:fc:02:4f:33:
df:2c:7d:f5:fb:52:26:fd:03:1a:2c:8b:c4:ee:72:
f6:29:c2:44:33:56:e5:34:82:2b:24:5b:14:a3:d2:
cd:2a:b7:ac:6a:37:5c:b1:ba:1a:33:b4:30:58:00:
d1:66:6e:9d:4e:f2:16:d1:97:3b:25:75:e7:0d:b2:
73:e4:c6:a3:86:a2:c4:7c:77:50:94:41:ff:c7:14:
01:2d:34:8e:b1:ea:c2:a8:d4:8b:5e:9f:8a:2e:15:
86:ec:04:54:ac:dc:fb:d7:70:bc:4c:c0:c0:a1:9c:
65:41:9d:1b:f9:5d:83:89:c3:45:f0:1f:4a:5b:ca:
58:6f:df:38:56:34:62:ae:e1:e5:34:e4:af:c5:77:
15:73:9b:8c:c9:a7:d9:d2:20:b4:87:7e:d5:3d:ee:
86:d7:e0:25:31:80:e6:73:3b:9a:74:3b:b6:c2:a0:
e0:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:21:CD:AE:59:EC:88:34:6A:08:A9:7F:98:B2:86:13:36:DF:E4:2B
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/GiHNrlnsiDRqCKl_mLKGEzbf5Cs.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
220.210.62.0/23
Signature Algorithm: sha256WithRSAEncryption
86:48:43:a3:e1:1a:36:2c:d9:fc:d8:bb:d0:b7:eb:2a:ea:a7:
7a:5d:72:ea:7e:80:a5:de:6a:12:8c:17:9e:5b:cc:bd:93:87:
f5:d5:a2:08:41:ea:bf:6f:3d:fa:83:14:70:fa:15:d3:9c:8a:
55:a0:71:df:28:8c:cb:7e:71:bb:fd:0f:1c:aa:3f:fc:20:c5:
9e:63:71:2a:9d:b8:7c:cd:83:53:d7:27:88:c4:cf:09:e3:f1:
ed:ce:a8:dd:89:6a:e9:5f:99:5b:d2:07:87:af:6b:c6:88:48:
34:d5:d0:7e:88:70:13:a9:9e:59:bc:81:69:a4:e6:81:7b:9c:
6c:75:75:11:eb:9f:9d:fa:48:f4:25:1f:ca:02:b8:19:0e:e8:
16:bd:60:91:a9:b9:a6:ae:cd:57:84:f9:f0:6c:40:84:40:29:
7b:57:a9:3f:c7:ce:b9:42:ec:4c:22:44:aa:f2:c2:0b:2d:ca:
33:03:f9:18:e0:42:3b:ee:52:eb:f3:93:21:3c:e2:32:e4:0d:
38:b3:52:0c:02:75:1f:9e:36:3b:32:ca:b0:51:84:a1:ce:7f:
c8:d7:95:b0:e5:88:9f:a2:ac:9d:56:91:43:ab:66:ec:24:c7:
77:79:c3:42:5f:77:5e:c0:43:a6:d8:31:bf:17:d6:d8:0e:58:
b7:c7:03:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 13:26:06 2025 by rpki-client