Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q_7ecBF-ZXVIrD-GJAACjMkkn7E.roa
File: Q_7ecBF-ZXVIrD-GJAACjMkkn7E.roa (raw, json)
Hash identifier: gaUX9x7DHNvzgTbrqH3kqSR02AYsqCiSaRJF2t8wm98=
Subject key identifier: 43:FE:DE:70:11:7E:65:75:48:AC:3F:86:24:00:02:8C:C9:24:9F:B1
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 025B
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q_7ecBF-ZXVIrD-GJAACjMkkn7E.roa
Signing time: Tue 30 May 2023 16:32:34 +0000
ROA not before: Tue 30 May 2023 16:32:34 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 1.76.4.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 603 (0x25b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 16:32:34 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=43FEDE70117E657548AC3F862400028CC9249FB1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:a3:f9:93:0f:29:f8:8b:1d:af:db:2e:00:7b:
64:42:b2:c5:97:ea:7d:ba:54:2f:5a:c0:f1:20:c3:
47:45:21:1b:a5:fc:f8:6a:38:ec:b2:36:9a:69:fc:
dc:01:e5:48:3b:2f:bb:fa:b4:ee:98:ed:20:9d:8f:
09:56:3b:1e:c1:81:a0:ac:08:c2:b0:c9:75:ba:42:
63:85:c7:8c:ee:26:0c:c6:4d:89:29:60:05:43:9c:
a2:45:37:96:72:1e:10:a2:36:4d:b6:14:bb:be:b9:
ff:48:21:24:39:7d:69:5a:85:e7:6f:c0:5d:28:7c:
cf:73:fd:eb:a2:26:9d:b0:2d:3d:e6:c5:b2:b2:ef:
fc:08:e0:d8:61:3b:b3:b2:0b:34:55:f5:0d:27:11:
1f:ab:e4:51:2f:38:0a:8e:ec:bc:64:9b:78:15:ab:
48:33:e6:ff:2d:b2:8e:48:28:40:a7:26:0a:05:18:
dd:98:c8:6c:5c:cf:f8:1a:5d:84:c6:44:b4:02:9f:
27:c3:51:69:c0:b1:e0:aa:d2:32:1f:2c:c3:c3:fe:
b3:f9:0b:f4:f0:7d:92:15:09:07:6f:c4:4f:99:32:
72:1a:2b:d8:3b:a6:27:67:9a:9a:e2:a7:12:bf:40:
58:b1:73:ef:8e:23:7b:2d:1a:2f:72:15:47:ea:dd:
e1:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
43:FE:DE:70:11:7E:65:75:48:AC:3F:86:24:00:02:8C:C9:24:9F:B1
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/Q_7ecBF-ZXVIrD-GJAACjMkkn7E.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.76.4.0/22
Signature Algorithm: sha256WithRSAEncryption
c8:1c:01:39:bd:87:0c:79:31:98:42:c7:35:12:b7:50:80:22:
b2:7b:90:b3:c4:27:71:9d:f5:ec:6c:db:12:1d:fb:7a:f1:ea:
60:a8:9f:12:6e:e0:ab:0d:ac:17:1d:49:df:e0:b3:00:53:b0:
af:d0:3a:ae:55:a8:bb:2d:0f:98:04:b9:f3:52:bc:e8:03:d2:
6d:2c:a4:8e:8c:aa:eb:6b:4d:57:d9:f9:10:1a:14:ee:e5:96:
f0:64:90:d6:83:de:1a:21:aa:86:15:e2:3e:5e:c3:86:28:26:
dc:0e:0e:6b:1a:ba:9a:ac:03:df:a8:43:98:f0:08:b1:fa:d1:
ff:ae:00:af:41:51:ce:8f:24:5b:a0:02:d1:8e:a5:47:53:bc:
ad:b8:ba:30:48:e5:ec:24:f1:ee:0a:1b:d1:b1:e3:9e:4c:ed:
96:05:9f:7c:03:8b:0d:d1:cd:c2:5e:d6:30:eb:42:d9:0a:dd:
76:69:69:3e:db:54:c0:af:59:a6:27:10:74:ab:cf:16:dd:54:
21:ff:3e:76:7a:36:f3:3b:8a:0a:7b:05:a5:da:0a:22:e2:a2:
a2:e8:ee:07:14:59:66:94:cf:d7:09:c7:66:d5:4f:22:67:76:
88:1d:db:d5:65:90:e8:bc:d1:33:43:3f:e1:0f:4b:81:b8:9c:
c4:2d:2e:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:35:14 2025 by rpki-client