Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/YB5a5EgXp6jrsS6_kTZxXQTRdzE.roa
File: YB5a5EgXp6jrsS6_kTZxXQTRdzE.roa (raw, json)
Hash identifier: ByxKoCSwDpxH9WZ+WuR5sarOUSsPvPxuz+21eNGjYnU=
Subject key identifier: 60:1E:5A:E4:48:17:A7:A8:EB:B1:2E:BF:91:36:71:5D:04:D1:77:31
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 02B0
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YB5a5EgXp6jrsS6_kTZxXQTRdzE.roa
Signing time: Tue 30 May 2023 17:17:29 +0000
ROA not before: Tue 30 May 2023 17:17:29 +0000
ROA not after: Tue 14 May 2024 01:30:02 +0000
asID: 9605
IP address blocks: 61.195.216.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 688 (0x2b0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: May 30 17:17:29 2023 GMT
Not After : May 14 01:30:02 2024 GMT
Subject: CN=601E5AE44817A7A8EBB12EBF9136715D04D17731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:23:97:98:b2:21:e0:d1:75:94:7d:1a:27:ce:
21:82:45:84:e8:52:d0:22:58:b5:5e:9f:fe:e0:32:
52:f3:13:4d:9d:ba:cd:72:95:5d:f1:6b:60:5a:4b:
94:e1:b5:ca:15:6b:92:29:0b:df:01:b9:ab:a5:b4:
6e:cf:66:b3:dc:42:65:7e:fe:90:3b:92:f3:77:e8:
52:13:b9:e0:6e:cd:89:9b:79:1f:86:f5:47:6e:93:
03:34:e8:69:6b:2d:52:7a:b6:25:df:b1:6b:43:61:
d9:1e:eb:c0:a9:13:8d:ef:1b:e8:ff:01:80:20:19:
9a:e6:2d:e9:39:36:81:26:5b:a4:25:ef:b5:92:ca:
4f:83:48:18:e6:14:42:6d:26:0d:a8:ee:74:9d:09:
41:d3:36:ac:38:9f:67:8c:4e:be:8a:8c:8a:96:b1:
8e:11:20:2f:6e:4e:30:c1:8d:45:30:3d:d0:c0:ad:
ce:4a:da:69:08:7e:92:7d:02:46:bd:e0:96:92:eb:
e7:52:05:e0:d1:02:c3:9d:47:ea:f3:8d:f1:ee:33:
b7:ff:30:06:09:d6:e0:01:94:81:e8:f0:b1:38:af:
e1:e3:20:7e:a2:3a:a9:7a:e0:89:fe:4a:2f:65:88:
f2:e5:1d:06:a2:6c:32:27:91:b3:c2:cf:af:36:25:
41:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:1E:5A:E4:48:17:A7:A8:EB:B1:2E:BF:91:36:71:5D:04:D1:77:31
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/YB5a5EgXp6jrsS6_kTZxXQTRdzE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
61.195.216.0/21
Signature Algorithm: sha256WithRSAEncryption
b7:19:31:fc:17:13:9c:28:ec:12:b9:3a:be:fd:65:c9:11:8a:
98:67:b1:d1:8e:7f:65:27:e9:88:4b:47:33:06:d5:9f:a1:e5:
92:a8:a7:34:61:d7:06:39:74:db:61:7f:a4:4c:5b:09:2c:a0:
fc:97:19:0f:99:07:f7:57:07:44:73:6f:73:cf:3f:f1:62:3f:
33:88:47:c1:08:ca:7f:0a:23:be:f5:f6:8a:21:6d:e1:5e:84:
54:bd:b5:2d:bd:2e:b5:4a:e5:c5:80:48:20:29:d6:09:fc:51:
6a:2f:ad:75:03:20:65:f3:ae:98:92:14:56:52:0e:25:9e:09:
39:e3:bf:3a:f0:3b:db:c3:b1:ba:91:26:fb:5c:76:f1:0a:e5:
85:2e:49:b7:0d:d4:51:35:72:1c:d3:a5:2d:0d:83:4e:02:c8:
dc:ab:84:ab:af:2e:41:f9:e3:c2:73:c3:02:43:7e:65:db:23:
41:ac:9b:66:b4:61:5d:8d:54:20:ae:19:ce:a0:0d:de:e1:b3:
66:6a:14:05:b2:ea:ad:a3:7a:e6:48:87:03:5e:24:ad:f7:83:
e7:84:b1:30:2b:9f:5a:b3:73:cc:19:c7:7a:ea:83:28:88:f7:
7b:a7:d5:ac:5f:e2:ab:1a:df:bf:70:c1:6c:ea:7d:46:90:1d:
97:52:4b:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:30:59 2025 by rpki-client