Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/fOKRnnck5GQaJiIB8Vcp2AnGFMc.roa
File: fOKRnnck5GQaJiIB8Vcp2AnGFMc.roa (raw, json)
Hash identifier: wTi/R47lLC4FVmUBDSeYqzQfVp6AD0DJBCQVeBJyxlk=
Subject key identifier: 7C:E2:91:9E:77:24:E4:64:1A:26:22:01:F1:57:29:D8:09:C6:14:C7
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 048C
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fOKRnnck5GQaJiIB8Vcp2AnGFMc.roa
Signing time: Thu 27 Jul 2023 16:46:03 +0000
ROA not before: Thu 27 Jul 2023 16:46:03 +0000
ROA not after: Sun 14 Jul 2024 01:30:03 +0000
asID: 9605
IP address blocks: 27.231.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1164 (0x48c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jul 27 16:46:03 2023 GMT
Not After : Jul 14 01:30:03 2024 GMT
Subject: CN=7CE2919E7724E4641A262201F15729D809C614C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:a8:22:0e:f2:8a:e5:50:72:d8:21:fe:a6:59:
f0:3c:05:87:3c:ba:93:58:55:b2:52:b1:64:e9:79:
97:59:8e:cf:99:80:44:9b:ca:7a:f8:c8:53:ab:b5:
b6:4b:39:37:a5:e1:2b:33:13:3b:77:fd:04:71:2e:
f2:41:19:27:f9:8f:65:73:de:83:c0:c8:c5:5e:80:
33:13:ea:5d:58:41:7f:1f:9e:6c:95:69:4f:cf:e9:
fb:d3:96:e6:f4:8a:e5:b8:d0:2d:7f:d7:2a:20:f3:
af:af:4d:8c:c9:57:f0:67:14:c1:07:38:0f:f3:4c:
49:c2:87:68:35:64:41:8f:5f:b8:fb:21:9a:21:e1:
0e:4a:6a:eb:d9:61:9d:7b:b6:59:ae:22:8d:e0:5f:
f4:79:07:07:3c:3a:07:c7:12:25:4a:9f:9c:5a:52:
43:c0:3e:49:56:66:3b:f1:6b:f2:81:8c:7d:d4:5f:
92:43:90:73:48:73:95:57:52:63:22:99:78:bc:89:
42:de:96:73:75:56:b4:82:9d:11:97:9f:37:0b:13:
05:37:4c:91:c7:27:39:32:43:da:de:91:22:60:7b:
eb:da:48:54:87:51:e1:2b:9f:06:6a:0f:0c:02:3c:
ba:8b:50:80:f6:3a:f6:3e:95:3e:d9:14:14:ec:ab:
78:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:E2:91:9E:77:24:E4:64:1A:26:22:01:F1:57:29:D8:09:C6:14:C7
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/fOKRnnck5GQaJiIB8Vcp2AnGFMc.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.231.0.0/17
Signature Algorithm: sha256WithRSAEncryption
05:d4:68:09:3b:0f:17:e8:a0:d4:75:d0:ee:07:54:42:d0:fd:
c7:bb:6f:03:eb:8e:b7:2f:fe:0b:10:35:43:4b:2e:49:31:4d:
34:41:70:a4:41:08:fb:02:af:6c:94:1a:66:78:1e:97:0a:5f:
bb:b2:7a:53:78:f3:e6:39:dc:cb:53:8c:55:e0:02:b5:8a:10:
9d:7d:60:99:b4:92:da:6b:62:ce:3f:3a:5a:4e:62:f1:b7:4e:
6e:71:98:16:04:5f:e6:c2:48:c2:ff:fb:d6:64:07:37:69:40:
c7:7e:48:6c:1a:44:64:ef:6f:37:ca:33:b7:9c:63:1b:4d:b9:
fc:f8:73:ed:98:6c:6b:8f:8c:72:c3:a9:c3:e8:d6:26:0e:cf:
23:c3:66:8b:30:03:d3:37:65:1d:ce:d5:f8:50:70:00:95:c8:
d6:8d:43:41:ea:ca:27:02:81:d0:da:99:0a:d7:fe:03:54:09:
98:a5:7f:af:b8:05:be:0d:59:b2:c5:62:70:e0:75:10:f3:6c:
24:ed:90:b0:d0:59:a8:d4:66:19:3c:40:b7:48:f9:4f:a6:94:
90:10:4d:1d:ed:cb:58:ab:d8:41:f1:93:a2:b6:9d:c5:a5:06:
46:3c:9e:11:6d:60:c5:8d:f0:61:cf:63:56:83:a8:d2:f1:8c:
e8:45:97:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:35:06 2025 by rpki-client