Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/lpYzkyUkbuGyaCbA2x2RrBVw6-0.roa
File: lpYzkyUkbuGyaCbA2x2RrBVw6-0.roa (raw, json)
Hash identifier: xxqJWv3waNPiumcguYVcAFLw4HoyMwQO4pnEw+PThU0=
Subject key identifier: 96:96:33:93:25:24:6E:E1:B2:68:26:C0:DB:1D:91:AC:15:70:EB:ED
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 0A9F
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lpYzkyUkbuGyaCbA2x2RrBVw6-0.roa
Signing time: Sun 30 Jun 2024 01:54:23 +0000
ROA not before: Sun 30 Jun 2024 01:54:23 +0000
ROA not after: Tue 24 Jun 2025 10:46:45 +0000
asID: 9605
IP address blocks: 211.14.92.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2719 (0xa9f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Jun 30 01:54:23 2024 GMT
Not After : Jun 24 10:46:45 2025 GMT
Subject: CN=9696339325246EE1B26826C0DB1D91AC1570EBED
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:92:38:e2:db:b8:18:f1:fc:fd:d5:92:94:be:
92:b6:e9:df:d0:64:28:46:31:ae:55:30:05:ed:99:
e8:0f:1f:b1:4c:c1:a0:2c:22:f1:95:04:6b:03:7f:
a2:c0:2a:4a:6f:a8:67:cc:ad:a7:fb:f5:f1:9c:67:
d2:0d:f2:8f:01:44:eb:d7:c6:13:9d:d4:cb:55:ad:
a0:d2:0d:7f:86:78:69:c2:ab:cb:da:e6:39:4f:db:
ad:68:00:ed:0c:13:23:85:37:23:93:dd:cb:31:60:
b0:88:d8:cc:9c:a6:45:1b:5d:3f:50:42:c5:c0:53:
79:32:0d:ce:77:12:f0:bf:62:6c:13:07:d4:2c:b9:
4b:4f:ad:25:04:95:b2:ec:e6:70:8d:ab:7b:18:26:
2e:79:38:d8:7d:b8:3c:a2:d1:3b:03:0b:d2:a6:e7:
4c:ce:25:72:2a:73:0e:8d:f5:63:30:ce:2a:d0:b4:
60:0f:d4:49:45:04:db:31:62:01:8a:3f:f2:86:0e:
ab:37:e6:91:f1:cf:0e:b5:da:17:58:18:5c:f9:7e:
a0:f5:74:98:fe:af:d3:39:b6:8c:f7:59:da:11:f5:
ee:92:07:57:1e:5e:d4:9d:05:ab:56:5f:82:49:de:
88:b3:bb:e0:64:99:9a:85:be:6c:dc:c6:15:8c:79:
9c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:96:33:93:25:24:6E:E1:B2:68:26:C0:DB:1D:91:AC:15:70:EB:ED
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/lpYzkyUkbuGyaCbA2x2RrBVw6-0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.14.92.0/24
Signature Algorithm: sha256WithRSAEncryption
8d:79:1a:c8:65:25:e3:12:43:c1:ee:ba:cf:f9:26:85:5e:6a:
6a:84:df:3a:66:9a:ef:ac:bc:e0:df:93:9d:00:4a:56:11:f4:
c3:b1:99:81:82:3d:77:46:1f:df:05:8e:b9:31:65:55:88:b8:
b0:7b:2c:07:07:50:a4:1c:a8:72:58:5f:70:68:12:f6:a0:05:
f0:52:9f:4d:c8:e9:a8:7f:66:31:50:10:d4:22:06:61:4a:f1:
ef:e2:65:cd:d9:d7:d6:ea:9f:5c:ae:bf:c5:7a:23:39:33:ba:
a3:2b:fe:a8:da:b8:94:8c:25:c3:f5:d1:bf:3a:60:22:fc:3b:
c6:f1:65:a3:87:59:9b:3e:c1:53:28:35:4e:34:40:a3:2e:45:
04:c3:fe:b5:ab:79:f6:41:cf:35:84:22:a0:80:fd:f5:4e:61:
c8:13:c6:57:0a:57:49:e1:fb:aa:84:56:95:61:94:e9:97:b9:
81:c3:c9:71:c5:5c:9e:63:6e:fe:b3:4a:8f:a6:68:d1:fb:dc:
dc:55:3e:f0:54:7a:d1:98:2e:9d:22:cb:26:fa:55:3b:97:57:
e3:5d:4a:72:57:32:9d:8f:d8:42:09:77:e5:71:98:7a:c7:c1:
1d:f7:83:07:60:48:23:d5:c0:44:ff:a7:be:3b:b2:02:ff:83:
cb:81:6b:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 13:27:13 2025 by rpki-client