Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/pBmm0ArGyQv6NeRhMvU-mYAkokI.roa
File: pBmm0ArGyQv6NeRhMvU-mYAkokI.roa (raw, json)
Hash identifier: XQ26ueNwAoxswwqWlbnpyesGrDrBKogmV23sZffcPeU=
Subject key identifier: A4:19:A6:D0:0A:C6:C9:0B:FA:35:E4:61:32:F5:3E:99:80:24:A2:42
Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Certificate serial: 05D4
Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pBmm0ArGyQv6NeRhMvU-mYAkokI.roa
Signing time: Thu 29 Feb 2024 01:32:13 +0000
ROA not before: Thu 29 Feb 2024 01:32:13 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 9605
IP address blocks: 1.72.0.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1492 (0x5d4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473
Validity
Not Before: Feb 29 01:32:13 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=A419A6D00AC6C90BFA35E46132F53E998024A242
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:9e:75:6b:ec:11:a8:fc:4a:b6:29:10:fe:71:
ac:08:d9:79:93:47:4e:52:aa:0e:d1:18:b7:c7:ee:
81:ce:54:f8:4e:d8:34:97:a4:d0:fa:c3:39:ce:a5:
30:e4:b7:80:10:08:06:01:b7:8b:d4:d8:1d:c2:00:
39:ba:ee:88:58:ab:44:68:d5:64:40:fa:29:43:9f:
3a:86:5b:cd:ae:28:ae:04:b9:75:4e:06:31:15:81:
59:fc:ee:c5:f3:68:e2:fa:28:ba:d2:88:00:3b:0b:
82:2d:f8:71:6a:a8:c9:b3:6d:76:3d:0e:d0:d8:4b:
67:8b:09:d2:58:3e:91:51:26:be:7d:91:af:bc:0b:
99:2a:43:57:b6:b9:9c:94:79:ee:55:40:97:9b:58:
e3:69:b7:d6:04:6f:63:b1:60:c1:5e:4b:d2:a2:01:
cd:d2:82:47:02:14:0c:16:d5:08:c9:50:64:c7:70:
9a:d5:b6:56:20:8d:1d:09:c3:ca:a5:d6:4a:9f:ff:
90:fb:99:50:8b:74:fe:79:84:b8:a4:6e:02:57:d3:
80:c8:f7:20:d6:86:de:92:d9:cd:e9:c0:17:ea:ad:
10:ad:fe:f4:7f:09:85:fa:d7:91:44:18:5d:b8:be:
c8:79:73:fa:90:fa:33:24:2a:72:0c:61:41:96:65:
2e:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:19:A6:D0:0A:C6:C9:0B:FA:35:E4:61:32:F5:3E:99:80:24:A2:42
X509v3 Authority Key Identifier:
keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/pBmm0ArGyQv6NeRhMvU-mYAkokI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
1.72.0.0/22
Signature Algorithm: sha256WithRSAEncryption
4b:da:67:8f:b0:02:63:ab:52:ae:30:26:d2:e3:4d:2c:1b:ff:
24:e1:de:c1:c9:65:56:2d:d0:d1:49:cc:b2:23:58:4f:25:30:
dd:ec:fa:4e:25:26:85:1f:9c:77:07:54:c2:d5:29:3f:25:32:
dd:bc:d8:e9:56:41:1e:59:99:34:ea:d6:e2:64:88:2a:fa:77:
9a:a8:db:51:45:d8:35:9e:8f:ab:8a:45:87:f7:22:a9:bb:12:
ff:46:bf:de:27:50:5d:67:ef:ed:3c:13:ab:8f:7a:a0:cd:0e:
31:75:18:40:68:f2:11:e3:b5:fa:49:14:84:e7:e3:4f:39:66:
ed:8a:b8:c9:3c:e5:10:c7:d8:c7:df:b2:a3:dd:9f:53:87:59:
53:55:13:2c:e5:e5:2e:9c:da:de:16:cb:77:fc:d3:7b:cb:b9:
74:eb:8a:34:45:49:ab:f7:ed:01:32:3e:65:4f:fe:70:81:06:
67:d0:89:15:bc:99:d7:16:a9:40:c6:53:d2:ea:4b:8f:03:87:
f9:c3:e8:07:3f:49:c7:74:dd:c8:3d:1b:48:1f:7c:58:6b:a1:
55:e4:0b:db:2e:cc:3c:7b:d4:80:e9:10:63:37:4b:a1:91:d4:
24:92:7c:55:5d:09:f0:e7:ad:07:87:70:ec:c9:85:09:2e:47:
f2:95:fe:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:20:02 2025 by rpki-client