Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/394/4FZPnkB9aqXPcRe9CGw8-VsY8iA.roa
File: 4FZPnkB9aqXPcRe9CGw8-VsY8iA.roa (raw, json)
Hash identifier: 817K71wfITpQ6nihbrKP4YZ0Gb28CC7IcgnS+f0rvQE=
Subject key identifier: E0:56:4F:9E:40:7D:6A:A5:CF:71:17:BD:08:6C:3C:F9:5B:18:F2:20
Certificate issuer: /CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Certificate serial: 0123
Authority key identifier: 0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/4FZPnkB9aqXPcRe9CGw8-VsY8iA.roa
Signing time: Fri 07 Jul 2023 04:06:00 +0000
ROA not before: Fri 07 Jul 2023 04:06:00 +0000
ROA not after: Fri 14 Jun 2024 01:30:02 +0000
asID: 10013
IP address blocks: 122.145.40.0/21 maxlen: 21
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 291 (0x123)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0D7125AE4CEAE1335FE5D429AA030CE9070DF19C
Validity
Not Before: Jul 7 04:06:00 2023 GMT
Not After : Jun 14 01:30:02 2024 GMT
Subject: CN=E0564F9E407D6AA5CF7117BD086C3CF95B18F220
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:cd:31:cc:c9:ea:72:cd:c3:5e:1c:ac:e9:d4:
da:25:2b:c5:2d:bc:cc:67:49:04:93:05:6a:e1:17:
7d:00:c0:69:65:1b:9f:ae:98:32:88:36:0c:49:f2:
65:76:9a:67:1c:f4:a5:c1:83:45:b2:b1:7b:c1:5b:
3c:e0:c3:2a:b1:a8:00:27:d8:69:a2:fb:14:f3:72:
47:d0:42:fe:83:31:17:1b:b6:85:5c:86:c7:9c:a6:
28:14:b7:a7:d4:60:1d:04:aa:d4:53:20:ff:33:1d:
ac:7d:c3:e7:86:84:ff:7f:01:1a:0c:d2:e1:37:3d:
48:7e:0d:d3:99:ab:a5:67:a1:67:b2:b7:42:3f:8c:
4c:bb:24:74:00:62:10:b9:62:c5:d0:4f:1d:eb:ce:
35:6d:3b:22:0c:f9:11:1a:1d:31:3b:ef:3e:17:94:
c5:22:f0:ce:d8:1b:df:46:2f:c6:ee:18:53:f2:f2:
b6:4b:9b:a9:b9:af:11:e5:fc:3e:20:c8:25:80:2d:
33:9f:71:4d:85:46:91:69:bd:2a:e8:ae:7d:b4:47:
6a:87:19:9d:fd:c2:f8:ec:66:28:72:fc:23:c3:a8:
a9:ca:97:03:ae:bd:a4:b9:8d:c3:8b:e5:9c:a0:e4:
49:95:c4:ba:ed:28:46:84:93:56:4d:26:3c:77:3b:
f6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:56:4F:9E:40:7D:6A:A5:CF:71:17:BD:08:6C:3C:F9:5B:18:F2:20
X509v3 Authority Key Identifier:
keyid:0D:71:25:AE:4C:EA:E1:33:5F:E5:D4:29:AA:03:0C:E9:07:0D:F1:9C
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/DXElrkzq4TNf5dQpqgMM6QcN8Zw.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/DXElrkzq4TNf5dQpqgMM6QcN8Zw.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/394/4FZPnkB9aqXPcRe9CGw8-VsY8iA.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
122.145.40.0/21
Signature Algorithm: sha256WithRSAEncryption
49:e6:06:71:9d:5d:ca:30:79:7d:21:50:7a:97:74:0b:86:16:
b2:66:53:fe:74:9d:91:cc:e3:cd:7b:36:5a:51:cd:e1:73:46:
39:51:e4:69:c0:88:31:44:08:9f:9e:53:03:3d:3a:86:d0:93:
48:a8:fd:64:c8:c8:7f:ec:9b:fc:53:9b:a3:38:63:3d:4c:20:
a6:f4:36:ce:ce:bb:cc:0e:f5:45:85:60:fe:3d:a7:09:02:22:
d0:64:93:d0:78:13:c6:d2:9a:6f:cf:1b:70:d1:04:3d:cc:d4:
04:b4:ba:07:39:06:a8:65:09:b0:3f:ed:a7:f4:32:c2:85:e3:
59:42:23:16:d7:fa:1a:18:69:92:37:9b:ca:69:a7:21:9c:34:
2d:ff:36:2a:77:94:c8:64:65:f2:b3:46:4d:92:3c:14:70:7f:
fa:99:16:8e:ea:a2:b9:ec:76:ec:70:61:c5:10:1e:4e:b5:5f:
75:83:46:2d:de:64:53:0c:06:87:d1:78:8d:9d:a0:c5:cc:94:
c9:9a:62:f3:f5:af:74:e3:91:d3:c1:9e:bf:19:53:b9:06:9f:
93:ad:f9:76:48:12:44:b0:12:96:c7:bd:c7:55:1b:99:21:35:
78:49:49:f2:52:5a:3f:7e:f9:78:f1:ec:db:fd:7f:b6:7f:50:
60:be:c5:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:41:43 2025 by rpki-client