Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/469/O3aJG9jJR_FGC_NSQk6-kLfP7VQ.roa
File: O3aJG9jJR_FGC_NSQk6-kLfP7VQ.roa (raw, json)
Hash identifier: Q6YM4gPxzUWd4czlJiGZdW60jVuYi/bt2aagECZXqK8=
Subject key identifier: 3B:76:89:1B:D8:C9:47:F1:46:0B:F3:52:42:4E:BE:90:B7:CF:ED:54
Certificate issuer: /CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Certificate serial: 60
Authority key identifier: 40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/O3aJG9jJR_FGC_NSQk6-kLfP7VQ.roa
Signing time: Wed 01 Dec 2021 01:28:53 +0000
ROA not before: Wed 01 Dec 2021 01:28:53 +0000
ROA not after: Tue 15 Nov 2022 01:30:01 +0000
asID: 8220
IP address blocks: 27.110.20.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96 (0x60)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=40610DA68E93ED538A48A46C5214024ED54D07F6
Validity
Not Before: Dec 1 01:28:53 2021 GMT
Not After : Nov 15 01:30:01 2022 GMT
Subject: CN=3B76891BD8C947F1460BF352424EBE90B7CFED54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:a0:be:f4:58:5f:8f:5b:c3:67:1a:91:35:a2:
23:e1:3e:a6:de:30:85:01:a4:1a:77:a7:26:66:e2:
b0:de:dc:b4:31:14:ce:4b:db:b2:64:84:4b:80:a6:
bb:04:5f:93:fe:7f:a9:27:36:93:ad:45:36:be:7a:
0d:3f:af:8f:69:24:30:a7:80:89:a3:c6:98:d2:f9:
9a:25:32:ff:cc:f2:e6:57:d3:8e:9f:c0:41:81:11:
b1:f8:1f:55:a4:2a:20:3e:a3:68:13:11:af:a8:ad:
07:42:2b:6a:0c:b4:7a:0d:1c:40:ec:e1:01:42:c6:
2a:e0:9a:8d:bc:c9:15:57:1e:1d:e7:5a:38:06:c8:
af:e6:81:d8:6e:72:21:27:8f:85:be:21:b1:ff:c0:
54:53:66:94:2a:28:1e:fc:62:fc:73:6b:13:10:38:
01:f9:ff:28:bd:ac:17:fa:4d:a4:3d:1e:6a:6a:02:
f6:31:f0:07:7b:96:48:a2:b6:ff:ab:81:d4:47:6f:
7e:9e:ae:d0:9d:d4:14:1d:2d:3f:ef:b0:02:aa:67:
ba:c5:62:34:dc:6d:77:0b:3a:90:01:f0:4e:38:2c:
f8:6b:ab:38:52:26:8f:75:b5:58:20:8d:4a:fd:46:
51:72:a5:e7:05:b0:09:6d:39:ca:39:89:52:b0:25:
07:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:76:89:1B:D8:C9:47:F1:46:0B:F3:52:42:4E:BE:90:B7:CF:ED:54
X509v3 Authority Key Identifier:
keyid:40:61:0D:A6:8E:93:ED:53:8A:48:A4:6C:52:14:02:4E:D5:4D:07:F6
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/QGENpo6T7VOKSKRsUhQCTtVNB_Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/QGENpo6T7VOKSKRsUhQCTtVNB_Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/469/O3aJG9jJR_FGC_NSQk6-kLfP7VQ.roa
sbgp-ipAddrBlock: critical
IPv4:
27.110.20.0/22
Signature Algorithm: sha256WithRSAEncryption
34:2c:a3:34:3d:f3:97:2c:37:e4:0a:53:0e:a1:38:5b:47:9d:
40:e8:fd:55:3f:26:12:ac:4b:19:1f:a2:63:d2:b8:52:3a:c5:
9c:01:23:c1:70:31:93:75:bb:bc:4c:bf:d9:f2:c6:9d:c8:a7:
26:ae:a7:79:6e:a6:12:ee:2b:f9:e0:78:0b:bd:7b:10:87:12:
fc:d1:65:0d:82:56:5c:c5:b5:94:cc:a7:ed:c1:68:15:fe:20:
a6:21:cc:86:1f:be:d7:18:06:85:e9:54:a1:af:60:39:b9:8f:
f2:88:7a:06:c5:8b:34:f1:c6:c4:ae:cf:55:85:bd:4e:aa:5e:
09:f9:6c:65:e5:86:8f:57:af:ac:83:ce:2e:e1:59:9a:88:8b:
ac:d2:2e:23:cb:13:d8:c9:e0:d2:8e:bd:e9:5e:70:03:7a:2e:
af:cd:51:b3:83:e9:ca:c6:2e:4a:e5:5a:a2:dc:6a:f6:e9:da:
86:58:29:f6:b7:a9:fd:bf:0e:f3:92:cc:d6:67:ce:ad:ad:b8:
41:08:d2:a8:93:fc:e6:bf:6b:7a:67:a8:d2:bb:3f:45:21:31:
59:0a:5a:01:e2:c7:86:fc:32:0c:37:cf:7f:84:8b:84:be:93:
91:82:a2:7c:79:0a:fd:e6:7c:ad:14:56:5f:28:9c:e0:cf:93:
0c:63:43:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:19:42 2025 by rpki-client