Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/539/YaANpfZsuXVOxxWnJMV-etf_toU.roa
File: YaANpfZsuXVOxxWnJMV-etf_toU.roa (raw, json)
Hash identifier: YHYspy+W469/YHcfn6bJZzqb5ao6fk2sLW4q94eAy20=
Subject key identifier: 61:A0:0D:A5:F6:6C:B9:75:4E:C7:15:A7:24:C5:7E:7A:D7:FF:B6:85
Certificate issuer: /CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437
Certificate serial: 2E
Authority key identifier: 5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/YaANpfZsuXVOxxWnJMV-etf_toU.roa
Signing time: Mon 01 Nov 2021 01:28:45 +0000
ROA not before: Mon 01 Nov 2021 01:28:45 +0000
ROA not after: Sat 15 Oct 2022 01:30:02 +0000
asID: 55900
IP address blocks: 43.248.160.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 46 (0x2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5B0D72F9F430B7D4003375F10D5025B9E5C00437
Validity
Not Before: Nov 1 01:28:45 2021 GMT
Not After : Oct 15 01:30:02 2022 GMT
Subject: CN=61A00DA5F66CB9754EC715A724C57E7AD7FFB685
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:32:96:10:61:53:42:b9:bc:bc:c5:ab:35:32:
c4:53:05:7a:20:fd:1b:0d:33:ea:70:ce:4e:36:fe:
c9:d5:e7:65:83:6d:88:48:c3:6d:e3:14:a9:c5:1a:
9a:2a:4f:a2:ff:c5:70:6a:f4:ff:3d:68:5e:b0:93:
7d:28:67:a0:1e:83:49:18:0c:03:2a:6c:da:5a:13:
a5:04:8c:83:0d:94:ef:94:f7:e7:4f:cc:97:ca:66:
bd:23:dd:a1:6a:38:06:c3:ff:80:1b:05:72:ec:fa:
77:19:76:95:de:98:b4:ce:1d:1e:8f:1e:19:26:0c:
59:2a:35:f6:fa:2f:26:00:fb:e6:2f:ef:df:14:0d:
b6:3f:c6:7f:5f:55:e0:a8:55:2b:9e:dc:e2:87:aa:
61:e7:ab:db:db:58:cc:14:90:1b:b2:13:b9:32:d3:
dc:c3:6d:5c:11:1b:1c:8d:f0:df:30:7e:f9:7b:27:
f6:3d:06:e7:87:cc:a5:f5:70:78:04:ec:2d:ae:72:
ac:23:ec:6f:41:f7:a6:73:74:e8:44:8f:84:0f:f2:
14:a3:df:2c:dd:eb:f5:a8:ae:62:4f:10:9e:70:23:
c8:00:db:25:7d:db:1a:9c:db:3b:d3:79:72:2f:4c:
1c:d9:c6:44:ae:c5:03:85:06:96:08:3e:f2:db:ec:
31:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:A0:0D:A5:F6:6C:B9:75:4E:C7:15:A7:24:C5:7E:7A:D7:FF:B6:85
X509v3 Authority Key Identifier:
keyid:5B:0D:72:F9:F4:30:B7:D4:00:33:75:F1:0D:50:25:B9:E5:C0:04:37
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/Ww1y-fQwt9QAM3XxDVAlueXABDc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Ww1y-fQwt9QAM3XxDVAlueXABDc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/539/YaANpfZsuXVOxxWnJMV-etf_toU.roa
sbgp-ipAddrBlock: critical
IPv4:
43.248.160.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:b6:67:e4:3c:f7:e1:21:08:8c:5b:35:5a:cd:53:e3:e9:1d:
a5:2b:77:49:9d:6e:14:ff:33:fe:dc:93:ed:ec:6a:c9:c6:9b:
d4:0c:43:43:b5:26:6e:32:76:73:1a:f1:27:b7:13:d0:bc:1a:
47:d4:d7:ed:3d:32:9e:6c:f6:da:ad:d2:28:c6:73:a4:b4:c0:
bb:79:4e:19:98:af:05:44:52:e6:6d:36:e8:4a:1b:d4:d9:c7:
14:03:a4:a8:57:a3:a3:ba:47:2f:ff:5e:13:1e:74:97:66:01:
c5:6f:5c:88:98:15:63:d5:b6:bd:a9:4d:e4:21:13:7f:61:83:
cf:59:14:ea:06:0e:17:4c:7f:ea:fc:8b:76:87:c9:28:33:2d:
bf:5e:ce:ed:40:8e:97:88:64:b9:44:fc:4b:ff:30:21:95:af:
eb:e0:cd:de:08:b2:58:b7:67:7c:7a:e7:78:f4:0c:a4:a3:8c:
cb:89:d8:1b:68:20:41:14:0e:c7:8d:36:68:96:82:82:04:ee:
21:bd:b9:9a:ac:02:d0:34:00:b9:cd:61:fb:b3:0a:a2:3c:70:
f5:83:c1:72:80:31:11:de:9c:ea:bd:ab:93:6f:ff:6d:9a:a4:
08:18:bb:bf:c9:06:fb:36:91:7d:ac:66:14:13:41:d9:e7:0f:
85:49:22:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 17:44:52 2025 by rpki-client