Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/840/UXWT9i5RyCdcOoVkEJAM3lye02E.roa
File: UXWT9i5RyCdcOoVkEJAM3lye02E.roa (raw, json)
Hash identifier: vb5zgx4fGbn0P8d0+6ySCUWticWdxFrH6BGuOea9HpA=
Subject key identifier: 51:75:93:F6:2E:51:C8:27:5C:3A:85:64:10:90:0C:DE:5C:9E:D3:61
Certificate issuer: /CN=D79B3890C2DA3795148976B954C2024056797554
Certificate serial: 38
Authority key identifier: D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/UXWT9i5RyCdcOoVkEJAM3lye02E.roa
Signing time: Sun 30 Jun 2024 01:29:59 +0000
ROA not before: Sun 30 Jun 2024 01:29:59 +0000
ROA not after: Tue 24 Jun 2025 10:46:45 +0000
asID: 131934
IP address blocks: 219.100.16.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 56 (0x38)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=D79B3890C2DA3795148976B954C2024056797554
Validity
Not Before: Jun 30 01:29:59 2024 GMT
Not After : Jun 24 10:46:45 2025 GMT
Subject: CN=517593F62E51C8275C3A856410900CDE5C9ED361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6b:0d:6a:88:bd:be:19:58:14:8a:34:0f:54:
f7:86:14:e8:2b:d2:84:96:f8:d1:84:15:cc:00:dd:
e5:15:c9:68:19:0b:c7:9d:8a:61:e4:b3:2a:54:01:
09:91:ff:24:77:db:27:06:1f:d9:21:02:d1:12:bb:
36:55:f3:ba:40:9b:ae:6f:f6:3f:cf:65:f3:bd:aa:
d8:1f:e8:db:87:c1:f0:c4:71:ac:e6:c7:2d:69:54:
a3:86:3c:8c:07:05:02:1d:cd:2b:29:21:50:71:2c:
c0:f8:3a:30:86:fc:e9:fb:8d:83:48:13:03:4d:12:
de:97:23:05:e1:be:54:21:93:92:cb:ed:7c:bb:53:
f5:2c:66:34:9c:60:6f:f8:01:0f:86:98:1b:a0:75:
41:9e:d3:53:62:42:9d:ff:06:f6:5f:65:af:e4:f5:
5c:05:1e:a9:70:77:3e:30:07:cb:cd:48:56:e9:cd:
c3:94:8f:83:3a:34:4b:c8:e2:2e:bf:49:a9:b9:93:
e5:7c:b1:25:df:ef:03:e1:f4:26:1f:3d:b4:3f:79:
8a:bd:90:38:e5:ea:f9:a4:12:17:5e:28:16:90:7c:
11:6a:e8:4d:94:35:99:a9:21:fa:74:9f:e4:1d:fd:
dc:62:a6:dd:a7:f0:ed:c0:54:d4:82:db:6d:7b:3d:
2e:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:75:93:F6:2E:51:C8:27:5C:3A:85:64:10:90:0C:DE:5C:9E:D3:61
X509v3 Authority Key Identifier:
keyid:D7:9B:38:90:C2:DA:37:95:14:89:76:B9:54:C2:02:40:56:79:75:54
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/15s4kMLaN5UUiXa5VMICQFZ5dVQ.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/15s4kMLaN5UUiXa5VMICQFZ5dVQ.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/840/UXWT9i5RyCdcOoVkEJAM3lye02E.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
219.100.16.0/22
Signature Algorithm: sha256WithRSAEncryption
72:13:81:80:e3:89:45:84:73:13:40:98:74:31:c2:5d:e6:6e:
54:9f:02:97:69:48:86:3e:5d:90:3b:aa:67:86:80:b8:fe:a3:
c8:dd:f1:9f:09:b9:14:58:60:8d:62:38:27:62:a8:8d:d1:49:
82:90:11:0c:a3:64:9c:78:87:61:80:87:aa:26:5c:89:b2:6f:
70:8c:24:55:9e:b2:e8:44:fa:55:79:51:1b:9b:68:c1:bb:61:
2e:38:0b:4d:23:97:45:88:cb:ce:cc:c1:a4:55:fe:bd:cf:89:
8e:83:a7:37:60:95:3c:e7:ec:b7:7f:d7:c0:72:58:63:48:17:
87:17:fb:b0:8d:76:c5:ab:fc:a5:6d:69:23:86:8e:9f:a9:6f:
d1:bf:64:a5:ff:7e:d8:8d:44:a7:79:fb:42:f2:e0:ac:d6:5b:
ec:df:89:50:76:14:db:26:71:9b:d5:59:b9:a0:c2:a2:26:26:
9e:41:6c:c6:17:5c:6a:60:1d:1a:dc:12:2c:e3:59:9f:26:89:
75:5e:e9:9b:5c:c2:61:a9:df:72:53:53:33:f2:e5:23:db:52:
a9:c5:40:52:8d:59:18:0f:90:fd:dc:73:0c:5e:b3:12:10:72:
10:46:ca:d6:a2:b0:cc:a8:39:4e:4a:69:5a:7d:97:d9:f1:a5:
9c:68:a3:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jul 21 13:29:47 2025 by rpki-client