Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/942/piL3Eyk5rUn3UP9ZtgApX8i15n0.roa
File: piL3Eyk5rUn3UP9ZtgApX8i15n0.roa (raw, json)
Hash identifier: m039riwQdD6FOhcfs6MMSzFNM78KE1lvuISv1CY7U38=
Subject key identifier: A6:22:F7:13:29:39:AD:49:F7:50:FF:59:B6:00:29:5F:C8:B5:E6:7D
Certificate issuer: /CN=8A1E725176BFD9ABDA5CCB7B21A10B8F8DB7D578
Certificate serial: 2C
Authority key identifier: 8A:1E:72:51:76:BF:D9:AB:DA:5C:CB:7B:21:A1:0B:8F:8D:B7:D5:78
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ih5yUXa_2avaXMt7IaELj4231Xg.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/piL3Eyk5rUn3UP9ZtgApX8i15n0.roa
Signing time: Thu 29 Feb 2024 01:34:26 +0000
ROA not before: Thu 29 Feb 2024 01:34:26 +0000
ROA not after: Fri 14 Feb 2025 01:30:03 +0000
asID: 37908
IP address blocks: 122.128.0.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44 (0x2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8A1E725176BFD9ABDA5CCB7B21A10B8F8DB7D578
Validity
Not Before: Feb 29 01:34:26 2024 GMT
Not After : Feb 14 01:30:03 2025 GMT
Subject: CN=A622F7132939AD49F750FF59B600295FC8B5E67D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:3c:ad:17:73:14:c6:f0:9d:19:0c:32:15:30:
ae:01:bc:1e:03:83:b0:69:6a:52:f7:08:b6:14:14:
11:75:36:f1:36:de:ff:6b:09:96:cc:e7:e8:05:0c:
db:45:79:56:7b:41:40:e9:47:9c:27:08:92:02:30:
16:4c:c4:86:bf:fc:f3:d3:03:15:5f:e7:9b:c0:5f:
4b:69:98:4f:48:00:da:db:8e:62:d4:02:a8:27:2f:
b2:c2:45:74:64:55:97:fd:87:83:e5:f2:f2:d2:81:
f7:44:3f:52:e2:2c:10:f5:4a:0e:e8:ee:be:85:8f:
b4:29:42:93:d9:6f:20:66:ee:27:de:a2:68:c8:2f:
93:33:eb:13:73:5c:73:4c:94:dc:b1:98:14:90:bc:
b8:3a:17:96:5a:ff:29:21:bb:56:cb:02:0d:aa:0b:
43:27:1d:a7:0b:31:65:bd:e6:56:ea:4f:92:49:ab:
72:89:83:d1:cd:bc:78:41:ca:96:27:44:f3:bd:72:
7f:39:fe:90:a7:89:fd:38:e2:82:4d:6a:63:03:dd:
f5:f2:6d:d9:ff:12:df:03:82:c1:86:c0:a7:78:62:
72:fd:0b:f0:f6:89:02:86:c6:fe:51:83:bf:95:ad:
ee:c0:1e:fb:f2:ca:2b:4a:c6:59:18:fd:25:7d:8b:
e6:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:22:F7:13:29:39:AD:49:F7:50:FF:59:B6:00:29:5F:C8:B5:E6:7D
X509v3 Authority Key Identifier:
keyid:8A:1E:72:51:76:BF:D9:AB:DA:5C:CB:7B:21:A1:0B:8F:8D:B7:D5:78
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/ih5yUXa_2avaXMt7IaELj4231Xg.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ih5yUXa_2avaXMt7IaELj4231Xg.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/942/piL3Eyk5rUn3UP9ZtgApX8i15n0.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
122.128.0.0/20
Signature Algorithm: sha256WithRSAEncryption
c6:cf:e4:8a:3a:2d:34:fe:f8:97:49:6c:1e:7f:10:70:36:aa:
48:0f:70:68:b3:3b:48:fd:7c:e7:12:f0:e0:47:a7:e4:37:6d:
6f:05:5d:d1:05:2f:c7:7a:14:82:b5:a0:48:54:df:5e:90:50:
8b:83:4f:63:c4:f4:ca:56:37:a3:c2:b1:4a:61:90:90:2c:0e:
d7:49:41:c4:44:73:65:84:4c:42:3b:1d:e0:63:c6:e1:56:95:
06:10:50:be:7b:53:92:a4:c0:65:e2:50:28:14:d8:0c:b6:eb:
e3:f9:fd:df:cf:00:cd:82:56:4e:5b:5a:39:d6:5d:94:58:a0:
2e:53:57:6f:16:5d:04:b4:1b:ff:a0:a1:5f:e8:41:35:44:7a:
4e:d9:79:4a:24:bc:74:fc:55:80:23:4c:19:97:80:ad:1b:90:
f8:12:c2:66:3f:62:44:f1:64:56:f3:87:01:9f:5b:91:88:c9:
e4:65:a5:16:67:c6:eb:f3:05:7f:87:c8:b8:0d:e7:fe:f6:09:
2f:af:59:b2:49:f3:6d:48:22:d9:98:e5:7e:49:68:5d:5b:10:
de:c1:76:1a:b2:6d:e0:48:c7:83:8f:e7:7d:87:e6:50:a4:99:
3c:1c:55:e6:5d:2f:2e:3e:e7:2f:6d:46:52:ef:8d:7d:28:ed:
88:46:ff:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 23:02:09 2025 by rpki-client