Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10173/lbBfc85xIYfpATpdU-R-I-Aoo1c.roa
File: lbBfc85xIYfpATpdU-R-I-Aoo1c.roa (raw, json)
Hash identifier: lOn696CKB4nqVzLwOzVBWQZswGvY4Hgk9QCOt/4TkuE=
Subject key identifier: 95:B0:5F:73:CE:71:21:87:E9:01:3A:5D:53:E4:7E:23:E0:28:A3:57
Certificate issuer: /CN=101A90E4E74C403ABE8E5E0A1FE8E4157ABD2AE7
Certificate serial: 91
Authority key identifier: 10:1A:90:E4:E7:4C:40:3A:BE:8E:5E:0A:1F:E8:E4:15:7A:BD:2A:E7
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/lbBfc85xIYfpATpdU-R-I-Aoo1c.roa
Signing time: Thu 13 Apr 2023 09:53:28 +0000
ROA not before: Thu 13 Apr 2023 09:53:28 +0000
ROA not after: Thu 14 Mar 2024 01:30:02 +0000
asID: 18126
IP address blocks: 180.196.0.0/14 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 145 (0x91)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=101A90E4E74C403ABE8E5E0A1FE8E4157ABD2AE7
Validity
Not Before: Apr 13 09:53:28 2023 GMT
Not After : Mar 14 01:30:02 2024 GMT
Subject: CN=95B05F73CE712187E9013A5D53E47E23E028A357
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:29:d9:1c:1b:af:42:d1:e3:73:af:df:92:80:
6d:f5:04:5b:97:06:bd:96:75:d5:44:c3:e3:26:fa:
75:34:f1:03:54:38:4c:84:8a:b2:76:b6:d7:d0:b8:
59:c3:cd:59:35:dc:b9:a0:a3:36:3e:3a:14:26:b7:
89:f2:40:b4:6f:ea:95:d8:ba:85:34:69:b5:78:b1:
66:b2:b2:5c:29:48:e0:81:41:0c:83:c5:2d:82:02:
88:8a:9f:98:23:2e:b2:9d:e1:cb:7e:b1:d4:6b:e6:
3a:c5:1b:6b:76:1d:cf:92:2e:bb:2a:55:06:bc:0a:
15:1d:a1:b3:09:2a:34:93:92:f0:94:b6:1a:8a:52:
4c:84:4e:fb:f2:c0:2f:6d:2b:4e:ef:0d:e9:c0:29:
60:85:00:2b:ea:43:1c:b7:62:0c:b5:3c:df:5c:e9:
af:12:ca:d8:07:30:35:6f:28:ac:4e:a9:41:0a:6c:
69:b6:db:9c:21:00:66:95:25:c0:b0:b3:8f:27:4f:
84:dd:7c:65:f8:f3:12:97:62:b1:07:89:72:b6:06:
8e:58:3c:e2:9e:7e:49:74:ba:da:0d:74:cc:c5:e7:
bb:b7:9e:b3:dc:db:76:11:9c:18:b9:9f:9c:3d:dc:
10:9c:be:3a:90:ce:9d:b3:0f:52:04:ca:3f:97:da:
31:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:B0:5F:73:CE:71:21:87:E9:01:3A:5D:53:E4:7E:23:E0:28:A3:57
X509v3 Authority Key Identifier:
keyid:10:1A:90:E4:E7:4C:40:3A:BE:8E:5E:0A:1F:E8:E4:15:7A:BD:2A:E7
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/EBqQ5OdMQDq-jl4KH-jkFXq9Kuc.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10173/lbBfc85xIYfpATpdU-R-I-Aoo1c.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
180.196.0.0/14
Signature Algorithm: sha256WithRSAEncryption
9f:00:47:e1:1c:07:1f:0b:29:a3:d9:51:d8:0b:ec:47:3a:1a:
77:7f:a3:92:fc:63:a3:d6:30:60:1f:dd:57:d7:ba:a0:c9:85:
22:fe:fc:f0:61:03:95:d6:ba:0b:e6:11:d8:90:8d:e5:99:6f:
76:1f:38:28:86:fb:b2:43:f8:f2:47:2c:b5:4f:f4:6c:b7:f8:
bd:b7:58:ac:3f:28:56:48:82:2c:59:94:c8:6c:e7:55:52:37:
be:5a:2f:77:57:58:1a:2e:81:35:9a:2d:92:a4:2f:1f:28:08:
d0:45:d3:be:7b:b4:38:b6:61:86:f9:5d:45:d3:da:88:0e:6b:
ce:31:21:54:ab:f7:db:3c:15:08:50:ff:3e:86:70:16:5b:51:
f8:99:cd:62:63:62:58:f3:9c:a8:fd:8e:da:3c:e5:9b:79:78:
73:91:76:66:fa:cf:8c:5a:45:a3:1a:4b:ba:92:fd:ba:13:e9:
07:02:2d:84:39:2c:04:f1:f9:87:66:87:7c:3a:41:39:55:1d:
68:d9:c3:d7:a2:82:4e:61:f1:96:a8:1c:67:d0:f6:48:22:b2:
cc:04:34:33:0b:dd:65:2d:14:5c:bd:5f:0b:54:eb:43:e6:9a:
1a:79:e1:af:44:5f:2b:69:25:93:3f:27:8e:72:58:06:a1:97:
e6:c4:31:3d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:06:23 2025 by rpki-client