Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10247/M-Ku4hyrZu2NG-pOOTn0Q8w6LOU.roa
File: M-Ku4hyrZu2NG-pOOTn0Q8w6LOU.roa (raw, json)
Hash identifier: +wZJXxYOkkREEae8IseDlnqIYtHYcMvvMRxgLKi+IMI=
Subject key identifier: 33:E2:AE:E2:1C:AB:66:ED:8D:1B:EA:4E:39:39:F4:43:CC:3A:2C:E5
Certificate issuer: /CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Certificate serial: 015F
Authority key identifier: 20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/M-Ku4hyrZu2NG-pOOTn0Q8w6LOU.roa
Signing time: Thu 01 Dec 2022 01:28:25 +0000
ROA not before: Thu 01 Dec 2022 01:28:25 +0000
ROA not after: Wed 15 Nov 2023 01:30:02 +0000
asID: 7684
IP address blocks: 49.212.239.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 351 (0x15f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=20320F6D09DB18C0F70B354A3D87450F70E6D71A
Validity
Not Before: Dec 1 01:28:25 2022 GMT
Not After : Nov 15 01:30:02 2023 GMT
Subject: CN=33E2AEE21CAB66ED8D1BEA4E3939F443CC3A2CE5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:87:66:3c:15:ff:a8:9d:f0:c6:08:7c:20:3e:
1b:64:33:b2:a3:08:5f:23:44:33:a9:89:ab:81:06:
ad:49:3e:19:47:27:86:31:18:3a:fe:8b:aa:b1:66:
22:12:0f:55:8e:84:04:2a:de:95:97:ea:e0:f4:6b:
b2:63:cf:77:e9:ff:b3:5d:00:cd:e0:fb:ae:99:87:
6e:36:42:65:4f:e0:3f:ea:5f:7d:97:61:87:5c:ba:
a2:6f:d3:49:e9:a7:98:4d:b0:b6:79:a7:6e:97:ab:
1c:63:04:af:55:41:43:d3:2a:b5:6d:9a:77:36:a6:
d2:d8:e4:e5:13:08:ba:46:5c:c7:a5:ed:c8:2e:ab:
2f:91:c5:a0:7d:d2:cb:0d:18:f5:f1:39:df:ef:fc:
bb:e4:6a:b0:a8:07:eb:a7:ec:6f:4e:8c:a3:d5:65:
63:2c:88:3e:1d:da:82:b6:e2:7a:65:dc:27:1d:e6:
be:13:ef:72:fa:58:5a:ed:3b:e8:75:9d:5f:10:96:
01:e4:fc:f9:36:83:84:e3:7e:4d:3d:04:1f:eb:ba:
cf:33:a5:2e:0a:25:24:ab:4e:8a:fa:a8:a7:46:fe:
c3:aa:4c:39:3a:53:0b:4f:6f:31:23:8d:ee:c4:8f:
c9:48:7a:44:75:cb:e9:58:0d:2d:bd:49:c5:a5:ac:
d5:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:E2:AE:E2:1C:AB:66:ED:8D:1B:EA:4E:39:39:F4:43:CC:3A:2C:E5
X509v3 Authority Key Identifier:
keyid:20:32:0F:6D:09:DB:18:C0:F7:0B:35:4A:3D:87:45:0F:70:E6:D7:1A
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/IDIPbQnbGMD3CzVKPYdFD3Dm1xo.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10247/M-Ku4hyrZu2NG-pOOTn0Q8w6LOU.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
49.212.239.0/24
Signature Algorithm: sha256WithRSAEncryption
5d:a0:3d:a1:81:2d:a4:1b:b6:0c:0b:12:3c:52:d6:0c:a9:39:
c3:72:d8:cd:3f:b5:66:3b:e4:9f:ae:da:a7:9e:82:bc:0f:44:
b6:18:51:9e:1c:6f:26:47:65:28:8f:d7:a4:0c:5e:52:ea:3c:
0c:11:bc:86:5d:71:02:fd:cd:a9:79:a6:05:1d:16:f6:f8:12:
aa:0e:8f:02:2c:15:1c:e4:5d:b8:cd:27:f8:35:01:49:ad:43:
fc:9f:8e:c3:7f:97:9f:47:29:d5:34:b4:fd:ad:c9:ce:b7:ca:
e3:82:0e:02:33:a0:5a:72:0e:08:d0:68:6b:04:2d:5a:94:41:
5b:f2:95:4e:85:62:e8:8c:a4:65:3a:97:b0:f8:45:32:a4:1a:
7a:b6:3d:74:9a:8e:90:d7:4f:a2:83:53:1b:25:6c:8d:d8:c4:
37:60:50:23:ad:46:08:9e:30:d8:3b:4d:37:0b:22:1c:c3:3b:
c6:4d:3b:b1:54:02:07:27:c6:61:b0:ef:bc:8f:db:a4:0a:2d:
d6:ea:e3:44:18:e0:f9:84:1b:d0:27:0f:98:e4:01:19:71:8b:
fc:fa:48:33:8e:6b:03:b8:a8:8b:5c:fa:8b:46:1f:0d:dc:11:
d6:85:0e:59:3a:ca:ed:34:c2:1b:ec:92:12:d3:08:ca:de:3e:
d8:be:38:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:12:15 2025 by rpki-client