Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/10966/qVds19GUr_fXVOke9VPC0JcumWI.roa
File: qVds19GUr_fXVOke9VPC0JcumWI.roa (raw, json)
Hash identifier: rSZdRCkWAMDerIxsD+ud2hmg7A+coDR6tABt2S2eRbA=
Subject key identifier: A9:57:6C:D7:D1:94:AF:F7:D7:54:E9:1E:F5:53:C2:D0:97:2E:99:62
Certificate issuer: /CN=FB72FAA523BA6526855D99065E21B4B958C5F016
Certificate serial: 2C
Authority key identifier: FB:72:FA:A5:23:BA:65:26:85:5D:99:06:5E:21:B4:B9:58:C5:F0:16
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/qVds19GUr_fXVOke9VPC0JcumWI.roa
Signing time: Sun 01 Oct 2023 01:29:56 +0000
ROA not before: Sun 01 Oct 2023 01:29:56 +0000
ROA not after: Sat 14 Sep 2024 01:30:03 +0000
asID: 131921
IP address blocks: 157.120.116.0/22 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 44 (0x2c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB72FAA523BA6526855D99065E21B4B958C5F016
Validity
Not Before: Oct 1 01:29:56 2023 GMT
Not After : Sep 14 01:30:03 2024 GMT
Subject: CN=A9576CD7D194AFF7D754E91EF553C2D0972E9962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7f:b3:fe:3f:91:8e:f8:94:ba:53:4f:34:b4:
fa:a9:95:c1:5b:a0:8e:f1:0e:8e:66:fd:b9:53:ed:
93:61:34:d2:3b:be:47:59:af:f4:36:c8:13:b7:62:
60:41:14:8d:e5:ee:c7:65:d4:2c:22:8b:48:81:18:
c5:1f:a1:de:18:1d:13:f2:64:38:f7:8c:73:82:b4:
3a:bf:8c:36:c2:1c:e8:23:a6:e1:99:49:3a:10:60:
9c:53:23:84:64:e0:42:d4:59:45:18:a9:0f:ad:df:
d4:ae:e7:87:95:a1:90:1e:3c:f8:30:59:55:90:72:
c7:bf:40:23:9f:1b:64:0e:0d:08:28:d3:cb:6c:f4:
d7:4e:31:ce:eb:34:82:ea:9c:b6:1d:67:46:da:d6:
67:68:12:be:62:1f:98:ad:7b:ca:3b:77:76:d1:74:
b1:1e:1a:0e:d6:e0:f6:94:64:41:16:85:8b:5c:96:
38:ba:29:ca:d8:90:31:48:a0:ea:39:0d:53:49:4b:
08:67:1b:4d:68:ca:5b:f9:bc:c9:ff:b0:81:d4:b1:
92:91:c8:39:02:d2:22:f6:a0:ec:15:c1:fc:82:72:
d5:19:e3:92:ef:c6:1d:24:62:d6:e4:68:2f:05:e7:
c8:97:95:09:91:c8:99:06:4b:49:17:d0:e4:d2:86:
f5:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:57:6C:D7:D1:94:AF:F7:D7:54:E9:1E:F5:53:C2:D0:97:2E:99:62
X509v3 Authority Key Identifier:
keyid:FB:72:FA:A5:23:BA:65:26:85:5D:99:06:5E:21:B4:B9:58:C5:F0:16
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/-3L6pSO6ZSaFXZkGXiG0uVjF8BY.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/10966/qVds19GUr_fXVOke9VPC0JcumWI.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
157.120.116.0/22
Signature Algorithm: sha256WithRSAEncryption
a0:e2:a6:69:17:86:5d:23:4f:c9:0b:b0:b3:47:3a:ee:ae:b6:
fb:39:b5:a4:79:da:11:91:05:b3:62:51:5b:ea:04:9c:82:1b:
2d:32:dd:96:c7:60:d0:aa:b1:fd:dc:60:26:1e:a7:28:d3:4b:
24:d2:25:6f:7d:56:63:41:a4:30:1e:ec:0e:26:d5:6a:ac:0d:
0f:4a:9a:54:4f:fd:a5:a1:a8:05:a7:5b:9c:50:f6:9e:0b:4e:
16:61:75:2e:a0:64:e9:3b:13:9e:05:e5:8d:cb:c3:3d:8a:cd:
82:d1:41:f3:79:65:16:48:bb:52:c0:91:a3:4f:0c:d0:02:8c:
9b:78:85:21:9d:f4:a8:ee:76:31:bf:88:20:18:fb:83:7b:e8:
1f:5a:fc:24:81:25:f8:51:75:5d:54:82:73:de:31:a4:05:8f:
0f:2f:ae:3b:65:b3:f3:93:d2:2d:72:14:e1:1e:e0:87:03:91:
30:29:d8:5e:37:71:ff:56:b3:69:d4:26:9e:0f:72:21:64:03:
0a:cc:93:d1:0c:11:b5:41:51:9a:32:cf:d3:db:d1:80:60:14:
4a:dc:f2:54:1d:02:f7:e1:15:3b:8a:9b:54:49:be:86:13:02:
46:bf:7e:e3:ec:6c:02:bc:2e:7f:b4:97:e5:d0:f9:db:97:9e:
ad:60:8b:57
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:04:25 2025 by rpki-client