Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/TVvazQzjVu2bsBWedKThfd_gsHk.roa
File: TVvazQzjVu2bsBWedKThfd_gsHk.roa (raw, json)
Hash identifier: Dz4PbAViZ4Fn5Ot6Bw/hCoEAzIX86IeQHoWcVO535RE=
Subject key identifier: 4D:5B:DA:CD:0C:E3:56:ED:9B:B0:15:9E:74:A4:E1:7D:DF:E0:B0:79
Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Certificate serial: 0151
Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/TVvazQzjVu2bsBWedKThfd_gsHk.roa
Signing time: Mon 01 May 2023 01:28:13 +0000
ROA not before: Mon 01 May 2023 01:28:13 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 4713
IP address blocks: 27.114.0.0/17 maxlen: 17
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 337 (0x151)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Validity
Not Before: May 1 01:28:13 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=4D5BDACD0CE356ED9BB0159E74A4E17DDFE0B079
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:9f:fd:a5:c3:6c:1a:75:9c:34:83:a7:c7:59:
56:46:84:d7:83:f2:27:2e:a3:71:38:41:81:b1:98:
2b:75:ec:17:b9:f8:48:64:07:6a:07:34:2e:ea:a0:
30:12:c8:d4:bd:dd:1b:d6:3b:60:2c:ee:12:07:d6:
ce:f6:c0:b9:eb:d3:cb:70:f0:92:00:d6:d1:93:5b:
ef:4c:d4:12:0d:9c:57:8f:c9:0d:4e:8e:b6:88:7d:
06:bf:dc:85:d4:bd:2c:ed:d6:be:52:b4:29:a4:54:
bd:08:90:a7:3c:c2:42:dd:89:a5:c4:f8:f6:b8:d9:
15:ee:08:7c:6b:45:6e:31:4b:9b:43:18:df:b6:7f:
c4:38:48:61:d2:f5:f7:80:14:97:30:bf:bd:a6:14:
4d:3e:70:8a:07:d6:75:6b:d7:53:89:e5:ef:2e:7d:
c8:ca:65:22:03:52:b0:7f:11:a9:89:89:e1:64:e2:
66:57:de:22:66:98:13:80:54:29:3c:df:4d:c5:8e:
84:6e:cf:1c:5a:4f:25:89:17:ef:67:6b:da:72:69:
54:a3:95:63:bf:be:0b:12:21:7b:ce:55:93:10:5e:
a7:4e:71:41:a8:2f:db:9f:5e:30:2c:d9:f1:c9:ad:
66:de:4b:7c:c1:4d:65:49:f3:a6:16:ed:e2:05:ed:
df:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:5B:DA:CD:0C:E3:56:ED:9B:B0:15:9E:74:A4:E1:7D:DF:E0:B0:79
X509v3 Authority Key Identifier:
keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/TVvazQzjVu2bsBWedKThfd_gsHk.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
27.114.0.0/17
Signature Algorithm: sha256WithRSAEncryption
4d:d0:2d:49:fd:63:ae:a5:f2:5f:bd:a4:8e:30:62:c5:30:25:
da:09:9e:be:03:11:e8:08:98:9f:27:f3:03:5a:78:d4:76:5c:
e7:08:f2:a6:62:42:b8:65:7f:db:8f:f8:2c:2a:17:28:7c:d8:
82:dd:dd:25:4b:97:d3:27:40:c4:63:bd:50:28:6b:85:60:4a:
77:38:c6:e8:22:5d:5a:65:99:e7:39:cf:e2:56:0f:1a:e1:1a:
87:7f:c2:c7:35:a4:b9:f7:fa:f0:54:42:70:4b:00:0b:5e:63:
26:2c:d0:d6:4b:41:d7:19:46:7b:53:66:75:4f:c6:47:b0:9f:
2b:97:50:62:39:62:30:d4:7c:28:6f:3b:52:fa:a0:bf:f5:a8:
64:8d:de:19:94:8a:67:8b:d5:1a:5c:86:9a:04:aa:7f:57:b5:
f5:a4:03:f3:cd:2d:90:0b:12:33:12:2d:17:6e:f7:7f:07:35:
c1:9f:91:f5:92:c6:9d:2f:6f:86:6b:10:f5:c6:d2:d5:53:a7:
af:b5:15:9d:92:6e:83:c0:7a:da:ce:c7:8b:62:b8:be:c7:35:
b9:57:34:e1:45:a5:72:95:ce:09:1f:a7:3f:90:20:45:12:6f:
dd:ac:79:ab:cc:24:50:b6:ed:90:17:2a:9d:0c:11:80:85:a3:
85:c9:4f:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:08:24 2025 by rpki-client