Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/131/nn4iHuYQ2YLDUqmZo1yfYOcFyQQ.roa
File: nn4iHuYQ2YLDUqmZo1yfYOcFyQQ.roa (raw, json)
Hash identifier: 8vwb9hoSjraHewhnM3TdmwIIaQ2mv86jM0WR+F6vubc=
Subject key identifier: 9E:7E:22:1E:E6:10:D9:82:C3:52:A9:99:A3:5C:9F:60:E7:05:C9:04
Certificate issuer: /CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Certificate serial: 0165
Authority key identifier: 2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/nn4iHuYQ2YLDUqmZo1yfYOcFyQQ.roa
Signing time: Mon 01 May 2023 01:28:22 +0000
ROA not before: Mon 01 May 2023 01:28:22 +0000
ROA not after: Sun 14 Apr 2024 01:30:02 +0000
asID: 4713
IP address blocks: 124.96.0.0/13 maxlen: 13
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 357 (0x165)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2FC09923B05A7E8F1ADD9A5984EDC19320DB974B
Validity
Not Before: May 1 01:28:22 2023 GMT
Not After : Apr 14 01:30:02 2024 GMT
Subject: CN=9E7E221EE610D982C352A999A35C9F60E705C904
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:90:77:a8:d9:63:1e:f2:2f:a4:fb:3b:64:b8:
35:29:df:04:72:0a:8b:cd:00:ff:1b:42:5f:c4:e6:
c1:7d:18:49:d7:73:4d:4d:38:da:1b:44:cb:c2:4c:
b9:a4:33:49:54:8e:f9:5e:4e:49:ef:1d:6a:4f:29:
1b:77:7e:a5:a0:82:33:37:28:92:25:67:25:70:aa:
88:f9:c9:8a:f9:75:c7:5a:84:0e:75:9c:50:f1:c1:
6f:c8:e8:62:7f:0e:fc:25:15:e7:ff:4b:bd:57:74:
24:32:fc:af:a8:f4:e8:90:16:82:d7:f4:eb:25:d9:
ff:d8:0c:53:11:16:52:f1:c6:68:21:91:2e:44:59:
74:8c:1b:8a:86:c7:b3:db:54:11:ce:d9:b5:4b:da:
97:c8:fc:7f:fa:83:b4:48:e0:2b:8a:e3:5e:ba:84:
9a:0e:e2:eb:17:ec:a5:f3:e3:e9:da:e3:23:a2:34:
48:8c:53:dd:ff:a7:f5:55:98:81:b6:3e:e6:6a:c7:
1d:f0:96:be:0b:99:b6:52:dd:5e:0e:4a:24:4b:05:
33:f6:fe:8f:b6:3c:cc:5e:cf:c3:49:b1:6a:68:5a:
6a:29:db:23:6e:6f:07:f3:72:22:71:e8:af:cb:ff:
e9:82:e5:d7:e4:65:61:dc:55:fb:d4:5b:83:03:9f:
79:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:7E:22:1E:E6:10:D9:82:C3:52:A9:99:A3:5C:9F:60:E7:05:C9:04
X509v3 Authority Key Identifier:
keyid:2F:C0:99:23:B0:5A:7E:8F:1A:DD:9A:59:84:ED:C1:93:20:DB:97:4B
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/L8CZI7Bafo8a3ZpZhO3BkyDbl0s.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/131/nn4iHuYQ2YLDUqmZo1yfYOcFyQQ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
124.96.0.0/13
Signature Algorithm: sha256WithRSAEncryption
48:cd:9b:c6:f8:01:b2:df:93:0c:c9:46:38:65:4d:00:92:97:
a3:5c:b0:ea:14:8b:54:3a:f9:80:f1:f2:60:25:f5:41:ad:e6:
e3:63:29:81:b9:3d:f6:61:dd:28:a8:75:96:c7:f2:0f:ee:a6:
30:cd:7e:84:f5:fc:b0:38:5f:38:55:ae:22:14:87:bd:57:e7:
32:4d:3d:24:f5:07:59:62:e6:8d:c0:a8:59:3a:5b:8d:ed:e3:
27:27:54:d4:4d:bb:7a:01:ac:4a:8f:c0:61:78:98:05:bc:e2:
71:e0:dd:e2:24:a5:c0:7f:1d:c4:71:1a:e8:66:ef:0c:68:7a:
cb:11:6d:12:09:dc:33:cd:7b:a5:c6:5f:8e:59:de:59:3e:88:
6d:73:f5:7c:7e:2f:f2:d9:00:a2:49:71:d7:ef:dd:3c:32:4f:
ff:8c:41:17:d7:fe:0c:2f:27:c6:ad:d8:5f:88:ec:4e:8d:b3:
fa:63:42:27:83:80:42:86:9c:9e:6c:f3:1e:f6:69:3a:6f:b3:
28:0b:c4:59:4d:30:20:6e:6a:98:4b:2c:50:92:af:b8:d1:3a:
86:9d:92:af:b0:24:16:be:82:b5:f0:ec:04:9a:93:66:47:bf:
ce:98:9e:33:f6:75:ec:95:e8:44:b7:15:f5:2b:98:ab:8e:b4:
08:dc:54:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:13:26 2025 by rpki-client