Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20044/1T8J4Po1PgqCzHIDigA9fLn-gDM.roa
File: 1T8J4Po1PgqCzHIDigA9fLn-gDM.roa (raw, json)
Hash identifier: atEU9LtIXTS1le3a2a9ERzDnlzOBO/c+ZhAGiyWBJHA=
Subject key identifier: D5:3F:09:E0:FA:35:3E:0A:82:CC:72:03:8A:00:3D:7C:B9:FE:80:33
Certificate issuer: /CN=EE749AEDB27453827DBA8325F42984FA79C3CF76
Certificate serial: 03
Authority key identifier: EE:74:9A:ED:B2:74:53:82:7D:BA:83:25:F4:29:84:FA:79:C3:CF:76
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7nSa7bJ0U4J9uoMl9CmE-nnDz3Y.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20044/1T8J4Po1PgqCzHIDigA9fLn-gDM.roa
Signing time: Mon 02 Oct 2023 01:22:18 +0000
ROA not before: Mon 02 Oct 2023 01:22:18 +0000
ROA not after: Tue 01 Oct 2024 01:07:25 +0000
asID: 63772
IP address blocks: 172.86.208.0/20 maxlen: 20
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3 (0x3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=EE749AEDB27453827DBA8325F42984FA79C3CF76
Validity
Not Before: Oct 2 01:22:18 2023 GMT
Not After : Oct 1 01:07:25 2024 GMT
Subject: CN=D53F09E0FA353E0A82CC72038A003D7CB9FE8033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:1e:19:cc:f2:4d:97:7c:4a:48:47:2e:b7:8a:
56:b6:4c:29:af:72:52:48:32:59:b6:d6:91:b5:10:
02:bf:1d:c6:5c:4f:f8:ec:7d:28:e3:75:bf:26:1e:
7d:5f:18:a4:cd:9c:5d:1a:81:49:d9:96:ce:6c:11:
59:d5:6f:b2:f5:f2:fa:54:90:4a:9b:ad:0b:92:d6:
02:ed:e6:7b:07:ea:e2:51:ba:6a:82:db:45:5c:ba:
5d:cb:7b:9f:44:20:5f:82:ec:f4:81:78:fe:29:b9:
8f:2f:f6:e7:1c:6c:f7:0e:c1:56:c4:ff:39:f1:3a:
4f:61:76:25:b9:ab:04:b8:69:18:84:e0:4b:b7:b4:
5b:09:26:63:6e:4e:bb:43:25:19:97:08:19:95:3a:
e1:c3:d0:57:b3:86:ad:f4:0e:74:e4:89:5c:c9:28:
5a:d4:fa:39:63:11:fa:e7:46:c5:92:df:52:26:a7:
2a:09:a9:66:a2:3c:91:33:e8:69:28:17:ca:7e:cf:
63:b9:c4:b4:64:19:31:60:49:b1:a3:30:c8:97:34:
13:df:d5:0a:45:e2:ca:c3:b9:19:de:a7:16:97:83:
31:14:e8:90:9c:6c:a9:55:f3:01:87:36:e8:db:fd:
54:0e:52:ac:4d:55:0b:82:a7:00:07:9f:b4:38:42:
b2:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:3F:09:E0:FA:35:3E:0A:82:CC:72:03:8A:00:3D:7C:B9:FE:80:33
X509v3 Authority Key Identifier:
keyid:EE:74:9A:ED:B2:74:53:82:7D:BA:83:25:F4:29:84:FA:79:C3:CF:76
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20044/7nSa7bJ0U4J9uoMl9CmE-nnDz3Y.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/7nSa7bJ0U4J9uoMl9CmE-nnDz3Y.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20044/1T8J4Po1PgqCzHIDigA9fLn-gDM.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
172.86.208.0/20
Signature Algorithm: sha256WithRSAEncryption
38:68:c6:42:59:f1:ee:43:d8:5b:31:c7:3a:61:a4:08:3e:4c:
58:ba:cc:1d:44:3e:9e:c3:bd:49:31:dc:ca:26:61:39:53:e9:
43:4d:46:d5:98:10:f5:b2:ce:83:f8:d5:d9:a5:e5:07:d6:2e:
84:e0:6a:b1:27:53:18:50:ae:79:ea:4e:e0:78:71:5d:5d:83:
02:74:b4:ff:d5:04:80:8f:53:49:b0:26:38:2a:b1:43:48:8c:
2c:23:b6:15:91:44:f4:f3:c6:4b:03:18:d8:39:9a:bc:7c:b7:
b9:8f:3c:0c:9f:29:90:94:00:3e:01:9f:dc:05:2d:f0:05:0f:
b7:53:88:9f:72:e1:34:4d:bf:9a:74:fc:a2:c5:b6:6d:37:ba:
b9:0f:59:61:2c:52:64:58:20:ae:d9:38:9b:2c:44:8b:15:cb:
22:3a:cb:d7:8f:17:8b:91:1e:76:1f:d8:36:26:d7:c0:49:ac:
8b:bc:06:79:7f:43:44:d5:69:35:52:72:a3:66:dd:bf:c4:73:
cf:ea:9d:fc:fd:50:63:fc:55:ae:ff:22:cd:e2:0f:1a:b0:69:
ee:bc:9b:84:1c:c9:f1:1a:3d:bc:58:21:28:5f:97:7f:bd:1e:
cd:92:98:78:c5:8a:7b:f2:78:95:3d:95:7d:a3:6a:9a:02:d6:
6a:1e:27:dc
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:17:56 2025 by rpki-client