Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Chz-7_Z3lKDiVPYjAZrNVpy9occ.roa
File: Chz-7_Z3lKDiVPYjAZrNVpy9occ.roa (raw, json)
Hash identifier: 48tNuZTamCKbxmi/zgdBIyfpkaSph/y36e8GJAZ0rMs=
Subject key identifier: 0A:1C:FE:EF:F6:77:94:A0:E2:54:F6:23:01:9A:CD:56:9C:BD:A1:C7
Certificate issuer: /CN=590A82288D2E23DBFA87638F3EB8B995E1897E95
Certificate serial: 49
Authority key identifier: 59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Chz-7_Z3lKDiVPYjAZrNVpy9occ.roa
Signing time: Thu 01 Feb 2024 01:30:08 +0000
ROA not before: Thu 01 Feb 2024 01:30:08 +0000
ROA not after: Tue 14 Jan 2025 01:30:02 +0000
asID: 2554
IP address blocks: 211.10.0.0/19 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73 (0x49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=590A82288D2E23DBFA87638F3EB8B995E1897E95
Validity
Not Before: Feb 1 01:30:08 2024 GMT
Not After : Jan 14 01:30:02 2025 GMT
Subject: CN=0A1CFEEFF67794A0E254F623019ACD569CBDA1C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2f:a9:1e:3b:03:76:b3:a2:24:39:3c:5a:7e:
8f:c6:8d:14:7f:90:d4:7d:30:8f:d7:2e:63:1e:c1:
8f:c4:ff:69:52:dd:8e:13:af:91:34:7f:6b:52:c9:
ad:29:77:ca:e4:41:7e:a9:74:85:e8:32:07:fc:13:
6d:44:76:9a:4c:ce:94:18:ba:dc:fc:06:ba:f9:2b:
f3:a0:15:0c:e7:12:de:cf:a4:f0:84:84:1a:e4:30:
30:53:70:5b:3c:74:ce:63:6f:e0:49:97:f2:a3:31:
d8:f7:4c:90:99:ff:37:6b:fe:21:9f:96:1c:7b:9a:
53:d3:d1:59:ac:34:e1:21:69:0b:d7:a6:c4:c8:00:
32:6c:95:8b:e1:7e:64:75:61:db:c7:df:7f:17:76:
8d:65:8d:9f:8c:c8:02:01:01:23:45:c6:68:dd:02:
80:06:7e:c1:6f:0c:66:a9:56:6b:6e:db:2b:59:1d:
2a:2e:cf:d3:e1:c4:95:79:0a:b2:c7:ea:5e:7c:15:
c4:fb:c8:a5:f5:32:19:dc:49:0b:c6:50:84:9e:44:
c1:fe:21:f7:79:8f:bf:4a:1a:eb:f5:77:26:33:b9:
7c:be:a8:33:ca:b8:5d:46:6f:ec:ae:52:71:24:3e:
d4:a2:e5:b5:3c:a6:9d:30:a8:c9:98:7c:66:96:f8:
2e:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:1C:FE:EF:F6:77:94:A0:E2:54:F6:23:01:9A:CD:56:9C:BD:A1:C7
X509v3 Authority Key Identifier:
keyid:59:0A:82:28:8D:2E:23:DB:FA:87:63:8F:3E:B8:B9:95:E1:89:7E:95
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/WQqCKI0uI9v6h2OPPri5leGJfpU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/WQqCKI0uI9v6h2OPPri5leGJfpU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20083/Chz-7_Z3lKDiVPYjAZrNVpy9occ.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
211.10.0.0/19
Signature Algorithm: sha256WithRSAEncryption
01:23:5b:47:22:72:12:31:2b:2b:bb:19:19:4f:cf:30:b8:3e:
29:bf:fe:82:67:ba:eb:37:53:06:db:2d:cd:95:cc:d5:5e:1b:
9b:a7:0d:3a:e6:a5:c3:b0:21:99:6d:c6:47:12:1d:4f:18:5b:
e2:8b:29:12:5d:d7:9f:4d:ab:3b:04:e6:b1:d0:74:7c:3e:09:
30:18:31:67:61:48:3e:43:bf:36:b3:f6:6d:2e:fe:ff:ef:32:
51:a8:e3:04:81:49:d1:48:cc:22:aa:46:e0:07:4f:9e:df:a0:
cb:c0:a6:ae:04:c4:4c:af:fb:65:31:38:5a:d9:49:d4:8b:db:
b2:6a:26:95:cb:4f:0c:4a:34:d9:83:b6:04:12:10:88:1b:45:
ad:43:17:f0:d7:62:19:06:25:ca:80:bb:5c:ee:4e:d1:64:b2:
6c:b6:ed:f7:d8:36:b6:76:81:8f:a3:eb:07:6e:02:90:57:ed:
43:f1:62:e2:25:ab:fa:83:b1:a5:53:5d:e2:d0:95:1a:9c:36:
b7:4e:32:e7:8d:5b:b4:fa:17:65:1c:ec:72:d8:a4:76:56:04:
fe:4f:41:a3:59:9e:d5:bb:9e:e5:8d:49:7d:e0:ff:9f:55:1a:
5f:c0:a0:07:50:6a:3e:c4:91:8a:f0:a1:8b:8d:72:2d:c3:01:
eb:29:0d:a8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sun Feb 16 22:06:26 2025 by rpki-client