Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/20183/DDP1pNmqhAGS4RbOzLO8Z39fzOE.roa
File: DDP1pNmqhAGS4RbOzLO8Z39fzOE.roa (raw, json)
Hash identifier: Mw2ssYMwkSESC8B12P5SWCWR5aAuuW2OE3GuKvqzmxc=
Subject key identifier: 0C:33:F5:A4:D9:AA:84:01:92:E1:16:CE:CC:B3:BC:67:7F:5F:CC:E1
Certificate issuer: /CN=1606BEB137B88DBBEEBA7851A0A8F8D7D18294AF
Certificate serial: 0231
Authority key identifier: 16:06:BE:B1:37:B8:8D:BB:EE:BA:78:51:A0:A8:F8:D7:D1:82:94:AF
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fga-sTe4jbvuunhRoKj419GClK8.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/DDP1pNmqhAGS4RbOzLO8Z39fzOE.roa
Signing time: Mon 20 Feb 2023 07:59:29 +0000
ROA not before: Mon 20 Feb 2023 07:59:29 +0000
ROA not after: Thu 15 Feb 2024 01:30:03 +0000
asID: 146979
IP address blocks: 202.236.90.229/32 maxlen: 32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 561 (0x231)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1606BEB137B88DBBEEBA7851A0A8F8D7D18294AF
Validity
Not Before: Feb 20 07:59:29 2023 GMT
Not After : Feb 15 01:30:03 2024 GMT
Subject: CN=0C33F5A4D9AA840192E116CECCB3BC677F5FCCE1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:ab:9a:a8:ac:4e:0f:26:3d:c1:a7:56:08:31:
08:5e:b4:68:c6:3c:dc:2e:12:4d:8d:30:a3:03:0e:
70:e5:dd:47:8f:61:88:00:d1:ac:f3:34:e6:7c:3a:
a6:6a:1a:fa:dc:08:bb:5f:da:9e:13:5b:bd:f2:8d:
2e:78:dd:7b:e7:ac:7e:c4:fd:34:50:ac:5a:02:cc:
c3:e6:1e:a2:89:0f:17:a6:6e:d7:8b:bc:3f:76:44:
f0:e0:05:aa:1e:ea:83:7e:1f:88:fc:43:3f:96:d5:
61:35:8b:ce:48:3f:87:76:24:64:6e:ea:d4:92:3f:
74:ae:d7:c1:27:12:35:c5:e1:f9:dc:3f:9b:1c:d1:
51:63:91:5f:41:e5:b6:81:a1:f6:f3:32:e9:07:e3:
8a:98:3e:71:a0:b1:6d:22:75:c9:c0:5f:92:db:5f:
3e:f9:b5:b9:b2:d4:a4:47:0a:86:84:a3:9f:cf:5f:
30:ad:dd:7f:b1:5e:3b:72:8c:b9:db:0e:ad:9b:fa:
81:e9:69:4e:17:9f:5f:ae:f0:a1:80:a3:3f:5c:b1:
e5:02:76:57:58:b6:f0:75:64:2d:d2:2b:c5:c2:c3:
0e:de:cf:0b:b3:0b:7e:62:b9:b5:ab:dd:d9:bd:16:
36:7b:a1:d7:ca:57:64:9f:ac:f0:80:88:73:37:d7:
a7:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:33:F5:A4:D9:AA:84:01:92:E1:16:CE:CC:B3:BC:67:7F:5F:CC:E1
X509v3 Authority Key Identifier:
keyid:16:06:BE:B1:37:B8:8D:BB:EE:BA:78:51:A0:A8:F8:D7:D1:82:94:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/Fga-sTe4jbvuunhRoKj419GClK8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/Fga-sTe4jbvuunhRoKj419GClK8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/20183/DDP1pNmqhAGS4RbOzLO8Z39fzOE.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.236.90.229/32
Signature Algorithm: sha256WithRSAEncryption
84:6e:b5:46:56:9b:eb:ba:07:b7:98:d4:f6:09:7f:06:9a:18:
6c:ba:e4:6c:50:03:bb:49:d6:3e:29:27:1c:06:c9:e7:53:16:
ab:35:43:a2:dd:c5:05:d3:98:38:4c:4b:61:5b:55:25:1f:c8:
7c:da:4d:4a:a6:81:ff:b0:29:61:34:d2:44:96:de:b8:ee:e6:
74:45:57:b5:87:84:90:ab:f1:08:ff:3c:7c:95:25:08:c1:73:
cb:0f:f1:95:18:9a:2a:37:01:ea:7f:97:a0:a6:2d:c7:96:f9:
d6:e1:52:4f:8b:54:23:ed:b0:b6:5c:95:5a:fe:bf:0e:c9:d4:
be:85:ea:34:9d:e6:44:db:68:dc:9e:3e:6f:3e:43:23:99:7f:
a3:21:0a:1e:66:8d:c9:7c:79:60:29:7d:9e:c8:a1:20:3c:b6:
68:8a:91:59:71:58:d7:3e:5b:df:42:30:7f:95:4c:22:d7:f6:
cf:ba:d8:33:db:d1:e9:32:ce:cf:c6:79:5b:65:9c:55:c3:c0:
9e:e3:ae:ce:cb:cd:95:4f:ae:35:c9:5b:54:89:a3:7d:37:51:
64:21:97:a0:3f:89:5a:ac:77:a2:a2:c9:ca:15:11:52:92:0e:
60:1a:d7:f0:5b:24:67:fb:e5:67:63:d2:ec:8f:03:9c:d6:e5:
07:d5:0d:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 16 22:16:21 2025 by rpki-client